Author: joeyh Date: 2006-06-12 19:27:23 +0000 (Mon, 12 Jun 2006) New Revision: 4180 Modified: data/CVE/list Log: four drupal fixes Modified: data/CVE/list ==================================================================--- data/CVE/list 2006-06-12 19:09:47 UTC (rev 4179) +++ data/CVE/list 2006-06-12 19:27:23 UTC (rev 4180) @@ -194,9 +194,9 @@ CVE-2006-2834 (PHP remote file inclusion vulnerability in includes/common.php in ...) TODO: check CVE-2006-2833 (Cross-site scripting (XSS) vulnerability in the taxonomy module in ...) - TODO: check + - drupal 4.5.8-1.1 (medium) CVE-2006-2832 (Cross-site scripting (XSS) vulnerability in the upload module ...) - TODO: check + - drupal 4.5.8-1.1 (medium) CVE-2006-2831 (Drupal 4.6.x before 4.6.8 and 4.7.x before 4.7.2, when running under ...) TODO: check CVE-2006-2830 (Buffer overflow in TIBCO Rendezvous before 7.5.1, TIBCO Runtime Agent ...) @@ -470,9 +470,9 @@ CVE-2006-2744 (PHP remote file inclusion vulnerability in p-popupgallery.php in ...) TODO: check CVE-2006-2743 (Drupal 4.6.x before 4.6.7 and 4.7.0, when running on Apache with ...) - - drupal <unfixed> (bug #368835; medium) + - drupal 4.5.8-1.1 (bug #368835; medium) CVE-2006-2742 (SQL injection vulnerability in Drupal 4.6.x before 4.6.7 and 4.7.0 ...) - - drupal <unfixed> (medium) + - drupal 4.5.8-1.1 (medium) CVE-2006-2741 (Cross-site scripting (XSS) vulnerability in Epicdesigns tinyBB 0.3 ...) TODO: check CVE-2006-2740 (Multiple SQL injection vulnerabilities in Epicdesigns tinyBB 0.3 allow ...)