[Secure-testing-commits] r9574 - data/CVE

thomasbl-guest Thu, 14 Aug 2008 08:07:07 -0700

Author: thomasbl-guest
Date: 2008-08-14 15:06:05 +0000 (Thu, 14 Aug 2008)
New Revision: 9574


Modified:
   data/CVE/list
Log:
some not-for-us



Modified: data/CVE/list
===================================================================
--- data/CVE/list       2008-08-14 14:13:36 UTC (rev 9573)
+++ data/CVE/list       2008-08-14 15:06:05 UTC (rev 9574)
@@ -157,45 +157,38 @@
        NOT-FOR-US: SyzygyCMS
 CVE-2008-3592 (Unrestricted file upload vulnerability in the File Manager in 
the ...)
        NOT-FOR-US: Twentyone Degrees Symphony 1.7.01
-       TODO: check if there are packages which have this source included
 CVE-2008-3591 (SQL injection vulnerability in lib/class.admin.php in Twentyone 
...)
        NOT-FOR-US: Twentyone Degrees Symphony 1.7.01
-       TODO: check if there are packages which have this source included
 begin claimed by thomasbl
 CVE-2008-3590 (Multiple SQL injection vulnerabilities in admin/login.asp in E. 
Z. ...)
        TODO: check
 end claimed by thomasbl
 CVE-2008-3589 (Directory traversal vulnerability in download.php in moziloCMS 
1.10.1, ...)
        NOT-FOR-US: mozilo CMS 1.10.1
-       TODO: check if there are packages which have this source included
 CVE-2008-3588 (Multiple SQL injection vulnerabilities in phsBlog 0.1.1 allow 
remote ...)
        NOT-FOR-US: phsBlog 0.1.1
-       TODO: check if there are packages which have this source included
 CVE-2008-3587 (Cross-site scripting (XSS) vulnerability in result.php in Chris 
...)
        NOT-FOR-US: Homes 4 Sale
-       TODO: check if there are packages which have this source included
 begin claimed by thomasbl
 CVE-2008-3586 (SQL injection vulnerability in the EZ Store (com_ezstore) 
component ...)
        TODO: check
 end claimed by thomasbl
 CVE-2008-3585 (Multiple SQL injection vulnerabilities in PozScripts GreenCart 
PHP ...)
        NOT-FOR-US: PozScripts GreenCart PHP Shopping Cart
-       TODO: check if there are packages which have this source included
 CVE-2008-3584
        RESERVED
 CVE-2008-3583 (Buffer overflow in the HTML parser in IntelliTamper 2.07 allows 
remote ...)
        NOT-FOR-US: IntelliTamper 2.07
 CVE-2008-3582 (SQL injection vulnerability in login.php in Keld PHP-MySQL News 
Script ...)
        NOT-FOR-US: Keld PHP-MySQL News Script 0.7.1
-       TODO: check if there are packages which have this source included
 CVE-2008-3581 (Cross-site scripting (XSS) vulnerability in index.php in Qsoft 
K-Links ...)
-       TODO: check
+       NOT-FOR-US: Qsoft K-Links
 CVE-2008-3580 (Multiple SQL injection vulnerabilities in Qsoft K-Links allow 
remote ...)
-       TODO: check
+       NOT-FOR-US: Qsoft K-Links
 CVE-2008-3579 (Calacode @Mail 5.41 on Linux does not require administrative 
...)
        TODO: check
 CVE-2008-3578 (HydraIRC 0.3.164 and earlier allows remote attackers to cause a 
denial ...)
-       TODO: check
+       NOT-FOR-US: HydraIRC
 CVE-2008-3577 (Buffer overflow in src/openttd.cpp in OpenTTD before 0.6.2 
allows ...)
        TODO: check
 CVE-2008-3576 (Buffer overflow in the TruncateString function in src/gfx.cpp 
in ...)
@@ -205,31 +198,31 @@
 CVE-2008-3574 (Multiple cross-site scripting (XSS) vulnerabilities in Pluck 
4.5.2, ...)
        TODO: check
 CVE-2008-3573 (The CAPTCHA implementation in (1) Pligg 9.9.5 and possibly (2) 
...)
-       TODO: check
+       NOT-FOR-US: Pligg
 CVE-2008-3572 (Cross-site scripting (XSS) vulnerability in index.php in Pligg 
9.9.5 ...)
-       TODO: check
+       NOT-FOR-US: Pligg
 CVE-2008-3571 (The Xerox Phaser 8400 allows remote attackers to cause a denial 
of ...)
-       TODO: check
+       NOT-FOR-US: Xerox Phaser 8400
 CVE-2008-3570 (PHP remote file inclusion vulnerability in index.php in Africa 
Be Gone ...)
-       TODO: check
+       NOT-FOR-US: Africa Be Gone
 CVE-2008-3569 (Multiple cross-site scripting (XSS) vulnerabilities in XAMPP 
1.6.7, ...)
-       TODO: check
+       NOT-FOR-US: XAMPP
 CVE-2008-3568 (Absolute path traversal vulnerability in ...)
        TODO: check
 CVE-2008-3567 (Unspecified vulnerability in the NowPlaying functionality in 
NullSoft ...)
-       TODO: check
+       NOT-FOR-US: NullSoft Winamp
 CVE-2008-3566 (Cross-site scripting (XSS) vulnerability in ZoneO-soft 
freeForum 1.7 ...)
-       TODO: check
+       NOT-FOR-US: ZoneO-soft freeForum
 CVE-2008-3565 (Multiple cross-site scripting (XSS) vulnerabilities in Meeting 
Room ...)
        TODO: check
 CVE-2008-3564 (Multiple directory traversal vulnerabilities in index.php in 
Dayfox ...)
-       TODO: check
+       NOT-FOR-US: Dayfox Blog
 CVE-2008-3563 (Multiple SQL injection vulnerabilities in Plogger 3.0 and 
earlier ...)
-       TODO: check
+       NOT-FOR-US: Plogger
 CVE-2008-3562 (Directory traversal vulnerability in index.php in the Contact 
module ...)
-       TODO: check
+       NOT-FOR-US: Chupix CMS
 CVE-2008-3561 (SQL injection vulnerability in s03.php in Powergap Shopsystem, 
when ...)
-       TODO: check
+       NOT-FOR-US: Powergap Shopsystem
 CVE-2008-3560 (Cross-site scripting (XSS) vulnerability in kshop_search.php in 
the ...)
        TODO: check
 CVE-2008-3559 (Multiple cross-site scripting (XSS) vulnerabilities in 
KAPhotoservice ...)


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r9574 - data/CVE

Reply via email to