Author: stef-guest Date: 2006-12-22 18:53:32 +0100 (Fri, 22 Dec 2006) New Revision: 5160 Modified: data/CVE/list Log: CVE-2006-6678: new netrik issue (medium) CVE-2006-6669: new webcalender issue (low) Modified: data/CVE/list ==================================================================--- data/CVE/list 2006-12-22 16:06:03 UTC (rev 5159) +++ data/CVE/list 2006-12-22 17:53:32 UTC (rev 5160) @@ -37,7 +37,7 @@ CVE-2006-6679 (Pedro Lineu Orso chetcpasswd before 2.4 relies on the X-Forwarded-For ...) - chetcpasswd <unfixed> (medium) CVE-2006-6678 (The edit_textarea function in form-file.c in Netrik 1.15.4 and earlier ...) - TODO: check + - netrik <unfixed> (medium; bug filed) CVE-2006-6677 (ESET NOD32 Antivirus before 1.1743 allows remote attackers to cause a ...) NOT-FOR-US: ESET NOD32 Antivirus CVE-2006-6676 (Integer overflow in ESET NOD32 Antivirus before 1.1743 allows remote ...) @@ -55,7 +55,7 @@ CVE-2006-6670 (Unspecified vulnerability in Nortel CallPilot 4.x Server has unknown ...) NOT-FOR-US: Nortel CallPilot CVE-2006-6669 (Cross-site scripting (XSS) vulnerability in export_handler.php in ...) - TODO: check + - webcalender <unfixed> (low; bug filed) CVE-2006-6668 (Cross-site scripting (XSS) vulnerability in VerliAdmin 0.3 and earlier ...) NOT-FOR-US: VerliAdmin CVE-2006-6667 (Multiple SQL injection vulnerabilities in VerliAdmin 0.3 and earlier ...)