[Secure-testing-commits] r9492 - data/CVE

white Sat, 02 Aug 2008 00:19:19 -0700

Author: white
Date: 2008-08-02 07:19:09 +0000 (Sat, 02 Aug 2008)
New Revision: 9492


Modified:
   data/CVE/list
Log:
pixelpost not affected, needs register_globals to pass variable

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2008-08-02 04:02:31 UTC (rev 9491)
+++ data/CVE/list       2008-08-02 07:19:09 UTC (rev 9492)
@@ -111,7 +111,7 @@
 CVE-2008-3366 (SQL injection vulnerability in story.php in Pligg CMS Beta 
9.9.0 ...)
        NOT-FOR-US: Pligg CMS
 CVE-2008-3365 (Directory traversal vulnerability in index.php in Pixelpost 
1.7.1 on ...)
-       TODO: check
+       - pixelpost <not-affected> (Exploit relies on register_globals to be on)
 CVE-2008-3364 (Buffer overflow in the ObjRemoveCtrl Class ActiveX control in 
...)
        NOT-FOR-US: Trend Micro OfficeScan Corp Edition Web-Deployment
 CVE-2008-3363 (Directory traversal vulnerability in user_portal.php in the 
Dokeos ...)


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r9492 - data/CVE

Reply via email to