Author: enerv-guest Date: 2007-01-12 14:46:21 +0100 (Fri, 12 Jan 2007) New Revision: 5249 Modified: data/CVE/list Log: Update CVEs entries, changed severity in CVE-2006-6772 to high. Modified: data/CVE/list ==================================================================--- data/CVE/list 2007-01-12 12:51:34 UTC (rev 5248) +++ data/CVE/list 2007-01-12 13:46:21 UTC (rev 5249) @@ -124,13 +124,13 @@ CVE-2007-0149 (EMembersPro 1.0 stores sensitive information under the web root with ...) NOT-FOR-US: EMembersPro CVE-2007-0148 (Format string vulnerability in OmniGroup OmniWeb 5.5.1 allows remote ...) - TODO: check + TODO: OminiGroup CVE-2007-0147 (Cuyahoga before 1.0.1 installs the FCKEditor component with an ...) - TODO: check + NOT-FOR-US: Cuyahoga CVE-2007-0146 (Multiple cross-site scripting (XSS) vulnerabilities in Fix and Chips ...) - TODO: check + TODO: Fix and Chips CVE-2007-0145 (PHP remote file inclusion vulnerability in bn_smrep1.php in BinGoPHP ...) - TODO: check + TODO: BinGoPHP CVE-2007-0144 (Cross-site scripting (XSS) vulnerability in search.asp in Digitizing ...) TODO: check CVE-2007-0143 (Multiple PHP remote file inclusion vulnerabilities in NUNE News Script ...) @@ -721,7 +721,7 @@ CVE-2006-6773 (pages/register/register.php in Fishyshoop 0.930 beta allows remote ...) NOT-FOR-US: Fishyshoop CVE-2006-6772 (Format string vulnerability in w3m 0.5.1, when run with the dump or ...) - - w3m 0.5.1-5.1 (low; bug #404564) + - w3m 0.5.1-5.1 (bug #404564; high) TODO: Check w3mee, is this forked version still needed? CVE-2006-6771 (Multiple PHP remote file inclusion vulnerabilities in Irokez CMS 0.7.1 ...) NOT-FOR-US: Irokez CMS