white at alioth.debian.org
2008-Oct-27 08:28 UTC
[Secure-testing-commits] r10172 - data/CVE
Author: white Date: 2008-10-27 08:27:59 +0000 (Mon, 27 Oct 2008) New Revision: 10172 Modified: data/CVE/list Log: NFUs Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-10-27 06:55:23 UTC (rev 10171) +++ data/CVE/list 2008-10-27 08:27:59 UTC (rev 10172) @@ -140,33 +140,33 @@ CVE-2008-4676 (Unspecified vulnerability in Citrix XenApp (formerly Presentation ...) NOT-FOR-US: Citrix XenApp CVE-2008-4675 (SQL injection vulnerability in index.php in PHPcounter 1.3.2 and ...) - TODO: check + NOT-FOR-US: PHPcounter CVE-2008-4674 (SQL injection vulnerability in realestate-index.php in Conkurent Real ...) - TODO: check + NOT-FOR-US: Conkurent Real Estate Manager CVE-2008-4673 (PHP remote file inclusion vulnerability in ...) - TODO: check + NOT-FOR-US: WebBiscuits Software Events Calendar CVE-2008-4672 (Cross-site scripting (XSS) vulnerability in search_results.php in ...) - TODO: check + NOT-FOR-US: buymyscripts Lyrics Script CVE-2008-4671 (Cross-site scripting (XSS) vulnerability in wp-admin/wp-blogs.php in ...) TODO: check CVE-2008-4670 (Cross-site scripting (XSS) vulnerability in search.php in Ed Pudol ...) - TODO: check + NOT-FOR-US: Ed Pudol Clickbank Portal CVE-2008-4669 (Cross-site scripting (XSS) vulnerability in search.php in Dan Fletcher ...) - TODO: check + NOT-FOR-US: Dan Fletcher Recipe Script CVE-2008-4668 (Directory traversal vulnerability in the Image Browser ...) TODO: check CVE-2008-4667 (Directory traversal vulnerability in rss.php in ArabCMS 2.0 beta 1 ...) - TODO: check + NOT-FOR-US: ArabCMS CVE-2008-4666 (SQL injection vulnerability in webboard.php in Ultimate Webboard 3.00 ...) - TODO: check + NOT-FOR-US: Ultimate Webboard CVE-2008-4665 (SQL injection vulnerability in PG Matchmaking allows remote attackers ...) - TODO: check + NOT-FOR-US: PG Matchmaking CVE-2008-4664 (Heap-based buffer overflow in QvodInsert.QvodCtrl.1 ActiveX control ...) NOT-FOR-US: QvodInsert CVE-2008-4663 (Cross-site scripting (XSS) vulnerability in analysis.cgi 1.44, as used ...) - TODO: check + NOT-FOR-US: K''s CGI Access Log Kaiseki CVE-2008-4662 (Directory traversal vulnerability in admin.php in LokiCMS 0.3.4, when ...) - TODO: check + NOT-FOR-US: LokiCMS CVE-2008-4661 (Cross-site scripting (XSS) vulnerability in the Page Improvements ...) TODO: check CVE-2008-4660 (SQL injection vulnerability in the M1 Intern (m1_intern) 1.0.0 ...) @@ -186,9 +186,9 @@ CVE-2008-4652 (Buffer overflow in the ActiveX control (DartFtp.dll) in Dart ...) NOT-FOR-US: Dart Communications PowerTCP FTP CVE-2008-4651 (Multiple SQL injection vulnerabilities in Jetbox CMS 2.1 allow remote ...) - TODO: check + NOT-FOR-US: Jetbox CMS CVE-2008-4650 (SQL injection vulnerability in viewevent.php in myEvent 1.6 allows ...) - TODO: check + NOT-FOR-US: myEvent CVE-2008-4649 (Session fixation vulnerability in Elxis CMS 2008.1 revision 2204 ...) NOT-FOR-US: Elxis CVE-2008-4648 (Cross-site scripting (XSS) vulnerability in index.php in Elxis CMS ...) @@ -198,13 +198,13 @@ CVE-2008-4646 (The Websense Reporter Module in Websense Enterprise 6.3.2 stores the ...) NOT-FOR-US: Websense Enterprise CVE-2008-4645 (plugins/event_tracer/event_list.php in PhpWebGallery 1.7.2 and earlier ...) - TODO: check + NOT-FOR-US: PhpWebGallery CVE-2008-4644 (hits.php in myWebland myStats allows remote attackers to bypass IP ...) - TODO: check + NOT-FOR-US: myWebland myStats CVE-2008-4643 (SQL injection vulnerability in hits.php in myWebland myStats allows ...) - TODO: check + NOT-FOR-US: myWebland myStats CVE-2008-4642 (SQL injection vulnerability in profile.php in AstroSPACES 1.1.1 allows ...) - TODO: check + NOT-FOR-US: AstroSPACES CVE-2008-4641 (The DoCommand function in jhead.c in Matthias Wandel jhead 2.84 and ...) TODO: check CVE-2008-4640 (The DoCommand function in jhead.c in Matthias Wandel jhead 2.84 and ...)