Author: nion Date: 2007-12-29 02:38:31 +0000 (Sat, 29 Dec 2007) New Revision: 7751 Modified: data/CVE/list Log: NFUs CVE-2007-6538 does not affect moodle tikiwiki was removed Modified: data/CVE/list ==================================================================--- data/CVE/list 2007-12-29 02:14:41 UTC (rev 7750) +++ data/CVE/list 2007-12-29 02:38:31 UTC (rev 7751) @@ -5,79 +5,79 @@ CVE-2007-6562 (Multiple stack-based buffer overflows in the use of FD_SET in TCPreen ...) - tcpreen 1.4.3-0.3 (medium; bug #457781) CVE-2007-6561 (Multiple stack-based buffer overflows in PDFLib allow user-assisted ...) - TODO: check + NOT-FOR-US: PDFLib CVE-2007-6560 (Multiple cross-site scripting (XSS) vulnerabilities in Logaholic allow ...) - TODO: check + NOT-FOR-US: Logaholic CVE-2007-6559 (Multiple SQL injection vulnerabilities in Logaholic allow remote ...) - TODO: check + NOT-FOR-US: Logaholic CVE-2007-6558 (TotalPlayer 3.0 allows user-assisted remote attackers to cause a ...) - TODO: check + NOT-FOR-US: TotalPlayer CVE-2007-6557 (Multiple SQL injection vulnerabilities in MeGaCheatZ 1.1 allow remote ...) - TODO: check + NOT-FOR-US: MeGaCheatZ CVE-2007-6556 (Multiple SQL injection vulnerabilities in websihirbazi 5.1.1 allow ...) - TODO: check + NOT-FOR-US: websihirbazi CVE-2007-6555 (PHP remote file inclusion vulnerability in modules/mod_pxt_latest.php ...) - TODO: check + NOT-FOR-US: Joomla! extension CVE-2007-6554 (Multiple directory traversal vulnerabilities in TeamCal Pro 3.1.000 ...) - TODO: check + NOT-FOR-US: TeamCal CVE-2007-6553 (Multiple PHP remote file inclusion vulnerabilities in TeamCal Pro ...) - TODO: check + NOT-FOR-US: TeamCal CVE-2007-6552 (Directory traversal vulnerability in index.php in AuraCMS 2.2 allows ...) - TODO: check + NOT-FOR-US: AuraCMS CVE-2007-6551 (SQL injection vulnerability in showMsg.php in MailMachine Pro 2.2.4 ...) - TODO: check + NOT-FOR-US: MailMachine CVE-2007-6550 (form.php in PMOS Help Desk 2.4 and earlier sends a redirect to the web ...) - TODO: check + NOT-FOR-US: PMOS Help Desk CVE-2007-6549 (Unspecified vulnerability in RunCMS before 1.6.1 has unknown impact ...) - TODO: check + NOT-FOR-US: RunCMS CVE-2007-6548 (Multiple direct static code injection vulnerabilities in RunCMS before ...) - TODO: check + NOT-FOR-US: RunCMS CVE-2007-6547 (RunCMS before 1.6.1 does not require entry of the old password during ...) - TODO: check + NOT-FOR-US: RunCMS CVE-2007-6546 (RunCMS before 1.6.1 uses a predictable session id, which makes it ...) - TODO: check + NOT-FOR-US: RunCMS CVE-2007-6545 (Multiple cross-site scripting (XSS) vulnerabilities in RunCMS before ...) - TODO: check + NOT-FOR-US: RunCMS CVE-2007-6544 (Multiple SQL injection vulnerabilities in RunCMS before 1.6.1 allow ...) - TODO: check + NOT-FOR-US: RunCMS CVE-2007-6543 (SQL injection vulnerability in suggest-link.php in eSyndiCat Link ...) - TODO: check + NOT-FOR-US: eSyndiCat Link Exchange Script CVE-2007-6542 (PHP remote file inclusion vulnerability in admin/frontpage_right.php ...) - TODO: check + NOT-FOR-US: Arcadem LEArcadem LE CVE-2007-6541 (Multiple cross-site scripting (XSS) vulnerabilities in neuron news 1.0 ...) - TODO: check + NOT-FOR-US: neuron news CVE-2007-6540 (SQL injection vulnerability in neuron news 1.0 allows remote attackers ...) - TODO: check + NOT-FOR-US: neuron news CVE-2007-6539 (PHP local file inclusion vulnerability in index.php in IDevspot ...) - TODO: check + NOT-FOR-US: IDevspot iSupport CVE-2007-6538 (SQL injection vulnerability in ing/blocks/mrbs/code/web/view_entry.php ...) - TODO: check + - moodle <not-affected> (Vulnerable code not present, third party module) CVE-2007-6537 (Stack-based buffer overflow in the zfile_gunzip function in zfile.c in ...) - TODO: check + NOT-FOR-US: WinUAE CVE-2007-6536 (The Custom Button Installer dialog in Google Toolbar 4 and 5 beta ...) TODO: check CVE-2007-6535 (Buffer overflow in the YShortcut ActiveX control in YShortcut.dll ...) - TODO: check + NOT-FOR-US: YShortcut ActiveX control CVE-2007-6534 (Multiple unspecified vulnerabilities in Microsoft Office Publisher ...) - TODO: check + NOT-FOR-US: Microsoft Office Publisher CVE-2007-6533 (Buffer overflow in Zoom Player 6.00 beta 2 and earlier allows ...) - TODO: check + NOT-FOR-US: Zoom Player CVE-2007-6532 RESERVED CVE-2007-6531 RESERVED CVE-2007-6530 (Buffer overflow in the XUpload.ocx ActiveX control in Persits Software ...) - TODO: check + NOT-FOR-US: XUpload CVE-2007-6529 (Multiple unspecified vulnerabilities in TikiWiki before 1.9.9 have ...) - TODO: check + - tikiwiki <removed> CVE-2007-6528 (Directory traversal vulnerability in tiki-listmovies.php in TikiWiki ...) - TODO: check + - tikiwiki <removed> CVE-2007-6527 (uploadimg.php in the Automatic Image Upload with Thumbnails ...) TODO: check CVE-2007-6526 (Cross-site scripting (XSS) vulnerability in tiki-special_chars.php in ...) - TODO: check + - tikiwiki <removed> CVE-2007-6525 (Unspecified vulnerability in eClient in IBM DB2 Content Manager (CM) ...) - TODO: check + NOT-FOR-US: IBM DB2 Content Manager CVE-2007-6524 (Opera before 9.25 allows remote attackers to obtain potentially ...) NOT-FOR-US: Opera CVE-2007-6523 (Algorithmic complexity vulnerability in Opera 9.50 beta and 9.x before ...)