Author: nion Date: 2008-01-10 10:51:44 +0000 (Thu, 10 Jan 2008) New Revision: 7868 Modified: data/CVE/list Log: CVE-2008-0173(gforge) is medium Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-01-10 09:49:21 UTC (rev 7867) +++ data/CVE/list 2008-01-10 10:51:44 UTC (rev 7868) @@ -1,5 +1,6 @@ CVE-2008-0173 [SQL injection in gforge] - - gforge <unfixed> + - gforge <unfixed> (medium) + NOTE: this is exploitable by unauthenticated users CVE-2008-0159 (SQL injection vulnerability in index.php in eggBlog 3.1.0 and earlier ...) NOT-FOR-US: eggBlog CVE-2008-0158 (Directory traversal vulnerability in index.php in Shop-Script 2.0 and ...)