Author: joeyh
Date: 2009-06-23 21:15:25 +0000 (Tue, 23 Jun 2009)
New Revision: 12188
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-06-23 17:32:08 UTC (rev 12187)
+++ data/CVE/list 2009-06-23 21:15:25 UTC (rev 12188)
@@ -1,3 +1,65 @@
+CVE-2009-2169 (Insecure method vulnerability in the PDFVIEWER.PDFViewerCtrl.1
ActiveX ...)
+ TODO: check
+CVE-2009-2168 (cpanel/login.php in EgyPlus 7ammel (aka 7ml) 1.0.1 and earlier
sends a ...)
+ TODO: check
+CVE-2009-2167 (Multiple SQL injection vulnerabilities in cpanel/login.php in
EgyPlus ...)
+ TODO: check
+CVE-2009-2166 (Absolute path traversal vulnerability in cvs.php in OCS
Inventory NG ...)
+ TODO: check
+CVE-2009-2165 (SerendipityNZ (aka SimpleBoxes) Serene Bach 2.20R and earlier,
and ...)
+ TODO: check
+CVE-2009-2164 (Multiple SQL injection vulnerabilities in Kjtechforce mailman
beta1, ...)
+ TODO: check
+CVE-2009-2163 (Cross-site scripting (XSS) vulnerability in login/default.aspx
in ...)
+ TODO: check
+CVE-2009-2162 (Cross-site scripting (XSS) vulnerability in the XOOPS MANIAC
...)
+ TODO: check
+CVE-2009-2161 (Directory traversal vulnerability in
backend/admin-functions.php in ...)
+ TODO: check
+CVE-2009-2160 (TorrentTrader Classic 1.09 allows remote attackers to (1)
obtain ...)
+ TODO: check
+CVE-2009-2159 (backup-database.php in TorrentTrader Classic 1.09 does not
require ...)
+ TODO: check
+CVE-2009-2158 (account-recover.php in TorrentTrader Classic 1.09 chooses
random ...)
+ TODO: check
+CVE-2009-2157 (Multiple SQL injection vulnerabilities in TorrentTrader Classic
1.09 ...)
+ TODO: check
+CVE-2009-2156 (Multiple cross-site scripting (XSS) vulnerabilities in
TorrentTrader ...)
+ TODO: check
+CVE-2009-2155 (Cross-site scripting (XSS) vulnerability in
report/ReportViewAction.do ...)
+ TODO: check
+CVE-2009-2154 (SQL injection vulnerability in admin/login.php in Impleo Music
...)
+ TODO: check
+CVE-2009-2153 (Cross-site scripting (XSS) vulnerability in index.php in Impleo
Music ...)
+ TODO: check
+CVE-2009-2152 (SQL injection vulnerability in a_index.php in AdaptWeb 0.9.2
allows ...)
+ TODO: check
+CVE-2009-2151 (Directory traversal vulnerability in index.php in AdaptWeb
0.9.2 ...)
+ TODO: check
+CVE-2009-2150 (Multiple cross-site request forgery (CSRF) vulnerabilities in
Campus ...)
+ TODO: check
+CVE-2009-2149 (Multiple cross-site scripting (XSS) vulnerabilities in Campus
...)
+ TODO: check
+CVE-2009-2148 (SQL injection vulnerability in news/index.php in Campus
Virtual-LMS ...)
+ TODO: check
+CVE-2009-2147 (SQL injection vulnerability in fdown.php in phpWebThings 1.5.2
and ...)
+ TODO: check
+CVE-2009-2146 (Unrestricted file upload vulnerability in the Compose Email
feature in ...)
+ TODO: check
+CVE-2009-2145 (Multiple cross-site scripting (XSS) vulnerabilities in
transLucid 1.75 ...)
+ TODO: check
+CVE-2009-2144 (SQL injection vulnerability in the FireStats plugin before ...)
+ TODO: check
+CVE-2009-2143 (PHP remote file inclusion vulnerability in
firestats-wordpress.php in ...)
+ TODO: check
+CVE-2009-2142 (Multiple SQL injection vulnerabilities in admin/index.asp in
Zip Store ...)
+ TODO: check
+CVE-2009-2141 (Multiple cross-site scripting (XSS) vulnerabilities in
TBDev.NET ...)
+ TODO: check
+CVE-2008-6834 (Multiple directory traversal vulnerabilities in fuzzylime (cms)
3.01 ...)
+ TODO: check
+CVE-2008-6833 (Directory traversal vulnerability in commsrss.php in fuzzylime
(cms) ...)
+ TODO: check
CVE-2009-2140
RESERVED
CVE-2009-2139
@@ -39,6 +101,7 @@
CVE-2009-2121
RESERVED
CVE-2009-2170 [mahara multiple XSS issues]
+ {DSA-1822-1}
- mahara 1.1.5-1 (low)
CVE-2009-2171 [mahara information disclosure]
- mahara 1.1.5-1 (low)
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
