I was looking at CVE-2010-4663, and noticed that cmsmadesimple/cmsms ( http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=608888) is listed on the WNPP website (http://www.debian.org/devel/wnpp/being_packaged) but is not in the wnpp_rm file created by bin/check-new-issues and searched with .w<name>.
What's causing this discrepancy, and is the wnpp_rm list not a 1-to-1 list with the lists on the website? -Johnathan