Author: jmm-guest Date: 2006-01-10 00:43:37 +0000 (Tue, 10 Jan 2006) New Revision: 3256 Modified: data/CVE/list Log: unimportant phpbb2 issue Modified: data/CVE/list ==================================================================--- data/CVE/list 2006-01-10 00:40:55 UTC (rev 3255) +++ data/CVE/list 2006-01-10 00:43:37 UTC (rev 3256) @@ -199,7 +199,10 @@ CVE-2006-0064 (PHP remote file include vulnerability in includes/orderSuccess.inc.php ...) NOT-FOR-US: CubeCart CVE-2006-0063 (Cross-site scripting (XSS) vulnerability in phpBB 2.0.19, when ...) - TODO: check + - phpbb2 (unimportant) + [sarge] - phpbb2 <no-dsa> (Affects only an inherently unsafe option only suitable for trusted users) + NOTE: According to the maintainer only affects a config option that is strongly + NOTE: discouraged due to potential security problems CVE-2005-4617 (SQL injection vulnerability in tickets.php in cSupport 1.0 and earlier ...) NOT-FOR-US: cSupport CVE-2005-4616 (SQL injection vulnerability in index.php in iSupport 1.06 allows ...) @@ -1393,7 +1396,7 @@ CVE-2005-4086 (Directory traversal vulnerability in acceptDecline.php in Sugar Suite ...) NOT-FOR-US: SugarCRM CVE-2005-4085 (Buffer overflow in BlueCoat WinProxy before 6.1a allows remote ...) - TODO: check + NOT-FOR-US: BlueCoat WinProxy CVE-2005-4084 (xs_edit.php in the phpBB eXtreme Styles module 2.2.1 and earlier ...) NOT-FOR-US: phpBB eXtreme Styles module CVE-2005-4083 (Directory traversal vulnerability in xs_edit.php in the eXtreme Styles ...) @@ -2554,7 +2557,7 @@ CVE-2006-0001 RESERVED CVE-2005-3714 (The network interface for Apple AirPort Express 6.x before Firmware ...) - TODO: check + NOT-FOR-US: Apple AirPort CVE-2005-3713 RESERVED CVE-2005-3712