thr3ads.net - Secure testing commits - [Secure-testing-commits] r3065

If this information is useful, please help other people find it:
Share via:
Moritz Muehlenhoff
2005-Dec-15 23:19 UTC
[Secure-testing-commits] r3065 - data/CVE

Author: jmm-guest
Date: 2005-12-15 23:18:49 +0000 (Thu, 15 Dec 2005)
New Revision: 3065

Modified:
   data/CVE/list
Log:
new mantis issue
lots of NFUs


Modified: data/CVE/list
==================================================================---
data/CVE/list	2005-12-15 23:01:23 UTC (rev 3064)
+++ data/CVE/list	2005-12-15 23:18:49 UTC (rev 3065)
@@ -1,73 +1,73 @@
 begin claimed by jmm
 CVE-2005-4266 (WorldClient.dll in Alt-N MDaemon and WorldClient 8.1.3 trusts a
...)
-	TODO: check
+	NOT-FOR-US: Alt-N MDaemon and WorldClient
 CVE-2005-4265 (Alt-N MDaemon and WorldClient 8.1.3 allows remote attackers to
cause a ...)
-	TODO: check
+	NOT-FOR-US: Alt-N MDaemon and WorldClient
 CVE-2005-4264 (Multiple SQL injection vulnerabilities in index.php in PHP
Support ...)
-	TODO: check
+	NOT-FOR-US: PHP Support Tickets
 CVE-2005-4263 (SQL injection vulnerability in the News module in Envolution
allows ...)
-	TODO: check
+	NOT-FOR-US: Envolution
 CVE-2005-4262 (Cross-site scripting (XSS) vulnerability in the News module in
...)
-	TODO: check
+	NOT-FOR-US: Envolution
 CVE-2005-4261 (Unspecified vulnerability in Positive Software Corporation CP+
...)
-	TODO: check
+	NOT-FOR-US: CP+
 CVE-2005-4260 (Interpretation conflict in includes/mainfile.php in PHP-Nuke 7.9
and ...)
-	TODO: check
+	NOT-FOR-US: PHP-Nuke
 CVE-2005-4259 (Multiple SQL injection vulnerabilities in ASPBB 0.4 allow remote
...)
-	TODO: check
+	NOT-FOR-US: ASPBB
 CVE-2005-4258 (Unspecified Cisco Catalyst Switches allow remote attackers to
cause a ...)
-	TODO: check
+	NOT-FOR-US: Cisco hardware
 CVE-2005-4257 (Linksys WRT54GS and BEFW11S4 allows remote attackers to cause a
denial ...)
-	TODO: check
+	NOT-FOR-US: Linksys hardware
 CVE-2005-4256 (Cross-site scripting (XSS) vulnerability in forum.asp in ASP-DEV
XM ...)
-	TODO: check
+	NOT-FOR-US: ASP-DEV XM Forum
 CVE-2005-4255 (Cross-site scripting (XSS) vulnerability in TextSearch in
WikkaWiki ...)
-	TODO: check
+	NOT-FOR-US: WikkaWiki
 CVE-2005-4254 (SQL injection vulnerability in view_Results.php in DreamLevels
...)
-	TODO: check
+	NOT-FOR-US: DreamLevels DreamPoll
 CVE-2005-4253 (Cross-site scripting (XSS) vulnerability in getdox.php in
Torrential ...)
-	TODO: check
+	NOT-FOR-US: Torrential
 CVE-2005-4252 (Cross-site scripting (XSS) vulnerability in mcGallery PRO 2.2
and ...)
-	TODO: check
+	NOT-FOR-US: mcGallery PRO
 CVE-2005-4251 (Multiple SQL injection vulnerabilities in mcGallery PRO 2.2 and
...)
-	TODO: check
+	NOT-FOR-US: mcGallery PRO
 CVE-2005-4250 (Directory traversal vulnerability in mcGallery PRO 2.2 and
earlier ...)
-	TODO: check
+	NOT-FOR-US: mcGallery PRO
 CVE-2005-4249 (ADP Forum 2.0 through 2.0.3 stores sensitive information in
plaintext ...)
-	TODO: check
+	NOT-FOR-US: ADP Forum
 CVE-2005-4248 (Multiple cross-site scripting (XSS) vulnerabilities in
QuickPayPro 3.1 ...)
-	TODO: check
+	NOT-FOR-US: QuickPayPro
 CVE-2005-4247 (Cross-site scripting (XSS) vulnerability in index.php in Plogger
Beta ...)
-	TODO: check
+	NOT-FOR-US: Plogger 
 CVE-2005-4246 (SQL injection vulnerability in Plogger Beta 2 and earlier allows
...)
-	TODO: check
+	NOT-FOR-US: Plogger 
 CVE-2005-4245 (Cross-site scripting (XSS) vulnerability in search.php in Snipe
...)
-	TODO: check
+	NOT-FOR-US: Snipe Gallery
 CVE-2005-4244 (SQL injection vulnerability in Snipe Gallery 3.1.4 and earlier
allows ...)
-	TODO: check
+	NOT-FOR-US: Snipe Gallery
 CVE-2005-4243 (Multiple SQL injection vulnerabilities in QuickPayPro 3.1 allow
remote ...)
-	TODO: check
+	NOT-FOR-US: QuickPayPro
 CVE-2005-4241 (Cross-site scripting (XSS) vulnerability in the category page in
...)
-	TODO: check
+	NOT-FOR-US: VCD-db 
 CVE-2005-4240 (SQL injection vulnerability in search.php in VCD-db 0.98 and
earlier ...)
-	TODO: check
+	NOT-FOR-US: VCD-db 
 CVE-2005-4239 (Cross-site scripting (XSS) vulnerability in
Search/DisplayResults.php ...)
-	TODO: check
+	NOT-FOR-US: PHP JackKnife
 CVE-2005-4238 (Cross-site scripting (XSS) vulnerability in
view_filters_page.php in ...)
-	TODO: check
+	- mantis <unfixed>
+	TODO: File bug
 CVE-2005-4237 (Cross-site scripting (XSS) vulnerability in MySQL Auction 3.0
and ...)
-	TODO: check
+	NOT-FOR-US: MySQL Auction 
 CVE-2005-4236 (Cross-site scripting (XSS) vulnerability in search.php in CKGOLD
...)
-	TODO: check
+	NOT-FOR-US: CKGOLD
 CVE-2005-4235 (Cross-site scripting (XSS) vulnerability in knowledgebase.php in
...)
-	TODO: check
+	NOT-FOR-US: WHMCompleteSolution 
 CVE-2005-4234 (SQL injection vulnerability in gallery.php in EncapsGallery
1.0.0 and ...)
-	TODO: check
+	NOT-FOR-US: EncapsGallery
 CVE-2005-4233 (SQL injection vulnerability in advertiser_statistic.php in Ad
Manager ...)
-	TODO: check
+	NOT-FOR-US: Ad Manager Pro
 CVE-2005-4232 (SQL injection vulnerability in index.php in Jamit Job Board
2.4.1 and ...)
-	TODO: check
-end claimed by jmm
+	NOT-FOR-US: Jamit Job Board
 CVE-2005-4231 (Cross-site scripting (XSS) vulnerability in Link Up Gold 2.5 and
...)
 	NOT-FOR-US: Link Up Gold
 CVE-2005-4230 (SQL injection vulnerability in poll.php in Link Up Gold 2.5 and
...)
Secure testing commits - Dec 2005 - r3065 - data/CVE

[Secure-testing-commits] r3065 - data/CVE
