Author: keescook-guest Date: 2007-02-15 22:54:35 +0100 (Thu, 15 Feb 2007) New Revision: 5462 Modified: data/CVE/list Log: [sarge] moin vuln Modified: data/CVE/list ==================================================================--- data/CVE/list 2007-02-15 07:04:13 UTC (rev 5461) +++ data/CVE/list 2007-02-15 21:54:35 UTC (rev 5462) @@ -19,9 +19,11 @@ CVE-2007-0903 (Unspecified vulnerability in the mod_roster_odbc module in ejabberd ...) - ejabberd 1.1.2-5 CVE-2007-0902 (Unspecified vulnerability in the "Show debugging information" feature ...) - TODO: check + - moin <not-affected> (Despite what the CVE says, this is not a problem in the 1.5.x code) + [sarge] - moin <unfixed> (bug #411084; medium) CVE-2007-0901 (Multiple cross-site scripting (XSS) vulnerabilities in Info pages in ...) - TODO: check + - moin <unfixed> (unimportant) + NOTE: this is a version information disclosure. CVE-2007-0900 (Multiple PHP remote file inclusion vulnerabilities in TagIt! Tagboard ...) NOT-FOR-US: TagIt! Tagboard CVE-2007-0899