white at alioth.debian.org
2008-Dec-20 17:50 UTC
[Secure-testing-commits] r10746 - data/CVE
Author: white Date: 2008-12-20 17:50:28 +0000 (Sat, 20 Dec 2008) New Revision: 10746 Modified: data/CVE/list Log: More NFUs Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-12-20 17:35:18 UTC (rev 10745) +++ data/CVE/list 2008-12-20 17:50:28 UTC (rev 10746) @@ -260,57 +260,57 @@ CVE-2008-5621 (Cross-site request forgery (CSRF) vulnerability in phpMyAdmin 2.11.x ...) - phpmyadmin 4:2.11.8.1-5 CVE-2008-5584 (Multiple cross-site scripting (XSS) vulnerabilities in ProjectPier 0.8 ...) - TODO: check + NOT-FOR-US: ProjectPier CVE-2008-5583 (Cross-site request forgery (CSRF) vulnerability in index.php in ...) - TODO: check + NOT-FOR-US: ProjectPier CVE-2008-5582 (SQL injection vulnerability in utilities/login.asp in Nukedit 4.9.x, ...) - TODO: check + NOT-FOR-US: Nukedit CVE-2008-5581 (PHP remote file inclusion vulnerability in ...) - TODO: check + NOT-FOR-US: mini-pub CVE-2008-5580 (mini-pub.php/front-end/cat.php in mini-pub 0.3 allows remote attackers ...) - TODO: check + NOT-FOR-US: mini-pub CVE-2008-5579 (Absolute path traversal vulnerability in ...) - TODO: check + NOT-FOR-US: mini-pub CVE-2008-5578 (Multiple SQL injection vulnerabilities in index.php in sCssBoard 1.0, ...) - TODO: check + NOT-FOR-US: sCssBoard CVE-2008-5577 (PHP remote file inclusion vulnerability in index.php in sCssBoard 1.0, ...) - TODO: check + NOT-FOR-US: sCssBoard CVE-2008-5576 (admin/forums.php in sCssBoard 1.0, 1.1, 1.11, and 1.12 allows remote ...) - TODO: check + NOT-FOR-US: sCssBoard CVE-2008-5575 (Session fixation vulnerability in Pro Clan Manager 0.4.2 and earlier ...) - TODO: check + NOT-FOR-US: Pro Clan Manager CVE-2008-5574 (SQL injection vulnerability in member.php in Webmaster Marketplace ...) - TODO: check + NOT-FOR-US: Webmaster Marketplace CVE-2008-5573 (SQL injection vulnerability in the login feature in Poll Pro 2.0 ...) - TODO: check + NOT-FOR-US: Poll Pro CVE-2008-5572 (Professional Download Assistant 0.1 stores sensitive information under ...) - TODO: check + NOT-FOR-US: Professional Download Assistant CVE-2008-5571 (SQL injection vulnerability in admin/login.asp in Professional ...) - TODO: check + NOT-FOR-US: Professional Download Assistant CVE-2008-5570 (Directory traversal vulnerability in index.php in PHP Multiple ...) - TODO: check + NOT-FOR-US: Multiple Newsletters CVE-2008-5569 (Multiple cross-site scripting (XSS) vulnerabilities in PHPepperShop ...) - TODO: check + NOT-FOR-US: PHPepperShop CVE-2008-5568 (Cross-site request forgery (CSRF) vulnerability in admin/settings.php ...) - TODO: check + NOT-FOR-US: IPN Pro CVE-2008-5567 (Cross-site request forgery (CSRF) vulnerability in ...) - TODO: check + NOT-FOR-US: Bonza Cart CVE-2008-5566 (Cross-site scripting (XSS) vulnerability in index.php in Triangle ...) - TODO: check + NOT-FOR-US: Multiple Newsletters CVE-2008-5565 (Cross-site request forgery (CSRF) vulnerability in admin/settings.php ...) - TODO: check + NOT-FOR-US: DL PayCart CVE-2008-5564 (Unspecified vulnerability in the media server in Orb Networks Orb ...) - TODO: check + NOT-FOR-US: Orb Networks Orb CVE-2008-5563 (Aruba Mobility Controller 2.4.8.x-FIPS, 2.5.x, 3.1.x, 3.2.x, 3.3.1.x, ...) - TODO: check + NOT-FOR-US: Aruba Mobility Controller CVE-2008-5562 (ASPPortal stores sensitive information under the web root with ...) - TODO: check + NOT-FOR-US: ASPPortal CVE-2008-5561 (SQL injection vulnerability in Netref 4.0 allows remote attackers to ...) - TODO: check + NOT-FOR-US: Netref CVE-2008-5560 (PostEcards stores sensitive information under the web root with ...) - TODO: check + NOT-FOR-US: PostEcards CVE-2008-5559 (SQL injection vulnerability in sendcard.cfm in PostEcards allows ...) - TODO: check + NOT-FOR-US: PostEcards CVE-2008-5558 (Asterisk Open Source 1.2.26 through 1.2.30.3 and Business Edition ...) TODO: check CVE-2008-5557