kees at alioth.debian.org
2008-Oct-29 05:10 UTC
[Secure-testing-commits] r10192 - data/CVE
Author: kees Date: 2008-10-29 05:10:46 +0000 (Wed, 29 Oct 2008) New Revision: 10192 Modified: data/CVE/list Log: NFUs: 25 Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-10-28 21:14:11 UTC (rev 10191) +++ data/CVE/list 2008-10-29 05:10:46 UTC (rev 10192) @@ -5,57 +5,57 @@ CVE-2008-4767 (Unrestricted file upload vulnerability in the DownloadsPlus module in ...) TODO: check CVE-2008-4766 (SQL injection vulnerability in member.php in Oxygen Bulletin Board ...) - TODO: check + NOT-FOR-US: Oxygen Bulletin Board CVE-2008-4765 (SQL injection vulnerability in pollBooth.php in osCommerce Poll Booth ...) - TODO: check + NOT-FOR-US: osCommerce Poll Booth Add-On CVE-2008-4764 (Directory traversal vulnerability in the eXtplorer module ...) - TODO: check + NOT-FOR-US: eXtplorer module in Joomla! CVE-2008-4763 (Multiple cross-site scripting (XSS) vulnerabilities in sample.php in ...) - TODO: check + NOT-FOR-US: WiKID wClient-PHP CVE-2008-4762 (Stack-based buffer overflow in freeSSHd 1.2.1 allows remote ...) - TODO: check + NOT-FOR-US: freeSSHd CVE-2008-4761 (Cross-site scripting (XSS) vulnerability in ...) - TODO: check + NOT-FOR-US: Kayako eSupport CVE-2008-4760 (SQL injection vulnerability in lecture.php in Graphiks MyForum 1.3, ...) - TODO: check + NOT-FOR-US: Graphiks MyForum CVE-2008-4759 (Directory traversal vulnerability in download.php in BuzzyWall 1.3.1 ...) - TODO: check + NOT-FOR-US: BuzzyWall CVE-2008-4758 (Directory traversal vulnerability in download_file.php in PHP-Daily ...) - TODO: check + NOT-FOR-US: PHPdaily CVE-2008-4757 (Multiple SQL injection vulnerabilities in PHP-Daily allow remote ...) - TODO: check + NOT-FOR-US: PHPdaily CVE-2008-4756 (Cross-site scripting (XSS) vulnerability in add_prest_date.php in ...) - TODO: check + NOT-FOR-US: PHPdaily CVE-2008-4755 (SQL injection vulnerability in gotourl.php in PozScripts Classified ...) - TODO: check + NOT-FOR-US: PozScripts Classified Auctions Script CVE-2008-4754 (SQL injection vulnerability in forum.php in Scripts for Sites (SFS) Ez ...) - TODO: check + NOT-FOR-US: Scripts for Sites Ez Forum CVE-2008-4753 (SQL injection vulnerability in EditUrl.php in AJ Square RSS Reader ...) - TODO: check + NOT-FOR-US: AJ Square RSS Reader CVE-2008-4752 (TlNews 2.2 allows remote attackers to bypass authentication and gain ...) - TODO: check + NOT-FOR-US: TlNews CVE-2008-4751 (Cross-site scripting (XSS) vulnerability in index.php in iPei ...) - TODO: check + NOT-FOR-US: iPei Guestbook CVE-2008-4750 (Stack-based buffer overflow in the VImpX.VImpAX ActiveX control ...) - TODO: check + NOT-FOR-US: ActiveX CVE-2008-4749 (Multiple insecure method vulnerabilities in the VImpX.VImpAX ActiveX ...) - TODO: check + NOT-FOR-US: ActiveX CVE-2008-4747 (Unspecified vulnerability in the search feature in Sun Java System ...) TODO: check CVE-2008-4746 (Multiple SQL injection vulnerabilities in Uniwin eCart Professional ...) - TODO: check + NOT-FOR-US: Uniwin eCart Professional CVE-2008-4745 (Cross-site scripting (XSS) vulnerability in emailFriend.asp in Uniwin ...) - TODO: check + NOT-FOR-US: Uniwin eCart Professional CVE-2008-4744 (SQL injection vulnerability in product_detail.php in DXShopCart 4.30mc ...) - TODO: check + NOT-FOR-US: DXShopCart CVE-2008-4743 (SQL injection vulnerability in index.php in QuidaScript FAQ Management ...) - TODO: check + NOT-FOR-US: QuidaScript FAQ Management Script CVE-2008-4742 (Multiple cross-site scripting (XSS) vulnerabilities in ...) - TODO: check + NOT-FOR-US: TimeTrex CVE-2008-4741 (Directory traversal vulnerability in index.php in FAR-PHP 1.00, when ...) - TODO: check + NOT-FOR-US: FAR-PHP CVE-2008-4740 (Directory traversal vulnerability in templater.php in the ZZ_Templater ...) - TODO: check + NOT-FOR-US: ZZ_Templater module in TinyCMS CVE-2006-7234 (Untrusted search path vulnerability in Lynx before 2.8.6rel.4 allows ...) TODO: check CVE-2008-4748 (Format string vulnerability in the URI handler in KVirc 3.4.0, when ...)