Author: geissert
Date: 2010-01-07 21:35:07 +0000 (Thu, 07 Jan 2010)
New Revision: 13756
Modified:
data/CVE/list
Log:
NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2010-01-07 21:25:17 UTC (rev 13755)
+++ data/CVE/list 2010-01-07 21:35:07 UTC (rev 13756)
@@ -121,9 +121,9 @@
CVE-2010-0159
RESERVED
CVE-2010-0158 (SQL injection vulnerability in the JoomlaBamboo (JB) Simpla
Admin ...)
- TODO: check
+ NOT-FOR-US: JoomlaBamboo (JB) Simpla Admin template
CVE-2010-0157 (Directory traversal vulnerability in the Bible Study
(com_biblestudy) ...)
- TODO: check
+ NOT-FOR-US: component for Joomla!
CVE-2010-0156
RESERVED
CVE-2010-0155
@@ -207,55 +207,55 @@
CVE-2010-0116
RESERVED
CVE-2009-4585 (UranyumSoft Listing Service stores sensitive information under
the web ...)
- TODO: check
+ NOT-FOR-US: UranyumSoft Listing Service
CVE-2009-4584 (admin.php in dB Masters Multimedia Links Directory 3.1.3 allows
remote ...)
- TODO: check
+ NOT-FOR-US: dB Masters Multimedia Links Directory
CVE-2009-4583 (SQL injection vulnerability in the DhForum (com_dhforum)
component for ...)
- TODO: check
+ NOT-FOR-US: component for Joomla!
CVE-2009-4582 (SQL injection vulnerability in detail.php in the Dictionary
module for ...)
- TODO: check
+ NOT-FOR-US: XOOPS module
CVE-2009-4581 (Directory traversal vulnerability in modules/admincp.php in ...)
- TODO: check
+ NOT-FOR-US: RoseOnlineCMS
CVE-2009-4580 (Multiple cross-site scripting (XSS) vulnerabilities in Hasta
Blog 2.3 ...)
- TODO: check
+ NOT-FOR-US: Hasta Blog
CVE-2009-4579 (Cross-site scripting (XSS) vulnerability in the Artist avenue
...)
- TODO: check
+ NOT-FOR-US: component for Joomla!
CVE-2009-4578 (Cross-site scripting (XSS) vulnerability in the Facileforms ...)
- TODO: check
+ NOT-FOR-US: component for Joomla!
CVE-2009-4577 (SQL injection vulnerability in the MDForum module 2.x through
2.07 for ...)
- TODO: check
+ NOT-FOR-US: MDForum module for MAXdev MDPro
CVE-2009-4576 (SQL injection vulnerability in the BeeHeard (com_beeheard)
component ...)
- TODO: check
+ NOT-FOR-US: component for Joomla!
CVE-2009-4575 (Cross-site scripting (XSS) vulnerability in the Q-Personel ...)
- TODO: check
+ NOT-FOR-US: component for Joomla!
CVE-2009-4574 (SQL injection vulnerability in country_escorts.php in I-Escorts
...)
- TODO: check
+ NOT-FOR-US: I-Escorts Directory Script
CVE-2009-4573 (Multiple cross-site scripting (XSS) vulnerabilities in the
Joomulus ...)
- TODO: check
+ NOT-FOR-US: component for Joomla!
CVE-2009-4572 (Cross-site request forgery (CSRF) vulnerability in PhpShop
0.8.1 ...)
- TODO: check
+ NOT-FOR-US: PhpShop
CVE-2009-4571 (Multiple SQL injection vulnerabilities in index.php in PhpShop
0.8.1 ...)
- TODO: check
+ NOT-FOR-US: PhpShop
CVE-2009-4570 (Cross-site scripting (XSS) vulnerability in PhpShop 0.8.1
allows ...)
- TODO: check
+ NOT-FOR-US: PhpShop
CVE-2009-4569 (SQL injection vulnerability in elkagroup Image Gallery allows
remote ...)
TODO: check
CVE-2009-4568 (Cross-site scripting (XSS) vulnerability in Webmin before 1.500
and ...)
- TODO: check
+ - webmin <itp> (bug #377948)
CVE-2009-4567 (Multiple cross-site scripting (XSS) vulnerabilities in
editprofile.php ...)
- TODO: check
+ NOT-FOR-US: Viscacha
CVE-2009-4566 (SQL injection vulnerability in index.php in Zenphoto 1.2.5
allows ...)
- TODO: check
+ NOT-FOR-US: Zenphoto
CVE-2009-4564 (SQL injection vulnerability in index.php in Zenphoto 1.2.5,
when the ...)
- TODO: check
+ NOT-FOR-US: Zenphoto
CVE-2009-4563 (Cross-site request forgery (CSRF) vulnerability in ...)
- TODO: check
+ NOT-FOR-US: Zenphoto
CVE-2009-4562 (Cross-site scripting (XSS) vulnerability in zp-core/admin.php
in ...)
- TODO: check
+ NOT-FOR-US: Zenphoto
CVE-2009-4561 (Multiple SQL injection vulnerabilities in Admin/index.php in
WebLeague ...)
- TODO: check
+ NOT-FOR-US: WebLeague
CVE-2009-4560 (SQL injection vulnerability in profile.php in WebLeague 2.2.0
allows ...)
- TODO: check
+ NOT-FOR-US: WebLeague
CVE-2009-4559 (Cross-site scripting (XSS) vulnerability in the Submitted By
module ...)
TODO: check
CVE-2009-4558 (The Image Assist module 5.x-1.x before 5.x-1.8, 5.x-2.x before
...)
@@ -263,21 +263,21 @@
CVE-2009-4557 (Cross-site scripting (XSS) vulnerability in the Image Assist
module ...)
TODO: check
CVE-2009-4556 (Quick Heal AntiVirus Plus 2009 10.00 SP1 and Quick Heal Total
Security ...)
- TODO: check
+ NOT-FOR-US: Quick Heal products
CVE-2009-4555 (Multiple cross-site request forgery (CSRF) vulnerabilities in
...)
- TODO: check
+ NOT-FOR-US: AgoraCart
CVE-2009-4554 (Multiple cross-site scripting (XSS) vulnerabilities in Snitz
Forums ...)
- TODO: check
+ NOT-FOR-US: Snitz Forums
CVE-2009-4553 (Stack-based buffer overflow in iRehearse allows remote
attackers to ...)
- TODO: check
+ NOT-FOR-US: iRehearse
CVE-2009-4552 (Cross-site scripting (XSS) vulnerability in the Survey Pro
module for ...)
- TODO: check
+ NOT-FOR-US: module for Miniweb
CVE-2009-4551 (SQL injection vulnerability in the Survey Pro module for
Miniweb 2.0 ...)
- TODO: check
+ NOT-FOR-US: module for Miniweb
CVE-2009-4550 (SQL injection vulnerability in the Kunena Forum (com_kunena)
component ...)
- TODO: check
+ NOT-FOR-US: component for Joomla!
CVE-2009-4549 (Stack-based buffer overflow in A2 Media Player Pro 2.51 allows
remote ...)
- TODO: check
+ NOT-FOR-US: A2 Media Player Pro
CVE-2009-4548 (Multiple cross-site scripting (XSS) vulnerabilities in ViArt
Helpdesk ...)
TODO: check
CVE-2009-4547 (Multiple cross-site scripting (XSS) vulnerabilities in ViArt
CMS 3.x ...)
@@ -479,7 +479,7 @@
CVE-2009-4476 (Stack-based buffer overflow in HAURI ViRobot Desktop 5.5 before
...)
NOT-FOR-US: HAURI ViRobot Desktop
CVE-2009-4475 (SQL injection vulnerability in the Joomlub (com_joomlub)
component for ...)
- NOT-FOR-US: Joomla! component
+ NOT-FOR-US: component for Joomla!
CVE-2009-4474 (SQL injection vulnerability in the Mike de Boer zoom (com_zoom)
...)
NOT-FOR-US: Mambo component
CVE-2009-4473 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits