Author: joeyh Date: 2010-05-25 21:15:04 +0000 (Tue, 25 May 2010) New Revision: 14752 Modified: data/CVE/list Log: automatic update Modified: data/CVE/list ==================================================================--- data/CVE/list 2010-05-25 09:15:36 UTC (rev 14751) +++ data/CVE/list 2010-05-25 21:15:04 UTC (rev 14752) @@ -1,3 +1,47 @@ +CVE-2010-2032 (Multiple cross-site scripting (XSS) vulnerabilities in ...) + TODO: check +CVE-2010-2031 (KAVSafe.sys 2010.4.14.609 and earlier, as used in Kingsoft Webshield ...) + TODO: check +CVE-2010-2030 (Cross-site scripting (XSS) vulnerability in the External Link Page ...) + TODO: check +CVE-2010-2029 (Cybozu Office 7 Ktai and Dotsales do not properly restrict access to ...) + TODO: check +CVE-2010-2028 (Buffer overflow in k23productions TFTPUtil GUI (aka TFTPGUI) 1.4.5 ...) + TODO: check +CVE-2010-2027 (Mathematica 7, when running on Linux, allows local users to overwrite ...) + TODO: check +CVE-2010-2026 + RESERVED +CVE-2010-2025 + RESERVED +CVE-2010-2024 + RESERVED +CVE-2010-2023 + RESERVED +CVE-2010-2022 + RESERVED +CVE-2010-2021 + RESERVED +CVE-2010-2020 + RESERVED +CVE-2010-2019 (SQL injection vulnerability in downlot.php in Lokomedia CMS 1.4.1, ...) + TODO: check +CVE-2010-2018 (Directory traversal vulnerability in downlot.php in Lokomedia CMS ...) + TODO: check +CVE-2010-2017 (Cross-site scripting (XSS) vulnerability in hasil-pencarian.html in ...) + TODO: check +CVE-2010-2016 (SQL injection vulnerability in details.php in Iceberg CMS allows ...) + TODO: check +CVE-2010-2015 (Multiple SQL injection vulnerabilities in LiSK CMS 4.4 allow remote ...) + TODO: check +CVE-2010-2014 (Cross-site scripting (XSS) vulnerability in cp/list_content.php in ...) + TODO: check +CVE-2010-2013 (Cross-site scripting (XSS) vulnerability in cp/edit_email.php in LiSK ...) + TODO: check +CVE-2010-2012 (SQL injection vulnerability in function.php in MigasCMS 1.1, when ...) + TODO: check +CVE-2006-7239 (The _gnutls_x509_oid2mac_algorithm function in lib/gnutls_algorithms.c ...) + TODO: check CVE-2010-2011 (Microsoft Dynamics GP uses a substitution cipher to encrypt the system ...) NOT-FOR-US: Microsoft Dynamics GP CVE-2010-2010 (Multiple cross-site scripting (XSS) vulnerabilities in the Chaos Tool ...) @@ -620,7 +664,8 @@ RESERVED CVE-2010-1746 (Multiple cross-site scripting (XSS) vulnerabilities in the Table JX ...) NOT-FOR-US: com_grid component for joomla! -CVE-2010-1745 (SQL injection vulnerability in ...) +CVE-2010-1745 + REJECTED NOT-FOR-US: Campsite CVE-2010-1744 (SQL injection vulnerability in product.html in B2B Gold Script allows ...) NOT-FOR-US: B2B Gold Script @@ -759,8 +804,8 @@ NOT-FOR-US: Microsoft Windows CVE-2010-1689 (The DNS implementation in smtpsvc.dll before 6.0.2600.5949 in ...) NOT-FOR-US: Microsoft Windows -CVE-2010-1688 - RESERVED +CVE-2010-1688 (Stack-based buffer overflow in 2BrightSparks SyncBack Freeware ...) + TODO: check CVE-2010-1687 (Stack-based buffer overflow in lpd.exe in Mocha W32 LPD 1.9 allows ...) NOT-FOR-US: Mocha W32 LPD CVE-2010-1686 (Stack-based buffer overflow in (1) Urgent Backup 3.20, and (2) ABC ...)