Author: djoume-guest Date: 2005-02-21 11:00:33 +0100 (Mon, 21 Feb 2005) New Revision: 459 Modified: sarge-checks/CAN/list Log: * jspwiki fix Modified: sarge-checks/CAN/list ==================================================================--- sarge-checks/CAN/list 2005-02-21 08:40:51 UTC (rev 458) +++ sarge-checks/CAN/list 2005-02-21 10:00:33 UTC (rev 459) @@ -241,8 +241,7 @@ CAN-2005-0464 NOTE: reserved CAN-2004-1544 (Cross-site scripting (XSS) vulnerability in Search.jsp in JSPWiki ...) - NOTE: I think we are vulnerable but upstream only fixed it in alpha version of jspwiki - NOTE: I have mailed maintainer about this. -- Djoume + - jspwiki 2.0.52-8 CAN-2004-1543 (Directory traversal vulnerability in viewimg.php in KorWeblog ...) NOTE: not-for-us (KorWeblog) CAN-2004-1542 (Buffer overflow in Soldier of Fortune II 1.03 Gold and earlier allows ...)