Author: fw Date: 2008-10-26 13:06:54 +0000 (Sun, 26 Oct 2008) New Revision: 10165 Modified: data/CVE/list Log: NFUs Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-10-26 13:06:37 UTC (rev 10164) +++ data/CVE/list 2008-10-26 13:06:54 UTC (rev 10165) @@ -135,7 +135,7 @@ - drupal5 5.10-3 (low; bug #503217) TODO: check if druapal5 really has this vulnerability, the code looks different CVE-2008-4676 (Unspecified vulnerability in Citrix XenApp (formerly Presentation ...) - TODO: check + NOT-FOR-US: Citrix XenApp CVE-2008-4675 (SQL injection vulnerability in index.php in PHPcounter 1.3.2 and ...) TODO: check CVE-2008-4674 (SQL injection vulnerability in realestate-index.php in Conkurent Real ...) @@ -193,7 +193,7 @@ CVE-2008-4647 (SQL injection vulnerability in index.php in sweetCMS 1.5.2 allows ...) TODO: check CVE-2008-4646 (The Websense Reporter Module in Websense Enterprise 6.3.2 stores the ...) - TODO: check + NOT-FOR-US: Websense Enterprise CVE-2008-4645 (plugins/event_tracer/event_list.php in PhpWebGallery 1.7.2 and earlier ...) TODO: check CVE-2008-4644 (hits.php in myWebland myStats allows remote attackers to bypass IP ...) @@ -209,7 +209,7 @@ CVE-2008-4639 (jhead.c in Matthias Wandel jhead before 2.84 allows local users to ...) TODO: check CVE-2008-4638 (qioadmin in the Quick I/O for Database feature in Symantec Veritas ...) - TODO: check + NOT-FOR-US: Symantec VxFS CVE-2008-4637 (Cross-site scripting (XSS) vulnerability in cpCommerce before 1.2.4 ...) TODO: check CVE-2008-4636