Author: luciano Date: 2012-05-05 09:02:21 +0000 (Sat, 05 May 2012) New Revision: 19148 Modified: data/CVE/list Log: Drupal: TODO check Modified: data/CVE/list ==================================================================--- data/CVE/list 2012-05-04 21:50:38 UTC (rev 19147) +++ data/CVE/list 2012-05-05 09:02:21 UTC (rev 19148) @@ -390,36 +390,51 @@ RESERVED - php5 <unfixed> NOTE: This CVE ID is for the initial incomplete fix for CVE-2012-1823 -CVE-2012-2310 +CVE-2012-2310 [Drupal SA-CONTRIB-2012-072 - cctags - XSS ] RESERVED -CVE-2012-2309 + TODO: check +CVE-2012-2309 [Drupal SA-CONTRIB-2012-071 - Glossify - XSS ] RESERVED -CVE-2012-2308 + TODO: check +CVE-2012-2308 [Drupal SA-CONTRIB-2012-070 - Taxonomy Grid : Catalog - XSS] RESERVED -CVE-2012-2307 + TODO: check +CVE-2012-2307 [Drupal SA-CONTRIB-2012-069 - Addressbook - CSRF ] RESERVED -CVE-2012-2306 + TODO: check +CVE-2012-2306 [Drupal SA-CONTRIB-2012-069 - Addressbook - SQL Injection] RESERVED -CVE-2012-2305 + TODO: check +CVE-2012-2305 [Drupal SA-CONTRIB-2012-068 - Node Gallery - CSRF] RESERVED -CVE-2012-2304 + TODO: check +CVE-2012-2304 [Drupal SA-CONTRIB-2012-067 - Linkit - Access bypass] RESERVED -CVE-2012-2303 + TODO: check +CVE-2012-2303 [Drupal SA-CONTRIB-2012-066 - Spaces and Spaces OG - Access ...] RESERVED -CVE-2012-2302 + TODO: check +CVE-2012-2302 [Drupal SA-CONTRIB-2012-065 - Sitedoc - Information disclosure] RESERVED -CVE-2012-2301 + TODO: check +CVE-2012-2301 [Drupal SA-CONTRIB-2012-064 - Ubercart - Arbitrary PHP Execution] RESERVED -CVE-2012-2300 + TODO: check +CVE-2012-2300 [Drupal SA-CONTRIB-2012-064 - Ubercart - XSS] RESERVED -CVE-2012-2299 + TODO: check +CVE-2012-2299 [Drupal SA-CONTRIB-2012-064 - Ubercart - failure to encrypt data] RESERVED -CVE-2012-2298 + TODO: check +CVE-2012-2298 [Drupal SA-CONTRIB-2012-063 - RealName - XSS] RESERVED -CVE-2012-2297 + TODO: check +CVE-2012-2297 [Drupal SA-CONTRIB-2012-062 - Creative Commons - XSS] RESERVED -CVE-2012-2296 + TODO: check +CVE-2012-2296 [Drupal SA-CONTRIB-2012-056 - Janrain Engage - Sensitive Data ...] RESERVED + TODO: check CVE-2012-2295 RESERVED CVE-2012-2294 @@ -718,10 +733,12 @@ RESERVED CVE-2012-2156 (Multiple cross-site scripting (XSS) vulnerabilities in Plume CMS 1.2.4 ...) NOT-FOR-US: Plume CMS -CVE-2012-2155 +CVE-2012-2155 [Drupal SA-CONTRIB-2012-050 - CDN2 Video - CSRF] RESERVED -CVE-2012-2154 + TODO: check +CVE-2012-2154 [Drupal SA-CONTRIB-2012-050 - CDN2 Video - XSS] RESERVED + TODO: check CVE-2012-2153 RESERVED CVE-2012-2152 [dhcpcd 3.2.3 remote stack overflow / denial of service]