Author: jmm-guest Date: 2010-06-04 21:36:06 +0000 (Fri, 04 Jun 2010) New Revision: 14801 Modified: data/CVE/list Log: two new potential zonecheck issues NFUs Modified: data/CVE/list ==================================================================--- data/CVE/list 2010-06-04 21:27:03 UTC (rev 14800) +++ data/CVE/list 2010-06-04 21:36:06 UTC (rev 14801) @@ -3,59 +3,59 @@ CVE-2010-2156 RESERVED CVE-2010-2155 (Multiple cross-site scripting (XSS) vulnerabilities in ...) - TODO: check + - zonecheck <undetermined> CVE-2010-2154 (Cross-site scripting (XSS) vulnerability in the Search Site in CMScout ...) - TODO: check + NOT-FOR-US: CMScout CVE-2010-2153 (Unrestricted file upload vulnerability in ...) - TODO: check + NOT-FOR-US: TCExam CVE-2010-2152 (Unspecified vulnerability in JustSystems Ichitaro 2004 through 2009, ...) - TODO: check + NOT-FOR-US: JustSystems Ichitaro CVE-2010-2151 (Cross-site request forgery (CSRF) vulnerability in Fujitsu e-Pares V01 ...) - TODO: check + NOT-FOR-US: Fujitsu e-Pares CVE-2010-2150 (Cross-site scripting (XSS) vulnerability Fujitsu e-Pares V01 L01 ...) - TODO: check + NOT-FOR-US: Fujitsu e-Pares CVE-2010-2149 (Session fixation vulnerability in Fujitsu e-Pares V01 L01, L03, L10, ...) - TODO: check + NOT-FOR-US: Fujitsu e-Pares CVE-2010-2148 (SQL injection vulnerability in the My Car (com_mycar) component 1.0 ...) - TODO: check + NOT-FOR-US: My Car for Joomla CVE-2010-2147 (Cross-site scripting (XSS) vulnerability in the My Car (com_mycar) ...) - TODO: check + NOT-FOR-US: My Car for Joomla CVE-2010-2146 (PHP remote file inclusion vulnerability in banned.php in Visitor ...) - TODO: check + NOT-FOR-US: Visitor Logger CVE-2010-2145 (Multiple PHP remote file inclusion vulnerabilities in ClearSite Beta ...) - TODO: check + NOT-FOR-US: ClearSite CVE-2010-2144 (Cross-site scripting (XSS) vulnerability in signinform.php in Zeeways ...) - TODO: check + NOT-FOR-US: Zeeways eBay Clone auction script CVE-2010-2143 (Directory traversal vulnerability in index.php in Symphony CMS 2.0.7 ...) - TODO: check + NOT-FOR-US: Symphony CMS CVE-2010-2142 (SQL injection vulnerability in default.asp in Cyberhost allows remote ...) - TODO: check + NOT-FOR-US: Cyberhost CVE-2010-2141 (SQL injection vulnerability in index.php in NITRO Web Gallery allows ...) - TODO: check + NOT-FOR-US: NITRO Web Gallery CVE-2010-2140 (SQL injection vulnerability in itemdetail.php in Multishop CMS allows ...) - TODO: check + NOT-FOR-US: Multishop CMS CVE-2010-2139 (SQL injection vulnerability in pages.php in Multishop CMS allows ...) - TODO: check + NOT-FOR-US: Multishop CMS CVE-2010-2138 (Multiple directory traversal vulnerabilities in ProMan 0.1.1 and ...) - TODO: check + NOT-FOR-US: ProMan CVE-2010-2137 (PHP remote file inclusion vulnerability in _center.php in ProMan 0.1.1 ...) - TODO: check + NOT-FOR-US: ProMan CVE-2010-2136 (Directory traversal vulnerability in admin/index.php in Article ...) - TODO: check + NOT-FOR-US: Article Friendly CVE-2010-2135 (Multiple SQL injection vulnerabilities in login.php in HazelPress Lite ...) - TODO: check + NOT-FOR-US: HazelPress Lite CVE-2010-2134 (Multiple SQL injection vulnerabilities in login.php in Project Man 1.0 ...) - TODO: check + NOT-FOR-US: Project Man CVE-2010-2133 (SQL injection vulnerability in contact.php in My Little Forum allows ...) - TODO: check + NOT-FOR-US: My Little Forum CVE-2010-2132 (Multiple PHP remote file inclusion vulnerabilities in Open Education ...) - TODO: check + NOT-FOR-US: Open Education System CVE-2010-2131 (SQL injection vulnerability in the Calendar Base (cal) extension ...) - TODO: check + NOT-FOR-US: Typo3 extenson Calendar Base CVE-2010-2130 (Cross-site scripting (XSS) vulnerability in wflogin.jsp in Aris Global ...) - TODO: check + NOT-FOR-US: Aris Global ARISg CVE-2009-4882 (Cross-site scripting (XSS) vulnerability in zc/publisher/html.rb in ...) - TODO: check + - zonecheck <undetermined> CVE-2008-7256 (mm/shmem.c in the Linux kernel before 2.6.28-rc8, when strict ...) TODO: check CVE-2010-2129 (Directory traversal vulnerability in the JE Ajax Event Calendar ...)