white at alioth.debian.org
2008-Oct-11 06:08 UTC
[Secure-testing-commits] r10055 - data/CVE
Author: white Date: 2008-10-11 06:08:39 +0000 (Sat, 11 Oct 2008) New Revision: 10055 Modified: data/CVE/list Log: NFUs Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-10-10 23:21:45 UTC (rev 10054) +++ data/CVE/list 2008-10-11 06:08:39 UTC (rev 10055) @@ -1,65 +1,65 @@ CVE-2008-4533 (Cross-site scripting (XSS) vulnerability in Kantan WEB Server 1.8 and ...) - TODO: check + NOT-FOR-US: Kantan WEB Server CVE-2008-4532 (Cross-site scripting (XSS) vulnerability in index.php in MaxiScript ...) - TODO: check + NOT-FOR-US: MaxiScript Website Directory CVE-2008-4531 (SQL injection vulnerability in Brilliant Gallery 5.x before 5.x-4.2, a ...) TODO: check CVE-2008-4530 (Cross-site scripting (XSS) vulnerability in Brilliant Gallery 5.x ...) TODO: check CVE-2008-4529 (Multiple PHP remote file inclusion vulnerabilities in asiCMS alpha ...) - TODO: check + NOT-FOR-US: asiCMS CVE-2008-4528 (Directory traversal vulnerability in notes.php in Phlatline''s Personal ...) - TODO: check + NOT-FOR-US: Phlatline''s Personal Information Manager CVE-2008-4527 (SQL injection vulnerability in recept.php in the Recepies (Recept) ...) - TODO: check + NOT-FOR-US: PHP-Fusion CVE-2008-4526 (Multiple directory traversal vulnerabilities in CCMS 3.1 allow remote ...) - TODO: check + NOT-FOR-US: CCMS CVE-2008-4525 (SQL injection vulnerability in index.php in AmpJuke 0.7.5 allows ...) - TODO: check + NOT-FOR-US: AmpJuke CVE-2008-4524 (SQL injection vulnerability in the "Check User" feature ...) - TODO: check + NOT-FOR-US: AdaptCMS CVE-2008-4523 (SQL injection vulnerability in login.php in IP Reg 0.4 and earlier ...) - TODO: check + NOT-FOR-US: IP Reg CVE-2008-4522 (Multiple directory traversal vulnerabilities in JMweb MP3 Music Audio ...) - TODO: check + NOT-FOR-US: JMweb MP3 Music Audio Search and Download Script CVE-2008-4521 (SQL injection vulnerability in thisraidprogress.php in the World of ...) - TODO: check + NOT-FOR-US: World of Warcraft tracker CVE-2008-4520 (Cross-site scripting (XSS) vulnerability in bulk_update.pl in ...) - TODO: check + NOT-FOR-US: AutoNessus CVE-2008-4519 (Multiple directory traversal vulnerabilities in Fastpublish CMS 1.9999 ...) - TODO: check + NOT-FOR-US: Fastpublish CMS CVE-2008-4518 (Multiple SQL injection vulnerabilities in Fastpublish CMS 1.9.9.9.9 d ...) - TODO: check + NOT-FOR-US: Fastpublish CMS CVE-2008-4517 (SQL injection vulnerability in leggi.php in geccBBlite 2.0 allows ...) - TODO: check + NOT-FOR-US: geccBBlite CVE-2008-4516 (SQL injection vulnerability in galerie.php in Galerie 3.2 allows ...) TODO: check CVE-2008-4515 (Blue Coat K9 Web Protection 4.0.230 Beta relies on client-side ...) - TODO: check + NOT-FOR-US: Blue Coat K9 Web Protection CVE-2008-4514 (The HTML parser in KDE Konqueror 3.5.9 allows remote attackers to ...) TODO: check CVE-2008-4513 (Cross-site scripting (XSS) vulnerability in BBcode API module in ...) - TODO: check + NOT-FOR-US: Phorum CVE-2008-4512 (ASP/MS Access Shoutbox, probably 1.1 beta, stores db/shoutdb.mdb under ...) - TODO: check + NOT-FOR-US: ASP/MS Access Shoutbox CVE-2008-4511 (Todd Woolums ASP News Management, possibly 2.21, stores db/news.mdb ...) - TODO: check + NOT-FOR-US: Todd Woolums ASP News Management CVE-2008-4510 (Microsoft Windows Vista Home and Ultimate Edition SP1 and earlier ...) - TODO: check + NOT-FOR-US: Microsoft CVE-2008-4509 (Unrestricted file upload vulnerability in processFiles.php in FOSS ...) TODO: check CVE-2008-4508 (Stack-based buffer overflow in the file parsing function in Tonec ...) - TODO: check + NOT-FOR-US: Tonec Internet Download Manager CVE-2008-4507 (Unspecified vulnerability in IBM Lotus Quickr 8.1 before Fix pack 1 ...) - TODO: check + NOT-FOR-US: IBM Lotus Quickr CVE-2008-4506 (Unspecified vulnerability in IBM Lotus Quickr 8.1 before Fix pack 1 ...) - TODO: check + NOT-FOR-US: IBM Lotus Quickr CVE-2008-4505 (Unspecified vulnerability in IBM Lotus Quickr 8.1 before Fix pack 1 ...) - TODO: check + NOT-FOR-US: IBM Lotus Quickr CVE-2008-4504 (Heap-based buffer overflow in Mplayer.exe in Herosoft Inc. Hero DVD ...) - TODO: check + NOT-FOR-US: Herosoft Inc. Hero DVD Player CVE-2008-4503 (The Settings Manager in Adobe Flash Player 9.0.124.0 and earlier ...) - TODO: check + NOT-FOR-US: Adobe Flash Player CVE-2008-4482 (The XML parser in Xerces-C++ before 3.0.0 allows context-dependent ...) TODO: check CVE-2008-4480