Author: jmm-guest Date: 2006-06-08 12:28:44 +0000 (Thu, 08 Jun 2006) New Revision: 4165 Modified: data/CVE/list Log: drupal CVEfied Modified: data/CVE/list ==================================================================--- data/CVE/list 2006-06-08 11:33:47 UTC (rev 4164) +++ data/CVE/list 2006-06-08 12:28:44 UTC (rev 4165) @@ -405,9 +405,9 @@ CVE-2006-2744 (PHP remote file inclusion vulnerability in p-popupgallery.php in ...) TODO: check CVE-2006-2743 (Drupal 4.6.x before 4.6.7 and 4.7.0, when running on Apache with ...) - TODO: check + - drupal <unfixed> (bug #368835; medium) CVE-2006-2742 (SQL injection vulnerability in Drupal 4.6.x before 4.6.7 and 4.7.0 ...) - TODO: check + - drupal <unfixed> (medium) CVE-2006-2741 (Cross-site scripting (XSS) vulnerability in Epicdesigns tinyBB 0.3 ...) TODO: check CVE-2006-2740 (Multiple SQL injection vulnerabilities in Epicdesigns tinyBB 0.3 allow ...) @@ -606,9 +606,6 @@ - mkvtoolnix <unfixed> (bug #370144; low) CVE-2006-XXXX [''Cache'' shell injection vulnerability] - wordpress 2.0.3-1 (high; bug #369014) -CVE-2006-XXXX [drupal: Execution of arbitrary files in certain Apache configurations] - - drupal <unfixed> (bug #368835; medium) - NOTE: Micah requested CVE, June 6, 2006 CVE-2006-2753 (SQL injection vulnerability in MySQL 4.1.x before 4.1.20 and 5.0.x ...) - mysql-dfsg <not-affected> (Vulnerable code was introduced in 4.1) - mysql <not-affected> (Vulnerable code was introduced in 4.1)