Author: stef-guest Date: 2006-09-02 12:09:12 +0000 (Sat, 02 Sep 2006) New Revision: 4665 Modified: data/CVE/list Log: some NFUs Modified: data/CVE/list ==================================================================--- data/CVE/list 2006-09-02 12:01:55 UTC (rev 4664) +++ data/CVE/list 2006-09-02 12:09:12 UTC (rev 4665) @@ -139,45 +139,45 @@ CVE-2006-4367 (SQL injection vulnerability in alltopics.php in the All Topics Hack ...) TODO: check CVE-2006-4366 (PHP remote file inclusion vulnerability in index.php in RedBLoG 0.5 ...) - TODO: check + NOT-FOR-US: RedBLoG CVE-2006-4365 (Multiple PHP remote file inclusion vulnerabilities in VistaBB 2.0.33 ...) - TODO: check + NOT-FOR-US: VistaBB CVE-2006-4364 (Multiple heap-based buffer overflows in the POP3 server in Alt-N ...) - TODO: check + NOT-FOR-US: Alt-N Technologies MDaemon CVE-2006-4363 (PHP remote file inclusion vulnerability in admin.cropcanvas.php in the ...) - TODO: check + NOT-FOR-US: CropImage component (com_cropimage) for Mambo CVE-2006-4362 (Cross-site scripting (XSS) vulnerability in getad.php in Diesel Paid ...) - TODO: check + NOT-FOR-US: Diesel Paid Mail CVE-2006-4361 (Multiple cross-site scripting (XSS) vulnerabilities in ...) - TODO: check + NOT-FOR-US: Diesel Job Site CVE-2006-4360 (Cross-site scripting (XSS) vulnerability in E-commerce 4.7 for Drupal ...) TODO: check CVE-2006-4359 (Stack-based buffer overflow in Trident Software PowerZip 7.06 Build ...) - TODO: check + NOT-FOR-US: PowerZip CVE-2006-4358 (Cross-site scripting (XSS) vulnerability in index.php in Diesel Pay ...) - TODO: check + NOT-FOR-US: Diesel Pay CVE-2006-4357 (PHP remote file inclusion vulnerability in clients/index.php in Diesel ...) - TODO: check + NOT-FOR-US: Diesel Smart Traffic CVE-2006-4356 (SQL injection vulnerability in Drupal Easylinks Module ...) TODO: check CVE-2006-4355 (Cross-site scripting (XSS) vulnerability in Drupal Easylinks Module ...) TODO: check CVE-2006-4354 (PHP remote file inclusion vulnerability in e/class/CheckLevel.php in ...) - TODO: check + NOT-FOR-US: Phome Empire CMS CVE-2006-4353 (Unspecified vulnerability in Sun Java System Content Delivery Server ...) - TODO: check + NOT-FOR-US: Sun Java System Content Delivery Server CVE-2006-4352 (The ArrowPoint cookie functionality for Cisco 11000 series Content ...) - TODO: check + NOT-FOR-US: Cisco CVE-2006-4351 (Cross-site scripting (XSS) vulnerability in index.php in OneOrZero ...) - TODO: check + NOT-FOR-US: OneOrZero CVE-2006-4350 (SQL injection vulnerability in index.php in OneOrZero 1.6.4.1 allows ...) - TODO: check + NOT-FOR-US: OneOrZero CVE-2006-4349 (** DISPUTED ** ...) - TODO: check + NOT-FOR-US: ToendaCMS CVE-2006-4348 (PHP remote file inclusion vulnerability in config.kochsuite.php in the ...) - TODO: check + NOT-FOR-US: Kochsuite (com_kochsuite) component for Mambo and Joomla! CVE-2006-4347 (SQL injection vulnerability in user logon authentication request ...) - TODO: check + NOT-FOR-US: Cool Manager CVE-2006-4346 (Asterisk 1.2.10 supports the use of client-controlled variables to ...) - asterisk <unfixed> (medium; bug #385060) CVE-2006-4345 (Stack-based buffer overflow in channels/chan_mgcp.c in MGCP in ...) @@ -308,11 +308,11 @@ CVE-2006-4289 (Buffer overflow in Sony VAIO Media Server 2.x, 3.x, 4.x, and 5.x ...) NOT-FOR-US: Sony CVE-2006-4288 (PHP remote file inclusion vulnerability in admin.a6mambocredits.php in ...) - TODO: check + NOT-FOR-US: a6mambocredits component (com_a6mambocredits) for Mambo CVE-2006-4287 (Multiple PHP remote file inclusion vulnerabilities in NES Game and NES ...) TODO: check CVE-2006-4286 (PHP remote file inclusion vulnerability in contentpublisher.php in the ...) - TODO: check + NOT-FOR-US: contentpublisher component (com_contentpublisher) for Mambo CVE-2006-4285 (PHP remote file inclusion vulnerability in news.php in Fantastic News ...) NOT-FOR-US: Fantastic News CVE-2006-4284 (SQL injection vulnerability in comments.asp in LBlog 1.05 and earlier ...)