atomo64-guest at alioth.debian.org
2008-Nov-05 02:24 UTC
[Secure-testing-commits] r10279 - data/CVE
Author: atomo64-guest Date: 2008-11-05 02:24:15 +0000 (Wed, 05 Nov 2008) New Revision: 10279 Modified: data/CVE/list Log: Processed some and claimed some more Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-11-05 01:56:48 UTC (rev 10278) +++ data/CVE/list 2008-11-05 02:24:15 UTC (rev 10279) @@ -30,6 +30,7 @@ TODO: check CVE-2008-4901 (SQL injection vulnerability in admin/admin.php in Article Publisher ...) TODO: check +begin claimed by atomo64-guest CVE-2008-4900 (SQL injection vulnerability in tr.php in YourFreeWorld Classifieds ...) TODO: check CVE-2008-4899 (Cross-site request forgery (CSRF) vulnerability in Planetluc RateMe ...) @@ -56,26 +57,25 @@ TODO: check CVE-2008-4888 (Cross-site scripting (XSS) vulnerability in index.php in NetRisk 2.0 ...) TODO: check -begin claimed by atomo64-guest +end claimed by atomo64-guest CVE-2008-4887 (SQL injection vulnerability in index.php in NetRisk 2.0 and earlier ...) - TODO: check + NOT-FOR-US: NetRisk 2.0 CVE-2008-4886 (SQL injection vulnerability in index.php in YourFreeWorld Shopping ...) - TODO: check + NOT-FOR-US: YourFreeWorld Shopping CVE-2008-4885 (SQL injection vulnerability in tr1.php in YourFreeWorld Scrolling Text ...) - TODO: check + NOT-FOR-US: YourFreeWorld Scrolling Text CVE-2008-4884 (SQL injection vulnerability in tr.php in YourFreeWorld Classifieds ...) - TODO: check + NOT-FOR-US: YourFreeWorld Classifieds CVE-2008-4883 (SQL injection vulnerability in tr.php in YourFreeWorld Blog Blaster ...) - TODO: check + NOT-FOR-US: YourFreeWorld Blog Blaster CVE-2008-4882 (SQL injection vulnerability in tr.php in YourFreeWorld Autoresponder ...) - TODO: check + NOT-FOR-US: YourFreeWorld Autoresponder CVE-2008-4881 (SQL injection vulnerability in tr.php in YourFreeWorld Reminder ...) - TODO: check + NOT-FOR-US: YourFreeWorld Reminder CVE-2008-4880 (SQL injection vulnerability in prodshow.php in Maran PHP Shop allows ...) - TODO: check + NOT-FOR-US: Maran PHP Shop CVE-2008-4879 (SQL injection vulnerability in prod.php in Maran PHP Shop allows ...) - TODO: check -end claimed by atomo64-guest + NOT-FOR-US: Maran PHP Shop CVE-2008-4907 (The message parsing feature in Dovecot 1.1.4 and 1.1.5, when using the ...) - dovecot <not-affected> (Vulnerable code not present prior to 1.1.4) TODO: check again if >= 1.1.4 gets uploaded