white at alioth.debian.org
2008-Jan-04 11:05 UTC
[Secure-testing-commits] r7820 - data/CVE
Author: white Date: 2008-01-04 11:05:52 +0000 (Fri, 04 Jan 2008) New Revision: 7820 Modified: data/CVE/list Log: More NFUs Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-01-04 10:59:05 UTC (rev 7819) +++ data/CVE/list 2008-01-04 11:05:52 UTC (rev 7820) @@ -147,23 +147,23 @@ CVE-2007-6655 (PHP remote file inclusion vulnerability in includes/function.php in ...) NOT-FOR-US: Kontakt Formular CVE-2007-6654 (Buffer overflow in a certain ActiveX control in Macrovision ...) - TODO: check + NOT-FOR-US: ActiveX CVE-2007-6653 (Directory traversal vulnerability in download.php in Mihalism Multi ...) - TODO: check + NOT-FOR-US: Mihalism CVE-2007-6652 (cpie.php in XCMS 1.83 and earlier sends a redirect to the web browser ...) - TODO: check + NOT-FOR-US: XCMS CVE-2007-6651 (Directory traversal vulnerability in wiki/edit.php in Bitweaver R2 CMS ...) - TODO: check + NOT-FOR-US: Bitweaver CVE-2007-6650 (Unrestricted file upload vulnerability in fisheye/upload.php in ...) - TODO: check + NOT-FOR-US: Bitweaver CVE-2007-6649 (PHP remote file inclusion vulnerability in includes/tumbnail.php in ...) - TODO: check + NOT-FOR-US: MatPo Bilder Gallery CVE-2007-6648 (Directory traversal vulnerability in index.php in SanyBee Gallery ...) - TODO: check + NOT-FOR-US: SanyBee Gallery CVE-2007-6647 (SQL injection vulnerability in index.php in w-Agora 4.2.1 and earlier ...) - TODO: check + NOT-FOR-US: w-Agora CVE-2007-6646 (Multiple cross-site scripting (XSS) vulnerabilities in LiveCart 1.0.1 ...) - TODO: check + NOT-FOR-US: LiveCart CVE-2007-6645 (Unspecified vulnerability in Joomla! before 1.5 RC4 allows remote ...) TODO: check CVE-2007-6644 (Joomla! before 1.5 RC4 allows remote authenticated administrators to ...) @@ -173,21 +173,21 @@ CVE-2007-6642 (Multiple cross-site request forgery (CSRF) vulnerabilities in Joomla! ...) TODO: check CVE-2007-6641 (Cross-site scripting (XSS) vulnerability in dir.php in milliscripts ...) - TODO: check + NOT-FOR-US: milliscripts CVE-2007-6640 (Creammonkey 0.9 through 1.1 and GreaseKit 1.2 through 1.3 does not ...) - TODO: check + NOT-FOR-US: Creammonkey and GreaseKit CVE-2007-6639 (SQL injection vulnerability in index.php in IPTBB 0.5.4 and earlier ...) - TODO: check + NOT-FOR-US: IPTBB CVE-2007-6638 (March Networks DVR 3204 stores sensitive information under the web ...) - TODO: check + NOT-FOR-US: March Networks CVE-2007-6637 (Multiple cross-site scripting (XSS) vulnerabilities in Adobe Flash ...) TODO: check CVE-2007-6636 (Unspecified vulnerability in the StorageFarabDb module in Bitflu ...) - TODO: check + NOT-FOR-US: Bitflu CVE-2007-6635 (FAQMasterFlexPlus, possibly 1.5 or 1.52, stores the admin password in ...) - TODO: check + NOT-FOR-US: FAQMasterFlexPlus CVE-2007-6634 (Multiple SQL injection vulnerabilities in FAQMasterFlexPlus, possibly ...) - TODO: check + NOT-FOR-US: FAQMasterFlexPlus CVE-2007-6633 (Multiple cross-site scripting (XSS) vulnerabilities in ...) TODO: check CVE-2007-6632 (showCode.php in xml2owl 0.1.1 allows remote attackers to execute ...)