Author: stef-guest Date: 2006-08-08 19:05:15 +0000 (Tue, 08 Aug 2006) New Revision: 4526 Modified: data/CVE/list Log: - CVE-2006-4002: new drupal XSS - bomberclone bugnum Modified: data/CVE/list ==================================================================--- data/CVE/list 2006-08-08 18:53:51 UTC (rev 4525) +++ data/CVE/list 2006-08-08 19:05:15 UTC (rev 4526) @@ -23,15 +23,15 @@ CVE-2006-4007 (PHP remote file inclusion vulnerability in index.php in Knusperleicht ...) NOT-FOR-US: Knusperleicht Faq CVE-2006-4006 (The do_gameinfo functionin BomberClone 0.11.6 and earlier, and ...) - - bomberclone <unfixed> (bug filed; medium) + - bomberclone <unfixed> (bug #382082; medium) CVE-2006-4005 (BomberClone 0.11.6 and earlier allows remote attackers to cause a ...) - - bomberclone <unfixed> (bug filed; medium) + - bomberclone <unfixed> (bug #382082; medium) CVE-2006-4004 (Directory traversal vulnerability in index.php in vbPortal 3.0.2 ...) NOT-FOR-US: vbPortal CVE-2006-4003 (The config method in Henrik Storner Hobbit monitor before 4.1.2p2 ...) NOT-FOR-US: Henrik Storner Hobbit monitor CVE-2006-4002 (Cross-site scripting (XSS) vulnerability in user.module in Drupal 4.6 ...) - TODO: check + - drupal <unfixed> (bug filed; medium) CVE-2006-4001 (Login.pm in Barracuda Spam Firewall (BSF) 3.3.01.001 through ...) NOT-FOR-US: Barracuda Spam Firewall CVE-2006-4000 (Directory traversal vulnerability in cgi-bin/preview_email.cgi in ...)