Author: nion Date: 2008-01-27 15:34:19 +0000 (Sun, 27 Jan 2008) New Revision: 8041 Modified: data/CVE/list Log: new issue: CVE-2007-6672, jetty5 also affected Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-01-27 14:28:12 UTC (rev 8040) +++ data/CVE/list 2008-01-27 15:34:19 UTC (rev 8041) @@ -750,8 +750,7 @@ CVE-2007-6673 (Cross-site scripting (XSS) vulnerability in Makale Scripti allows ...) NOT-FOR-US: Makale Scripti CVE-2007-6672 (Mortbay Jetty 6.1.5 and 6.1.6 allows remote attackers to bypass ...) - TODO: check - NOTE: poked upstream if this does affect jetty 5 as well + - jetty5 <unfixed> (medium; bug #462793) CVE-2007-6671 (SQL injection vulnerability in login_form.asp in Instant Softwares ...) NOT-FOR-US: Instant Softwares Dating Site CVE-2007-6670 (SQL injection vulnerability in search.php in PHCDownload 1.1.0 allows ...)