Secure testing commits - Apr 2006 - r3798 - data/CVE

Author: stef-guest
Date: 2006-04-14 08:32:21 +0000 (Fri, 14 Apr 2006)
New Revision: 3798

Modified:
   data/CVE/list
Log:
gallery fix, some NFUs

Modified: data/CVE/list
==================================================================---
data/CVE/list	2006-04-13 17:02:24 UTC (rev 3797)
+++ data/CVE/list	2006-04-14 08:32:21 UTC (rev 3798)
@@ -9,33 +9,33 @@
 	{DSA-1032-1}
 	- zope-cmfplone 2.1.2-2
 CVE-2006-1709 (Cross-site scripting (XSS) vulnerability in shop_main.cgi in
...)
-	TODO: check
+	NOT-FOR-US: interaktiv.shop
 CVE-2006-1708 (SQL injection vulnerability in member.php in Clansys 1.1 allows
remote ...)
-	TODO: check
+	NOT-FOR-US: Clansys
 CVE-2006-1707 (index.php in Shopweezle 2.0 allows remote attackers to include
...)
-	TODO: check
+	NOT-FOR-US: Shopweezle
 CVE-2006-1706 (Multiple SQL injection vulnerabilities in Shopweezle 2.0 allow
remote ...)
-	TODO: check
+	NOT-FOR-US: Shopweezle
 CVE-2006-1705 (Oracle Database 9.2.0.0 to 10.2.0.3 allows local users with
"SELECT" ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2006-1704 (Sire 2.0 nws allows remote attackers to upload arbitrary image
files ...)
-	TODO: check
+	NOT-FOR-US: Sire 2.0 nws
 CVE-2006-1703 (PHP remote file inclusion vulnerability in lire.php in Sire 2.0
nws ...)
-	TODO: check
+	NOT-FOR-US: Sire 2.0 nws
 CVE-2006-1702 (PHP remote file inclusion vulnerability in spip_login.php3 in
SPIP ...)
-	TODO: check
+	NOT-FOR-US: SPIP
 CVE-2006-1701 (Cross-site scripting (XSS) vulnerability in the Pages module in
...)
-	TODO: check
+	NOT-FOR-US: Shadowed Portal
 CVE-2006-1700 (Buy.php in Aweb Scripts Seller uses predictable cookies for ...)
-	TODO: check
+	NOT-FOR-US: Aweb Scripts Seller
 CVE-2006-1699 (Cross-site scripting (XSS) vulnerability in index.php in Aweb
Banner ...)
-	TODO: check
+	NOT-FOR-US: Aweb Banner
 CVE-2006-1698 (Cross-site scripting (XSS) vulnerability in Matt Wright
Guestbook ...)
-	TODO: check
+	NOT-FOR-US: Matt Wright Guestbook 
 CVE-2006-1697 (Cross-site scripting (XSS) vulnerability in Matt Wright
Guestbook ...)
-	TODO: check
+	NOT-FOR-US: Matt Wright Guestbook 
 CVE-2006-1696 (Cross-site scripting (XSS) vulnerability in Gallery before 1.5.3
...)
-	TODO: check
+	- gallery 1.5.3-1 (bug #361758)
 CVE-2006-1695 (The fbgs script in the fbi package 2.01-1.4, when the TMPDIR
...)
 	- fbi <unfixed> (bug #361370)
 CVE-2006-1694 (SQL injection vulnerability in members.php in XBrite Members 1.1
and ...)