white at alioth.debian.org
2008-May-04 05:39 UTC
[Secure-testing-commits] r8690 - data/CVE
Author: white Date: 2008-05-04 05:39:56 +0000 (Sun, 04 May 2008) New Revision: 8690 Modified: data/CVE/list Log: Some more NFUs Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-05-04 05:34:43 UTC (rev 8689) +++ data/CVE/list 2008-05-04 05:39:56 UTC (rev 8690) @@ -250,13 +250,13 @@ CVE-2008-1919 (SQL injection vulnerability in listtest.php in YourFreeWorld Apartment ...) NOT-FOR-US: YourFreeWorld Apartment Search Script CVE-2008-1918 (SQL injection vulnerability in submit.php in PHP-Fusion 6.01.14 and ...) - TODO: check + NOT-FOR-US: PHP-Fusion CVE-2008-1917 (Multiple cross-site scripting (XSS) vulnerabilities in AMFPHP 1.2 ...) - TODO: check + NOT-FOR-US: AMFPHP CVE-2008-1916 (Multiple cross-site scripting (XSS) vulnerabilities in the Ubercart ...) - TODO: check + NOT-FOR-US: Ubercart (drupal module) CVE-2008-1915 (SQL injection vulnerability in view.asp in DevWorx BlogWorx 1.0 allows ...) - TODO: check + NOT-FOR-US: BlogWorx CVE-2008-1930 (The cookie authentication method in WordPress 2.5 relies on a hash of ...) - wordpress 2.5.1-1 (medium; bug #477910) NOTE: only exploitable in blogs that allow user registering