Author: alec-guest
Date: 2006-07-08 18:34:08 +0000 (Sat, 08 Jul 2006)
New Revision: 4358
Modified:
data/CVE/list
Log:
NOT-FOR-US
Modified: data/CVE/list
==================================================================---
data/CVE/list 2006-07-08 16:07:40 UTC (rev 4357)
+++ data/CVE/list 2006-07-08 18:34:08 UTC (rev 4358)
@@ -386,67 +386,67 @@
CVE-2006-3165 (SQL injection vulnerability in propview.php in Free Realty
2.9-0.7 and ...)
NOT-FOR-US: Free Realty
CVE-2006-3164 (SQL injection vulnerability in category.php in TPL Design
tplShop 2.0 ...)
- TODO: check
+ NOT-FOR-US: tplShop
CVE-2006-3163 (Multiple SQL injection vulnerabilities in galeria.php in
IMGallery 2.4 ...)
- TODO: check
+ NOT-FOR-US: IMGallery
CVE-2006-3162 (PHP remote file inclusion vulnerability in include/inc_foot.php
in ...)
- TODO: check
+ NOT-FOR-US: SmartSiteCMS
CVE-2006-3161 (SQL injection vulnerability in misc.php in SaphpLesson 1.1 and
earlier ...)
- TODO: check
+ NOT-FOR-US: SaphpLesson
CVE-2006-3160 (Cross-site scripting (XSS) vulnerability in fm.php in Simple
File ...)
- TODO: check
+ NOT-FOR-US: Simple File Manager
CVE-2006-3159 (pipe_master in Sun ONE/iPlanet Messaging Server 5.2 HotFix 1.16
(built ...)
- TODO: check
+ NOT-FOR-US: Sun ONE/iPlanet Messaging Server
CVE-2006-3158 (index.php in Eduha Meeting does not properly restrict file
extensions ...)
- TODO: check
+ NOT-FOR-US: Eduha Meeting
CVE-2006-3157 (Cross-site scripting (XSS) vulnerability in index.php in
Thinkfactory ...)
- TODO: check
+ NOT-FOR-US: UltimateGoogle
CVE-2006-3156 (Cross-site scripting (XSS) vulnerability in index.cgi in
Ultimate ...)
- TODO: check
+ NOT-FOR-US: Ultimate eShop
CVE-2006-3155 (Multiple cross-site scripting (XSS) vulnerabilities in Ultimate
...)
- TODO: check
+ NOT-FOR-US: Ultimate Auction
CVE-2006-3154 (SQL injection vulnerability in index.pl in Ultimate Estate 1.0
and ...)
- TODO: check
+ NOT-FOR-US: Ultimate Estate
CVE-2006-3153 (Cross-site scripting (XSS) vulnerability in index.pl in Ultimate
...)
- TODO: check
+ NOT-FOR-US: Ultimate Estate
CVE-2006-3152 (Multiple SQL injection vulnerabilities in phpTRADER 4.9 SP5 and
...)
- TODO: check
+ NOT-FOR-US: phpTRADER
CVE-2006-3151 (Cross-site scripting (XSS) vulnerability in index.php in
AssoCIateD ...)
- TODO: check
+ NOT-FOR-US: AssoCIateD
CVE-2006-3150 (SQL injection vulnerability in index.php in CavoxCms 1.0.16 and
...)
- TODO: check
+ NOT-FOR-US: CavoxCms
CVE-2006-3149 (Cross-site scripting (XSS) vulnerability in topic.php in
phpMyForum ...)
- TODO: check
+ NOT-FOR-US: phpMyForum
CVE-2006-3148 (SQL injection vulnerability, possibly in search.inc.php, in ...)
- TODO: check
+ NOT-FOR-US: Open-Realty
CVE-2006-3147 (Unspecified vulnerability in Hosting Controller before 6.1 (aka
Hotfix ...)
- TODO: check
+ NOT-FOR-US: Hosting Controller
CVE-2006-3146 (The TOSRFBD.SYS driver for Toshiba Bluetooth Stack 4.00.23 and
earlier ...)
- TODO: check
+ NOT-FOR-US: Toshiba drivers for Windows
CVE-2006-3145 (Buffer overflow in pamtofits of NetPBM 10.30 through 10.33
allows ...)
- netpbm-free <not-affected> (Debian''s version is too old;
affects 10.30 to 10.33 only)
CVE-2006-3144 (PHP remote file inclusion vulnerability in microcms-include.php
in IBD ...)
- TODO: check
+ NOT-FOR-US: IBD Micro CMS
CVE-2006-3143 (Cross-site scripting (XSS) vulnerability in icue_login.asp in
Maximus ...)
- TODO: check
+ NOT-FOR-US: Maximus SchoolMAX
CVE-2006-3142 (SQL injection vulnerability in Forum.php in VBZooM 1.11 allows
remote ...)
- TODO: check
+ NOT-FOR-US: VBZooM
CVE-2006-3141 (Cross-site scripting (XSS) vulnerability in details.cfm in
Tradingeye ...)
- TODO: check
+ NOT-FOR-US: Tradingeye Shop
CVE-2006-3140 (SQL injection vulnerability in index.php in openCI 1.0 BETA
0.20.1 and ...)
- TODO: check
+ NOT-FOR-US: openCI
CVE-2006-3139 (Multiple SQL injection vulnerabilities in war.php in Virtual War
1.5.0 ...)
- TODO: check
+ NOT-FOR-US: Virtual War
CVE-2006-3138 (Multiple cross-site scripting (XSS) vulnerabilities in
phpMyDirectory ...)
- TODO: check
+ NOT-FOR-US: phpMyDirectory
CVE-2006-3137 (Cross-site scripting (XSS) vulnerability in productDetail.asp in
Edge ...)
- TODO: check
+ NOT-FOR-US: Edge eCommerce Shop
CVE-2006-3136 (Multiple PHP remote file inclusion vulnerabilities in Nucleus
3.23 ...)
- TODO: check
+ NOT-FOR-US: Nucleus
CVE-2006-3135
RESERVED
CVE-2006-3134 (Buffer overflow in GraceNote CDDBControl ActiveX Control, as
used by ...)
- TODO: check
+ NOT-FOR-US: GraceNote ActiveX Control
CVE-2006-3133
RESERVED
CVE-2006-3132 (Cross-site scripting (XSS) vulnerability in qtofm.php4 in ...)
@@ -483,9 +483,9 @@
{DSA-1104}
- openoffice.org 2.0.3-1
CVE-2006-3116 (Multiple PHP remote file inclusion vulnerabilities in phpRaid
3.0.4 ...)
- TODO: check
+ NOT-FOR-US: phpRaid
CVE-2006-3115 (SQL injection vulnerability in view.php in phpRaid 3.0.4, and
possibly ...)
- TODO: check
+ NOT-FOR-US: phpRaid
CVE-2006-3114
RESERVED
CVE-2006-3113
@@ -639,9 +639,9 @@
CVE-2006-3042 (** DISPUTED ** ...)
NOT-FOR-US: ISPConfig
CVE-2006-3041 (** DISPUTED ** ...)
- TODO: check
+ NOT-FOR-US: Codewalkers Ltwcalendar
CVE-2006-3040 (** DISPUTED ** ...)
- TODO: check
+ NOT-FOR-US: Amr Talkbox
CVE-2006-3039 (Cross-site scripting (XSS) vulnerability in index.php in
Cescripts ...)
NOT-FOR-US: Cescripts Realty Home Rent
CVE-2006-3038 (Cross-site scripting (XSS) vulnerability in index.php in
Cescripts ...)