Author: stef-guest Date: 2006-09-03 19:31:42 +0000 (Sun, 03 Sep 2006) New Revision: 4668 Modified: data/CVE/list Log: some NFUs Modified: data/CVE/list ==================================================================--- data/CVE/list 2006-09-03 18:52:45 UTC (rev 4667) +++ data/CVE/list 2006-09-03 19:31:42 UTC (rev 4668) @@ -19,29 +19,29 @@ CVE-2006-4428 (** DISPUTED ** ...) NOT-FOR-US: Jupiter CMS CVE-2006-4427 (index.php in eFiction before 2.0.7 allows remote attackers to bypass ...) - TODO: check + NOT-FOR-US: eFiction CVE-2006-4426 (PHP remote file inclusion vulnerability in ...) - TODO: check + NOT-FOR-US: AlberT-EasySite CVE-2006-4425 (Multiple PHP remote file inclusion vulnerabilities in phpCOIN 1.2.3 ...) - TODO: check + NOT-FOR-US: phpCOIN CVE-2006-4424 (PHP remote file inclusion vulnerability in coin_includes/constants.php ...) - TODO: check + NOT-FOR-US: phpCOIN CVE-2006-4423 (Multiple PHP remote file inclusion vulnerabilities in Bigace 1.8.2 ...) - TODO: check + NOT-FOR-US: Bigace CVE-2006-4422 (PHP remote file inclusion vulnerability in ...) - TODO: check + NOT-FOR-US: Jetbox CMS CVE-2006-4421 (Cross-site scripting (XSS) vulnerability in ...) - TODO: check + NOT-FOR-US: Yet Another PHP Image Gallery CVE-2006-4420 (Directory traversal vulnerability in include_lang.php in Phaos 0.9.2 ...) - TODO: check + NOT-FOR-US: Phaos CVE-2006-4419 (SQL injection vulnerability in note.php in ProManager 0.73 allows ...) - TODO: check + NOT-FOR-US: ProManager CVE-2006-4418 (Directory traversal vulnerability in index.php for Wikepage 2006.2a ...) - TODO: check + NOT-FOR-US: Wikepage CVE-2006-4417 (SQL injection vulnerability in edituser.php in Xoops before 2.0.15 ...) - TODO: check + NOT-FOR-US: Xoops CVE-2006-4416 (Untrusted search path vulnerability in the mkvg command in IBM AIX 5.2 ...) - TODO: check + NOT-FOR-US: IBM AIX CVE-2006-4415 RESERVED CVE-2006-4414 @@ -117,27 +117,27 @@ CVE-2006-4379 RESERVED CVE-2006-4378 (** DISPUTED ** ...) - TODO: check + NOT-FOR-US: Rssxt component for Joomla! (com_rssxt) CVE-2006-4377 (Multiple SQL injection vulnerabilities in Guder und Koch ...) - TODO: check + NOT-FOR-US: Eichhorn Portal CVE-2006-4376 (Multiple cross-site scripting (XSS) vulnerabilities in Guder und Koch ...) - TODO: check + NOT-FOR-US: Eichhorn Portal CVE-2006-4375 (** DISPUTED ** ...) - TODO: check + NOT-FOR-US: Contacts XTD (ContXTD) component for Mambo (com_contxtd) CVE-2006-4374 (IrfanView 3.98 (with plugins) allows user-assisted attackers to cause ...) - TODO: check + NOT-FOR-US: IrfanView CVE-2006-4373 (PHP remote file inclusion vulnerability in ...) - TODO: check + NOT-FOR-US: pSlash CVE-2006-4372 (PHP remote file inclusion vulnerability in admin.lurm_constructor.php ...) - TODO: check + NOT-FOR-US: Lurm Constructor component (com_lurm_constructor) for Mambo CVE-2006-4371 (Multiple directory traversal vulnerabilities in Alt-N WebAdmin 3.2.3 ...) - TODO: check + NOT-FOR-US: Alt-N WebAdmin CVE-2006-4370 (Alt-N WebAdmin 3.2.3 and 3.2.4 running with MDaemon 9.0.5, and ...) - TODO: check + NOT-FOR-US: Alt-N WebAdmin CVE-2006-4369 (Absolute path traversal vulnerability in includes/functions_portal.php ...) - TODO: check + NOT-FOR-US: IntegraMOD Portal CVE-2006-4368 (PHP remote file inclusion vulnerability in ...) - TODO: check + NOT-FOR-US: IntegraMOD Portal CVE-2006-4367 (SQL injection vulnerability in alltopics.php in the All Topics Hack ...) TODO: check CVE-2006-4366 (PHP remote file inclusion vulnerability in index.php in RedBLoG 0.5 ...) @@ -153,7 +153,7 @@ CVE-2006-4361 (Multiple cross-site scripting (XSS) vulnerabilities in ...) NOT-FOR-US: Diesel Job Site CVE-2006-4360 (Cross-site scripting (XSS) vulnerability in E-commerce 4.7 for Drupal ...) - TODO: check + NOT-FOR-US: E-commerce for Drupal CVE-2006-4359 (Stack-based buffer overflow in Trident Software PowerZip 7.06 Build ...) NOT-FOR-US: PowerZip CVE-2006-4358 (Cross-site scripting (XSS) vulnerability in index.php in Diesel Pay ...) @@ -161,9 +161,9 @@ CVE-2006-4357 (PHP remote file inclusion vulnerability in clients/index.php in Diesel ...) NOT-FOR-US: Diesel Smart Traffic CVE-2006-4356 (SQL injection vulnerability in Drupal Easylinks Module ...) - TODO: check + NOT-FOR-US: Easylinks Module for Drupal CVE-2006-4355 (Cross-site scripting (XSS) vulnerability in Drupal Easylinks Module ...) - TODO: check + NOT-FOR-US: Easylinks Module for Drupal CVE-2006-4354 (PHP remote file inclusion vulnerability in e/class/CheckLevel.php in ...) NOT-FOR-US: Phome Empire CMS CVE-2006-4353 (Unspecified vulnerability in Sun Java System Content Delivery Server ...) @@ -185,7 +185,7 @@ CVE-2006-4345 (Stack-based buffer overflow in channels/chan_mgcp.c in MGCP in ...) - asterisk 1:1.2.11.dfsg-1 (medium; bug #385060) CVE-2006-4344 (CRLF injection vulnerability in CGI-Rescue Mail F/W System (formd) ...) - TODO: check + NOT-FOR-US: CGI-Rescue Mail F/W System CVE-2006-4343 RESERVED CVE-2006-4342 @@ -312,7 +312,7 @@ CVE-2006-4288 (PHP remote file inclusion vulnerability in admin.a6mambocredits.php in ...) NOT-FOR-US: a6mambocredits component (com_a6mambocredits) for Mambo CVE-2006-4287 (Multiple PHP remote file inclusion vulnerabilities in NES Game and NES ...) - TODO: check + NOT-FOR-US: NES Game and NES System CVE-2006-4286 (PHP remote file inclusion vulnerability in contentpublisher.php in the ...) NOT-FOR-US: contentpublisher component (com_contentpublisher) for Mambo CVE-2006-4285 (PHP remote file inclusion vulnerability in news.php in Fantastic News ...)