Secure testing commits - Dec 2008 - r10745 - data/CVE

Author: white
Date: 2008-12-20 17:35:18 +0000 (Sat, 20 Dec 2008)
New Revision: 10745

Modified:
   data/CVE/list
Log:
More NFUs

Modified: data/CVE/list
==================================================================---
data/CVE/list	2008-12-20 17:22:17 UTC (rev 10744)
+++ data/CVE/list	2008-12-20 17:35:18 UTC (rev 10745)
@@ -119,55 +119,55 @@
 CVE-2008-5610
 	RESERVED
 CVE-2008-5609 (SQL injection vulnerability in the Commerce extension 0.9.6 and
...)
-	TODO: check
+	NOT-FOR-US: Commerce extension
 CVE-2008-5608 (ASP AutoDealer stores sensitive information under the web root
with ...)
-	TODO: check
+	NOT-FOR-US: AutoDealer
 CVE-2008-5607 (SQL injection vulnerability in the JMovies (aka JM or
com_jmovies) ...)
-	TODO: check
+	NOT-FOR-US: joomla
 CVE-2008-5606 (Gazatem QMail Mailing List Manager 1.2 stores sensitive
information ...)
-	TODO: check
+	NOT-FOR-US: Gazatem QMail Mailing List Manager
 CVE-2008-5605 (Multiple SQL injection vulnerabilities in ASP Portal allow
remote ...)
-	TODO: check
+	NOT-FOR-US: ASP Portal
 CVE-2008-5604 (Directory traversal vulnerability in index.php in My Simple
Forum 3.0 ...)
-	TODO: check
+	NOT-FOR-US: My Simple Forum
 CVE-2008-5603 (ASPTicker 1.0 stores sensitive information under the web root
with ...)
-	TODO: check
+	NOT-FOR-US: ASPTicker
 CVE-2008-5602 (Natterchat 1.12 stores sensitive information under the web root
with ...)
-	TODO: check
+	NOT-FOR-US: Natterchat
 CVE-2008-5601 (User Engine Lite ASP stores sensitive information under the web
root ...)
-	TODO: check
+	NOT-FOR-US: User Engine Lite ASP
 CVE-2008-5600 (Merlix Teamworx Server stores sensitive information under the
web root ...)
-	TODO: check
+	NOT-FOR-US: Merlix Teamworx Server
 CVE-2008-5599 (SQL injection vulnerability in default.asp in Merlix Teamworx
Server ...)
-	TODO: check
+	NOT-FOR-US: Merlix Teamworx Server
 CVE-2008-5598 (Directory traversal vulnerability in index.php in PHPmyGallery
1.51 ...)
-	TODO: check
+	NOT-FOR-US: PHPmyGallery
 CVE-2008-5597 (Cold BBS stores sensitive information under the web root with
...)
-	TODO: check
+	NOT-FOR-US: Cold BBS
 CVE-2008-5596 (Ikon AdManager 2.1 and earlier stores sensitive information
under the ...)
-	TODO: check
+	NOT-FOR-US: Ikon AdManager
 CVE-2008-5595 (SQL injection vulnerability in detail.asp in ASP AutoDealer
allows ...)
-	TODO: check
+	NOT-FOR-US: ASP AutoDealer
 CVE-2008-5594 (Multiple directory traversal vulnerabilities in index.php in
Mini Blog ...)
-	TODO: check
+	NOT-FOR-US: Mini Blog
 CVE-2008-5593 (Multiple directory traversal vulnerabilities in index.php in
Mini CMS ...)
-	TODO: check
+	NOT-FOR-US: Mini CMS
 CVE-2008-5592 (Nightfall Personal Diary 1.0 stores sensitive information under
the ...)
-	TODO: check
+	NOT-FOR-US: Nightfall Personal Diary
 CVE-2008-5591 (Cross-site scripting (XSS) vulnerability in login.asp in
Nightfall ...)
-	TODO: check
+	NOT-FOR-US: Nightfall Personal Diary
 CVE-2008-5590 (SQL injection vulnerability in customer.forumtopic.php in
Kalptaru ...)
-	TODO: check
+	NOT-FOR-US: Kalptaru Infotech Product Sale Framework
 CVE-2008-5589 (SQL injection vulnerability in processlogin.asp in Katy Whitton
RankEm ...)
-	TODO: check
+	NOT-FOR-US: Katy Whitton RankEm
 CVE-2008-5588 (SQL injection vulnerability in rankup.asp in Katy Whitton RankEm
...)
-	TODO: check
+	NOT-FOR-US: Katy Whitton RankEm
 CVE-2008-5587 (Directory traversal vulnerability in libraries/lib.inc.php in
...)
-	TODO: check
+	NOT-FOR-US: Check Up New Generation
 CVE-2008-5586 (SQL injection vulnerability in findoffice.php in Check Up New
...)
-	TODO: check
+	NOT-FOR-US: Check Up New Generation
 CVE-2008-5585 (Multiple PHP remote file inclusion vulnerabilities in
lcxBBportal 0.1 ...)
-	TODO: check
+	NOT-FOR-US: lcxBBportal
 CVE-2008-XXXX [wireshark WLCCP infinite loop]
 	- wireshark 1.0.5-1 (low; bug #506741)
 CVE-2007-XXXX [tdiary XSS]