thomasbl-guest at alioth.debian.org
2008-Jul-26 16:52 UTC
[Secure-testing-commits] r9419 - data/CVE
Author: thomasbl-guest Date: 2008-07-26 16:52:11 +0000 (Sat, 26 Jul 2008) New Revision: 9419 Modified: data/CVE/list Log: CVE-2008-3325: not-affected CVE-2008-3326: opened bug #492492 Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-07-26 16:11:53 UTC (rev 9418) +++ data/CVE/list 2008-07-26 16:52:11 UTC (rev 9419) @@ -1,12 +1,13 @@ CVE-2008-3325 [moodle CSRF] - - moodle 1.8.1-1 + - moodle <not-affected> (Vulnerable code not present) + NOTE: http://moodle.org/mod/forum/discuss.php?d=101405 +CVE-2008-3326 [Cross-site scripting (XSS) vulnerability in blog/edit.php in Moodle] + - moodle <unfixed> (low; bug #492492) + NOTE: http://moodle.org/mod/forum/discuss.php?d=101401 CVE-2008-3327 [moodle leaks installation path] - moodle <unfixed> (unimportant) NOTE: http://moodle.org/mod/forum/discuss.php?d=101403 NOTE: Does not allow any attack vendors, apart from gaining non-sensible information -CVE-2008-3326 [Cross-site scripting (XSS) vulnerability in blog/edit.php in Moodle] - - moodle 1.8.1-1 (low) - NOTE: http://moodle.org/mod/forum/discuss.php?d=101405 CVE-2008-XXXX [mantis multiple issues] - mantis 1.1.2+dfsg-1 (low) NOTE: http://www.mantisbt.org/bugs/changelog_page.php