[Secure-testing-commits] r10839 - data/CVE

Sat, 03 Jan 2009 03:55:27 -0800 

Author: sf
Date: 2009-01-03 11:55:19 +0000 (Sat, 03 Jan 2009)
New Revision: 10839

Modified:
   data/CVE/list
Log:
more NFUs, textpattern already fixed

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2009-01-03 11:46:47 UTC (rev 10838)
+++ data/CVE/list       2009-01-03 11:55:19 UTC (rev 10839)
@@ -55,59 +55,59 @@
 CVE-2008-5780 (Forest Blog 1.3.2 stores sensitive information under the web 
root with ...)
        NOT-FOR-US: Forest Blog
 CVE-2008-5779 (SQL injection vulnerability in lpro.php in Free Links Directory 
Script ...)
-       TODO: check
+       NOT-FOR-US: Free Links Directory Script
 CVE-2008-5778 (SQL injection vulnerability in report.php in Free Links 
Directory ...)
-       TODO: check
+       NOT-FOR-US: Free Links Directory Script
 CVE-2008-5777 (SQL injection vulnerability in index.php in CadeNix allows 
remote ...)
-       TODO: check
+       NOT-FOR-US: CadeNix
 CVE-2008-5776 (Multiple directory traversal vulnerabilities in Aperto Blog 
0.1.1 ...)
-       TODO: check
+       NOT-FOR-US: Aperto Blog
 CVE-2008-5775 (SQL injection vulnerability in categories.php in Aperto Blog 
0.1.1 ...)
-       TODO: check
+       NOT-FOR-US: Aperto Blog
 CVE-2008-5774 (Multiple SQL injection vulnerabilities in ASPSiteWare 
HomeBuilder 1.0 ...)
-       TODO: check
+       NOT-FOR-US: ASPSiteWare HomeBuilder
 CVE-2008-5773 (Nukedit 4.9.8 stores sensitive information under the web root 
with ...)
-       TODO: check
+       NOT-FOR-US: Nukedit
 CVE-2008-5772 (Multiple SQL injection vulnerabilities in ASPSiteWare 
RealtyListings ...)
-       TODO: check
+       NOT-FOR-US: ASPSiteWare RealtyListings
 CVE-2008-5771 (Directory traversal vulnerability in test.php in PHP Weather 
2.2.2 ...)
-       TODO: check
+       NOT-FOR-US: PHP Weather
 CVE-2008-5770 (Cross-site scripting (XSS) vulnerability in 
config/make_config.php in ...)
-       TODO: check
+       NOT-FOR-US: PHP Weather
 CVE-2008-5769 (Multiple cross-site scripting (XSS) vulnerabilities in Kerio 
...)
-       TODO: check
+       NOT-FOR-US: Kerio MailServer
 CVE-2008-5768 (SQL injection vulnerability in print.php in the AM Events (aka 
...)
-       TODO: check
+       NOT-FOR-US: AM Events
 CVE-2008-5767 (SQL injection vulnerability in authors.asp in gNews Publisher 
allows ...)
-       TODO: check
+       NOT-FOR-US: gNews Publisher
 CVE-2008-5766 (SQL injection vulnerability in download.php in Farsi Script 
Faupload ...)
-       TODO: check
+       NOT-FOR-US: Farsi Script Faupload
 CVE-2008-5765 (WorkSimple 1.2.1 stores sensitive information under the web 
root with ...)
-       TODO: check
+       NOT-FOR-US: WorkSimple
 CVE-2008-5764 (PHP remote file inclusion vulnerability in calendar.php in 
WorkSimple ...)
-       TODO: check
+       NOT-FOR-US: WorkSimple
 CVE-2008-5763 (PHP remote file inclusion vulnerability in slogin_lib.inc.php 
in ...)
-       TODO: check
+       NOT-FOR-US: Simple Text-File Login Script (SiTeFiLo)
 CVE-2008-5762 (Simple Text-File Login Script (SiTeFiLo) 1.0.6 stores sensitive 
...)
-       TODO: check
+       NOT-FOR-US: Simple Text-File Login Script (SiTeFiLo)
 CVE-2008-5761 (Multiple cross-site scripting (XSS) vulnerabilities in FlatnuX 
CMS ...)
-       TODO: check
+       NOT-FOR-US: FlatnuX CMS
 CVE-2008-5760 (Cross-site scripting (XSS) vulnerability in error413.php in 
Kerio ...)
-       TODO: check
+       NOT-FOR-US: Kerio MailServer
 CVE-2008-5759 (Cross-site scripting (XSS) vulnerability in FlatnuX CMS (aka 
...)
-       TODO: check
+       NOT-FOR-US: FlatnuX CMS
 CVE-2008-5758 (Cross-site request forgery (CSRF) vulnerability in PHParanoid 
before ...)
-       TODO: check
+       NOT-FOR-US: PHParanoid
 CVE-2008-5757 (Cross-site scripting (XSS) vulnerability in textarea/index.php 
in ...)
-       TODO: check
+       - textpattern 4.0.6-1
 CVE-2008-5756 (Buffer overflow in BreakPoint Software Hex Workshop 5.1.4 
allows ...)
-       TODO: check
+       NOT-FOR-US: BreakPoint Software Hex Workshop
 CVE-2008-5755 (Stack-based buffer overflow in IntelliTamper 2.07 and 2.08 
allows ...)
-       TODO: check
+       NOT-FOR-US: IntelliTamper
 CVE-2008-5754 (Stack-based buffer overflow in BulletProof FTP Client allows 
...)
-       TODO: check
+       NOT-FOR-US: BulletProof FTP Client
 CVE-2008-5753 (Stack-based buffer overflow in BulletProof FTP Client 2.63 
allows ...)
-       TODO: check
+       NOT-FOR-US: BulletProof FTP Client
 CVE-2008-5752 (Directory traversal vulnerability in getConfig.php in the Page 
Flip ...)
        TODO: check
 CVE-2008-5751 (SQL injection vulnerability in index.php in AlstraSoft Web 
Email ...)


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits

Reply via email to