Author: stef-guest Date: 2006-07-09 17:55:50 +0000 (Sun, 09 Jul 2006) New Revision: 4361 Modified: data/CVE/list Log: tikiwiki fixed and uploaded to unstable. new trac issues. Modified: data/CVE/list ==================================================================--- data/CVE/list 2006-07-09 11:21:05 UTC (rev 4360) +++ data/CVE/list 2006-07-09 17:55:50 UTC (rev 4361) @@ -1,3 +1,5 @@ +CVE-2006-XXXX [trac: reStructuredText breach of privacy and denial of service] + - trac 0.9.6-1 CVE-2006-3458 [information disclosure vulnerability in Zope2] - zope2.7 <unfixed> (bug #377285; medium) - zope2.8 <unfixed> (bug #377277; medium) @@ -625,11 +627,9 @@ CVE-2006-3049 (Multiple cross-site scripting (XSS) vulnerabilities in booking3.php in ...) NOT-FOR-US: Mole Group Ticket Booking Script CVE-2006-3048 (SQL injection vulnerability in TikiWiki 1.9.3.2 and possibly earlier ...) - - tikiwiki <unfixed> (medium) - NOTE: only in experimental + - tikiwiki 1.9.4-1 (medium) CVE-2006-3047 (Cross-site scripting (XSS) vulnerability in TikiWiki 1.9.3.2 and ...) - - tikiwiki <unfixed> (medium) - NOTE: only in experimental + - tikiwiki 1.9.4-1 (medium) CVE-2006-3046 (Unspecified vulnerability in the admin login feature in Subtext 1.5, ...) NOT-FOR-US: Subtext CVE-2006-3045 (PHP remote file inclusion vulnerability in manage_songs.php in Foing ...) @@ -1590,8 +1590,7 @@ CVE-2006-2636 (newsadmin.asp in Katy Whitton NewsCMSLite allows remote attackers to ...) NOT-FOR-US: Katy Whitton NewsCMSLite CVE-2006-2635 (Multiple cross-site scripting (XSS) vulnerabilities in Tikiwiki (aka ...) - - tikiwiki <unfixed> (medium) - NOTE: only in experimental + - tikiwiki 1.9.4-1 (medium) CVE-2006-2634 (Cross-site scripting (XSS) vulnerability in Neocrome Land Down Under ...) NOT-FOR-US: Neocrome Seditio CVE-2006-2633 (Absolute path traversal vulnerability in the copy action in index.php ...)