Author: sf Date: 2009-01-03 11:55:19 +0000 (Sat, 03 Jan 2009) New Revision: 10839 Modified: data/CVE/list Log: more NFUs, textpattern already fixed Modified: data/CVE/list ==================================================================--- data/CVE/list 2009-01-03 11:46:47 UTC (rev 10838) +++ data/CVE/list 2009-01-03 11:55:19 UTC (rev 10839) @@ -55,59 +55,59 @@ CVE-2008-5780 (Forest Blog 1.3.2 stores sensitive information under the web root with ...) NOT-FOR-US: Forest Blog CVE-2008-5779 (SQL injection vulnerability in lpro.php in Free Links Directory Script ...) - TODO: check + NOT-FOR-US: Free Links Directory Script CVE-2008-5778 (SQL injection vulnerability in report.php in Free Links Directory ...) - TODO: check + NOT-FOR-US: Free Links Directory Script CVE-2008-5777 (SQL injection vulnerability in index.php in CadeNix allows remote ...) - TODO: check + NOT-FOR-US: CadeNix CVE-2008-5776 (Multiple directory traversal vulnerabilities in Aperto Blog 0.1.1 ...) - TODO: check + NOT-FOR-US: Aperto Blog CVE-2008-5775 (SQL injection vulnerability in categories.php in Aperto Blog 0.1.1 ...) - TODO: check + NOT-FOR-US: Aperto Blog CVE-2008-5774 (Multiple SQL injection vulnerabilities in ASPSiteWare HomeBuilder 1.0 ...) - TODO: check + NOT-FOR-US: ASPSiteWare HomeBuilder CVE-2008-5773 (Nukedit 4.9.8 stores sensitive information under the web root with ...) - TODO: check + NOT-FOR-US: Nukedit CVE-2008-5772 (Multiple SQL injection vulnerabilities in ASPSiteWare RealtyListings ...) - TODO: check + NOT-FOR-US: ASPSiteWare RealtyListings CVE-2008-5771 (Directory traversal vulnerability in test.php in PHP Weather 2.2.2 ...) - TODO: check + NOT-FOR-US: PHP Weather CVE-2008-5770 (Cross-site scripting (XSS) vulnerability in config/make_config.php in ...) - TODO: check + NOT-FOR-US: PHP Weather CVE-2008-5769 (Multiple cross-site scripting (XSS) vulnerabilities in Kerio ...) - TODO: check + NOT-FOR-US: Kerio MailServer CVE-2008-5768 (SQL injection vulnerability in print.php in the AM Events (aka ...) - TODO: check + NOT-FOR-US: AM Events CVE-2008-5767 (SQL injection vulnerability in authors.asp in gNews Publisher allows ...) - TODO: check + NOT-FOR-US: gNews Publisher CVE-2008-5766 (SQL injection vulnerability in download.php in Farsi Script Faupload ...) - TODO: check + NOT-FOR-US: Farsi Script Faupload CVE-2008-5765 (WorkSimple 1.2.1 stores sensitive information under the web root with ...) - TODO: check + NOT-FOR-US: WorkSimple CVE-2008-5764 (PHP remote file inclusion vulnerability in calendar.php in WorkSimple ...) - TODO: check + NOT-FOR-US: WorkSimple CVE-2008-5763 (PHP remote file inclusion vulnerability in slogin_lib.inc.php in ...) - TODO: check + NOT-FOR-US: Simple Text-File Login Script (SiTeFiLo) CVE-2008-5762 (Simple Text-File Login Script (SiTeFiLo) 1.0.6 stores sensitive ...) - TODO: check + NOT-FOR-US: Simple Text-File Login Script (SiTeFiLo) CVE-2008-5761 (Multiple cross-site scripting (XSS) vulnerabilities in FlatnuX CMS ...) - TODO: check + NOT-FOR-US: FlatnuX CMS CVE-2008-5760 (Cross-site scripting (XSS) vulnerability in error413.php in Kerio ...) - TODO: check + NOT-FOR-US: Kerio MailServer CVE-2008-5759 (Cross-site scripting (XSS) vulnerability in FlatnuX CMS (aka ...) - TODO: check + NOT-FOR-US: FlatnuX CMS CVE-2008-5758 (Cross-site request forgery (CSRF) vulnerability in PHParanoid before ...) - TODO: check + NOT-FOR-US: PHParanoid CVE-2008-5757 (Cross-site scripting (XSS) vulnerability in textarea/index.php in ...) - TODO: check + - textpattern 4.0.6-1 CVE-2008-5756 (Buffer overflow in BreakPoint Software Hex Workshop 5.1.4 allows ...) - TODO: check + NOT-FOR-US: BreakPoint Software Hex Workshop CVE-2008-5755 (Stack-based buffer overflow in IntelliTamper 2.07 and 2.08 allows ...) - TODO: check + NOT-FOR-US: IntelliTamper CVE-2008-5754 (Stack-based buffer overflow in BulletProof FTP Client allows ...) - TODO: check + NOT-FOR-US: BulletProof FTP Client CVE-2008-5753 (Stack-based buffer overflow in BulletProof FTP Client 2.63 allows ...) - TODO: check + NOT-FOR-US: BulletProof FTP Client CVE-2008-5752 (Directory traversal vulnerability in getConfig.php in the Page Flip ...) TODO: check CVE-2008-5751 (SQL injection vulnerability in index.php in AlstraSoft Web Email ...)