joeyh at alioth.debian.org
2008-Dec-31 21:14 UTC
[Secure-testing-commits] r10831 - data/CVE
Author: joeyh Date: 2008-12-31 21:14:10 +0000 (Wed, 31 Dec 2008) New Revision: 10831 Modified: data/CVE/list Log: automatic update Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-12-31 13:43:44 UTC (rev 10830) +++ data/CVE/list 2008-12-31 21:14:10 UTC (rev 10831) @@ -1,3 +1,129 @@ +CVE-2008-5807 (Multiple cross-site scripting (XSS) vulnerabilities in TestLink before ...) + TODO: check +CVE-2008-5806 (SQL injection vulnerability in login.php in DeltaScripts PHP ...) + TODO: check +CVE-2008-5805 (SQL injection vulnerability in detail.php in DeltaScripts PHP ...) + TODO: check +CVE-2008-5804 (SQL injection vulnerability in admin/admin_catalog.php in e-topbiz ...) + TODO: check +CVE-2008-5803 (SQL injection vulnerability in admin/login.php in E-topbiz Online ...) + TODO: check +CVE-2008-5802 (SQL injection vulnerability in index.php in E-topbiz Online Store 1.0 ...) + TODO: check +CVE-2008-5801 (Unspecified vulnerability in the Dictionary (rtgdictionary) extension ...) + TODO: check +CVE-2008-5800 (SQL injection vulnerability in the Wir ber uns [sic] (fsmi_people) ...) + TODO: check +CVE-2008-5799 (Cross-site scripting (XSS) vulnerability in the Wir ber uns [sic] ...) + TODO: check +CVE-2008-5798 (SQL injection vulnerability in the CMS Poll system (cms_poll) ...) + TODO: check +CVE-2008-5797 (SQL injection vulnerability in the advCalendar extension 0.3.1 and ...) + TODO: check +CVE-2008-5796 (SQL injection vulnerability in the eluna Page Comments ...) + TODO: check +CVE-2008-5795 (Cross-site scripting (XSS) vulnerability in the eluna Page Comments ...) + TODO: check +CVE-2008-5794 (Directory traversal vulnerability in system/admin/images.php in ...) + TODO: check +CVE-2008-5793 (Multiple PHP remote file inclusion vulnerabilities in the Clickheat - ...) + TODO: check +CVE-2008-5792 (PHP remote file inclusion vulnerability in show_joined.php in ...) + TODO: check +CVE-2008-5791 (Multiple unspecified vulnerabilities in PrestaShop e-Commerce Solution ...) + TODO: check +CVE-2008-5790 (Multiple PHP remote file inclusion vulnerabilities in the ...) + TODO: check +CVE-2008-5789 (Multiple PHP remote file inclusion vulnerabilities in the Recly ...) + TODO: check +CVE-2008-5788 (SQL injection vulnerability in index.php in Domain Seller Pro 1.5 ...) + TODO: check +CVE-2008-5787 (Directory traversal vulnerability in mod.php in Arab Portal 2.1 on ...) + TODO: check +CVE-2008-5786 (Cross-site scripting (XSS) vulnerability in the Silva Find extension ...) + TODO: check +CVE-2008-5785 (SQL injection vulnerability in V3 Chat - Profiles/Dating Script 3.0.2 ...) + TODO: check +CVE-2008-5784 (V3 Chat - Profiles/Dating Script 3.0.2 allows remote attackers to ...) + TODO: check +CVE-2008-5783 (admin/index.php in V3 Chat Live Support 3.0.4 allows remote attackers ...) + TODO: check +CVE-2008-5782 (SQL injection vulnerability in bannerclick.php in ZeeMatri 3.0 allows ...) + TODO: check +CVE-2008-5781 (SQL injection vulnerability in right.php in Cant Find A Gaming CMS ...) + TODO: check +CVE-2008-5780 (Forest Blog 1.3.2 stores sensitive information under the web root with ...) + TODO: check +CVE-2008-5779 (SQL injection vulnerability in lpro.php in Free Links Directory Script ...) + TODO: check +CVE-2008-5778 (SQL injection vulnerability in report.php in Free Links Directory ...) + TODO: check +CVE-2008-5777 (SQL injection vulnerability in index.php in CadeNix allows remote ...) + TODO: check +CVE-2008-5776 (Multiple directory traversal vulnerabilities in Aperto Blog 0.1.1 ...) + TODO: check +CVE-2008-5775 (SQL injection vulnerability in categories.php in Aperto Blog 0.1.1 ...) + TODO: check +CVE-2008-5774 (Multiple SQL injection vulnerabilities in ASPSiteWare HomeBuilder 1.0 ...) + TODO: check +CVE-2008-5773 (Nukedit 4.9.8 stores sensitive information under the web root with ...) + TODO: check +CVE-2008-5772 (Multiple SQL injection vulnerabilities in ASPSiteWare RealtyListings ...) + TODO: check +CVE-2008-5771 (Directory traversal vulnerability in test.php in PHP Weather 2.2.2 ...) + TODO: check +CVE-2008-5770 (Cross-site scripting (XSS) vulnerability in config/make_config.php in ...) + TODO: check +CVE-2008-5769 (Multiple cross-site scripting (XSS) vulnerabilities in Kerio ...) + TODO: check +CVE-2008-5768 (SQL injection vulnerability in print.php in the AM Events (aka ...) + TODO: check +CVE-2008-5767 (SQL injection vulnerability in authors.asp in gNews Publisher allows ...) + TODO: check +CVE-2008-5766 (SQL injection vulnerability in download.php in Farsi Script Faupload ...) + TODO: check +CVE-2008-5765 (WorkSimple 1.2.1 stores sensitive information under the web root with ...) + TODO: check +CVE-2008-5764 (PHP remote file inclusion vulnerability in calendar.php in WorkSimple ...) + TODO: check +CVE-2008-5763 (PHP remote file inclusion vulnerability in slogin_lib.inc.php in ...) + TODO: check +CVE-2008-5762 (Simple Text-File Login Script (SiTeFiLo) 1.0.6 stores sensitive ...) + TODO: check +CVE-2008-5761 (Multiple cross-site scripting (XSS) vulnerabilities in FlatnuX CMS ...) + TODO: check +CVE-2008-5760 (Cross-site scripting (XSS) vulnerability in error413.php in Kerio ...) + TODO: check +CVE-2008-5759 (Cross-site scripting (XSS) vulnerability in FlatnuX CMS (aka ...) + TODO: check +CVE-2008-5758 (Cross-site request forgery (CSRF) vulnerability in PHParanoid before ...) + TODO: check +CVE-2008-5757 (Cross-site scripting (XSS) vulnerability in textarea/index.php in ...) + TODO: check +CVE-2008-5756 (Buffer overflow in BreakPoint Software Hex Workshop 5.1.4 allows ...) + TODO: check +CVE-2008-5755 (Stack-based buffer overflow in IntelliTamper 2.07 and 2.08 allows ...) + TODO: check +CVE-2008-5754 (Stack-based buffer overflow in BulletProof FTP Client allows ...) + TODO: check +CVE-2008-5753 (Stack-based buffer overflow in BulletProof FTP Client 2.63 allows ...) + TODO: check +CVE-2008-5752 (Directory traversal vulnerability in getConfig.php in the Page Flip ...) + TODO: check +CVE-2008-5751 (SQL injection vulnerability in index.php in AlstraSoft Web Email ...) + TODO: check +CVE-2008-5750 (Argument injection vulnerability in Microsoft Internet Explorer 8 beta ...) + TODO: check +CVE-2008-5749 (** DISPUTED ** ...) + TODO: check +CVE-2008-5748 (Directory traversal vulnerability in plugins/spaw2/dialogs/dialog.php ...) + TODO: check +CVE-2008-5747 (F-Prot 4.6.8 for GNU/Linux allows remote attackers to bypass ...) + TODO: check +CVE-2008-5746 (Sun SNMP Management Agent (SUNWmasf) 1.4u2 through 1.5.4 allows local ...) + TODO: check +CVE-2008-5745 (Integer overflow in Microsoft Windows Media Player 9, 10, and 11 ...) + TODO: check CVE-2009-XXXX [buffer overflow in libaudiofile] - audiofile <unfixed> (medium; bug #510205) TODO: request CVE id @@ -2824,8 +2950,7 @@ NOT-FOR-US: Sun Java System Web Proxy Server CVE-2008-4540 (Windows Mobile 6 on the HTC Hermes device makes WLAN passwords ...) NOT-FOR-US: Windows Mobile -CVE-2008-4539 [qemu heap overflow in Cirrus emulation] - RESERVED +CVE-2008-4539 (Heap-based buffer overflow in the Cirrus VGA implementation in (1) KVM ...) - qemu 0.9.1+svn20081101-1 CVE-2008-4538 RESERVED @@ -3463,7 +3588,7 @@ CVE-2008-4271 RESERVED CVE-2008-4270 - RESERVED + REJECTED CVE-2008-4269 (The search-ms protocol handler in Windows Explorer in Microsoft ...) NOT-FOR-US: Microsoft Windows Explorer CVE-2008-4268 (The Windows Search component in Microsoft Windows Vista Gold and SP1 ...)