Author: fgeek-guest Date: 2012-05-09 11:57:42 +0000 (Wed, 09 May 2012) New Revision: 19181 Modified: data/CVE/list Log: serendipity CVE-2012-2331/CVE-2012-2332. Modified: data/CVE/list ==================================================================--- data/CVE/list 2012-05-09 08:37:38 UTC (rev 19180) +++ data/CVE/list 2012-05-09 11:57:42 UTC (rev 19181) @@ -120,10 +120,6 @@ RESERVED CVE-2012-2456 RESERVED -CVE-2012-XXXX [XSS and SQL injection in serendipity before 1.7.1] - - serendipity <unfixed> (bug #671937; medium) - NOTE: http://blog.s9y.org/archives/240-Serendipity-1.6.1-released.html - NOTE: CVE id requested http://seclists.org/oss-sec/2012/q2/276 CVE-2012-2455 RESERVED CVE-2012-2454 @@ -477,10 +473,18 @@ RESERVED CVE-2012-2333 RESERVED -CVE-2012-2332 +CVE-2012-2332 [SQL injection in serendipity before 1.7.1] RESERVED -CVE-2012-2331 + - serendipity <unfixed> (bug #671937; medium) + NOTE: http://www.koramis.com/advisories/2012/KORAMIS-ADV2012-001.txt + NOTE: http://blog.s9y.org/archives/240-Serendipity-1.6.1-released.html + NOTE: CVE id requested http://seclists.org/oss-sec/2012/q2/276 +CVE-2012-2331 [XSS in serendipity before 1.7.1] RESERVED + - serendipity <unfixed> (bug #671937; medium) + NOTE: http://www.koramis.com/advisories/2012/KORAMIS-ADV2012-001.txt + NOTE: http://blog.s9y.org/archives/240-Serendipity-1.6.1-released.html + NOTE: CVE id requested http://seclists.org/oss-sec/2012/q2/276 CVE-2012-2330 [node.js <0.6.17/0.7.8 HTTP server information disclosure] RESERVED - nodejs 0.6.17~dfsg1-1