Author: joeyh Date: 2005-04-13 21:55:58 +0000 (Wed, 13 Apr 2005) New Revision: 804 Modified: sarge-checks/CAN/list Log: claim some of this mass of new CANs Modified: sarge-checks/CAN/list ==================================================================--- sarge-checks/CAN/list 2005-04-13 21:49:11 UTC (rev 803) +++ sarge-checks/CAN/list 2005-04-13 21:55:58 UTC (rev 804) @@ -1,7 +1,8 @@ +begin claimed by joeyh CAN-2005-1098 (GetDataBack for NTFS 2.31 stores the username and license key in ...) - TODO: check + NOTE: not-for-us (GetDataBack for NTFS (Windows)) CAN-2005-1097 (Rebrand P2P Share Spy 2.2 stores the user password in plaintext in the ...) - TODO: check + CAN-2005-1096 (SQL injection vulnerability in main.asp for Ocean12 Membership Manager ...) TODO: check CAN-2005-1095 (Cross-site scripting (XSS) vulnerability in main.asp for Ocean12 ...) @@ -86,6 +87,7 @@ TODO: check CAN-2005-1055 (TowerBlog 0.6 and earlier stores the login data file under the web ...) TODO: check +end claimed by joeyh CAN-2005-1054 (PHP remote code injection vulnerability in news.php in ModernBill ...) TODO: check CAN-2005-1053 (Multiple cross-site scripting (XSS) vulnerabilities in orderwiz.php in ...)