thr3ads.net - Secure testing commits - [Secure-testing-commits] r11809

If this information is useful, please help other people find it:
Share via:

Steffen Joeris

2009-May-06 11:47 UTC

[Secure-testing-commits] r11809 - data/CVE

Author: white
Date: 2009-05-06 11:47:14 +0000 (Wed, 06 May 2009)
New Revision: 11809

Modified:
   data/CVE/list
Log:
Clearup moin issue and split it properly

Modified: data/CVE/list
==================================================================---
data/CVE/list	2009-05-06 11:42:35 UTC (rev 11808)
+++ data/CVE/list	2009-05-06 11:47:14 UTC (rev 11809)
@@ -1,3 +1,9 @@
+CVE-2009-XXXX [moin: XSS in AttachFile.py via attachements]
+	- moin <unfixed> (low; bug #526594)
+	[lenny] - moin 1.7.1-3+lenny2
+	[etch] - moin <not-affected> (Vulnerable code not present)
+	NOTE: http://hg.moinmo.in/moin/1.8/rev/269a1fbc3ed7
+	NOTE: CVE id requested
 CVE-2009-1513 (Buffer overflow in the PATinst function in src/load_pat.cpp in
...)
 	TODO: check
 CVE-2009-XXXX [unsafe temp file in coccinelle]
@@ -140,9 +146,8 @@
 	NOT-FOR-US: Adam Patterson Studio Lounge Address Book
 CVE-2009-1482 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
 	- moin <unfixed> (low; bug #526594)
-	[etch] - moin <not-affected> (Vulnerable code not present for
exploitable issue)
+	[etch] - moin <not-affected> (Not exploitable)
 	NOTE: http://hg.moinmo.in/moin/1.8/rev/5f51246a4df1
-	NOTE: http://hg.moinmo.in/moin/1.8/rev/269a1fbc3ed7
 CVE-2009-1481 (SQL injection vulnerability in action.asp in PuterJam''s
Blog (PJBlog3) ...)
 	NOT-FOR-US: PuterJam''s Blog
 CVE-2009-1480 (SQL injection vulnerability in index.php Pragyan CMS 2.6.4
allows ...)

Secure testing commits - May 2009 - r11809 - data/CVE

[Secure-testing-commits] r11809 - data/CVE