Author: gilbert-guest Date: 2010-04-30 00:11:33 +0000 (Fri, 30 Apr 2010) New Revision: 14573 Modified: data/CVE/list Log: new issues Modified: data/CVE/list ==================================================================--- data/CVE/list 2010-04-29 21:14:29 UTC (rev 14572) +++ data/CVE/list 2010-04-30 00:11:33 UTC (rev 14573) @@ -1,3 +1,24 @@ +CVE-2010-1619 [MSA-10-0001: Vulnerability in KSES text cleaning] + - moodle <undetermined> + TODO: check +CVE-2010-1618 [MSA-10-0002: XSS vulnerabilty in the phpcas module] + - moodle <undetermined> + TODO: check +CVE-2010-1617 [MSA-10-0003: Disclosure of full user names] + - moodle <undetermined> + TODO: check +CVE-2010-1616 [MSA-10-0004: Improved access control in course restore] + - moodle <undetermined> + TODO: check +CVE-2010-1615 [MSA-10-0006: SQL injection in Wiki module, MSA-10-0005: Incorrect validation of forms data] + - moodle <undetermined> + TODO: check +CVE-2010-1614 [MSA-10-0008: Persistent XSS when using Login-as feature, MSA-10-0007: Reflective Cross Site Scripting (XSS) in the Moodle Global Search Engine] + - moodle <undetermined> + TODO: check +CVE-2010-1613 [MSA-10-0009: Session fixation prevention now turned on by default] + - moodle <undetermined> + TODO: check CVE-2010-1596 (Support Incident Tracker before 3.51, when using LDAP authentication ...) TODO: check CVE-2010-1595 (Multiple SQL injection vulnerabilities in ocsreports/index.php in OCS ...) @@ -450,8 +471,9 @@ RESERVED CVE-2010-1447 RESERVED -CVE-2010-1446 +CVE-2010-1446 [kgbd issue] RESERVED + - linux-2.6 <unfixed> CVE-2010-1445 RESERVED - vlc 1.0.6-1 @@ -1130,8 +1152,9 @@ NOT-FOR-US: Microsoft Internet Explorer 7.0 CVE-2010-1174 (Cisco TFTP Server 1.1 allows remote attackers to cause a denial of ...) NOT-FOR-US: Cisco TFTP Server -CVE-2010-1173 +CVE-2010-1173 [skb issue] RESERVED + - linux-2.6 <unfixed> CVE-2010-1172 RESERVED CVE-2010-1171