Author: stef-guest Date: 2006-04-17 19:58:02 +0000 (Mon, 17 Apr 2006) New Revision: 3822 Modified: data/CVE/list Log: some more NFUs Modified: data/CVE/list ==================================================================--- data/CVE/list 2006-04-17 19:48:09 UTC (rev 3821) +++ data/CVE/list 2006-04-17 19:58:02 UTC (rev 3822) @@ -499,13 +499,13 @@ - php4 <unfixed> (bug #361856) - php5 <unfixed> (bug #361915) CVE-2006-1607 (Unspecified vulnerability in the banner module in Exponent CMS before ...) - TODO: check + NOT-FOR-US: Exponent CMS CVE-2006-1606 (Unspecified vulnerability in the image module in Exponent CMS before ...) - TODO: check + NOT-FOR-US: Exponent CMS CVE-2006-1605 (Unspecified vulnerability in the image module in Exponent CMS before ...) - TODO: check + NOT-FOR-US: Exponent CMS CVE-2006-1604 (Unspecified vulnerability in Exponent CMS before 0.96.5 RC 1 has ...) - TODO: check + NOT-FOR-US: Exponent CMS CVE-2006-1603 (Cross-site scripting (XSS) vulnerability in profile.php in phpBB ...) - phpbb2 <not-affected> (According to Jeroen a non-issue, see notes) NOTE: <jvw> jmm: unable to everify, the variable in question is only printed @@ -514,19 +514,19 @@ NOTE: javascript in your password can''t be exposed otherwise NOTE: <jvw> I''d forget about it unless someone comes with a proof of concept CVE-2006-1602 (PHP remote file inclusion vulnerability in ...) - TODO: check + NOT-FOR-US: PHPNuke Clan CVE-2006-1601 (Unspecified vulnerability in SunPlex Manager in Sun Cluster 3.1 4/04 ...) - TODO: check + NOT-FOR-US: Sun Cluster CVE-2006-1600 (SQL injection vulnerability in category.php in PhpWebGallery 1.4.1 ...) - TODO: check + NOT-FOR-US: PhpWebGallery CVE-2006-1599 (Unspecified vulnerability in VCEngine.php in v-creator before ...) - TODO: check + NOT-FOR-US: v-creator CVE-2006-1598 (AN HTTPD 1.42n, and possibly other versions before 1.42p, allows ...) - TODO: check + NOT-FOR-US: AN HTTPD CVE-2006-1597 RESERVED CVE-2006-1596 (PHP remote file inclusion vulnerability in ...) - TODO: check + NOT-FOR-US: Claroline CVE-2006-1595 (Cross-site scripting (XSS) vulnerability in document/rqmkhtml.php in ...) TODO: check CVE-2006-1594 (Multiple directory traversal vulnerabilities in document/rqmkhtml.php ...)