Author: jmm-guest
Date: 2010-06-04 21:36:06 +0000 (Fri, 04 Jun 2010)
New Revision: 14801

Modified:
   data/CVE/list
Log:
two new potential zonecheck issues
NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list       2010-06-04 21:27:03 UTC (rev 14800)
+++ data/CVE/list       2010-06-04 21:36:06 UTC (rev 14801)
@@ -3,59 +3,59 @@
 CVE-2010-2156
        RESERVED
 CVE-2010-2155 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
-       TODO: check
+       - zonecheck <undetermined>
 CVE-2010-2154 (Cross-site scripting (XSS) vulnerability in the Search Site in 
CMScout ...)
-       TODO: check
+       NOT-FOR-US: CMScout
 CVE-2010-2153 (Unrestricted file upload vulnerability in ...)
-       TODO: check
+       NOT-FOR-US: TCExam
 CVE-2010-2152 (Unspecified vulnerability in JustSystems Ichitaro 2004 through 
2009, ...)
-       TODO: check
+       NOT-FOR-US: JustSystems Ichitaro
 CVE-2010-2151 (Cross-site request forgery (CSRF) vulnerability in Fujitsu 
e-Pares V01 ...)
-       TODO: check
+       NOT-FOR-US: Fujitsu e-Pares
 CVE-2010-2150 (Cross-site scripting (XSS) vulnerability Fujitsu e-Pares V01 
L01 ...)
-       TODO: check
+       NOT-FOR-US: Fujitsu e-Pares
 CVE-2010-2149 (Session fixation vulnerability in Fujitsu e-Pares V01 L01, L03, 
L10, ...)
-       TODO: check
+       NOT-FOR-US: Fujitsu e-Pares
 CVE-2010-2148 (SQL injection vulnerability in the My Car (com_mycar) component 
1.0 ...)
-       TODO: check
+       NOT-FOR-US: My Car for Joomla
 CVE-2010-2147 (Cross-site scripting (XSS) vulnerability in the My Car 
(com_mycar) ...)
-       TODO: check
+       NOT-FOR-US: My Car for Joomla
 CVE-2010-2146 (PHP remote file inclusion vulnerability in banned.php in 
Visitor ...)
-       TODO: check
+       NOT-FOR-US: Visitor Logger 
 CVE-2010-2145 (Multiple PHP remote file inclusion vulnerabilities in ClearSite 
Beta ...)
-       TODO: check
+       NOT-FOR-US: ClearSite 
 CVE-2010-2144 (Cross-site scripting (XSS) vulnerability in signinform.php in 
Zeeways ...)
-       TODO: check
+       NOT-FOR-US: Zeeways eBay Clone auction script
 CVE-2010-2143 (Directory traversal vulnerability in index.php in Symphony CMS 
2.0.7 ...)
-       TODO: check
+       NOT-FOR-US: Symphony CMS 
 CVE-2010-2142 (SQL injection vulnerability in default.asp in Cyberhost allows 
remote ...)
-       TODO: check
+       NOT-FOR-US: Cyberhost 
 CVE-2010-2141 (SQL injection vulnerability in index.php in NITRO Web Gallery 
allows ...)
-       TODO: check
+       NOT-FOR-US: NITRO Web Gallery
 CVE-2010-2140 (SQL injection vulnerability in itemdetail.php in Multishop CMS 
allows ...)
-       TODO: check
+       NOT-FOR-US: Multishop CMS
 CVE-2010-2139 (SQL injection vulnerability in pages.php in Multishop CMS 
allows ...)
-       TODO: check
+       NOT-FOR-US: Multishop CMS
 CVE-2010-2138 (Multiple directory traversal vulnerabilities in ProMan 0.1.1 
and ...)
-       TODO: check
+       NOT-FOR-US: ProMan
 CVE-2010-2137 (PHP remote file inclusion vulnerability in _center.php in 
ProMan 0.1.1 ...)
-       TODO: check
+       NOT-FOR-US: ProMan
 CVE-2010-2136 (Directory traversal vulnerability in admin/index.php in Article 
...)
-       TODO: check
+       NOT-FOR-US: Article Friendly
 CVE-2010-2135 (Multiple SQL injection vulnerabilities in login.php in 
HazelPress Lite ...)
-       TODO: check
+       NOT-FOR-US: HazelPress Lite
 CVE-2010-2134 (Multiple SQL injection vulnerabilities in login.php in Project 
Man 1.0 ...)
-       TODO: check
+       NOT-FOR-US: Project Man
 CVE-2010-2133 (SQL injection vulnerability in contact.php in My Little Forum 
allows ...)
-       TODO: check
+       NOT-FOR-US: My Little Forum
 CVE-2010-2132 (Multiple PHP remote file inclusion vulnerabilities in Open 
Education ...)
-       TODO: check
+       NOT-FOR-US: Open Education System 
 CVE-2010-2131 (SQL injection vulnerability in the Calendar Base (cal) 
extension ...)
-       TODO: check
+       NOT-FOR-US: Typo3 extenson Calendar Base
 CVE-2010-2130 (Cross-site scripting (XSS) vulnerability in wflogin.jsp in Aris 
Global ...)
-       TODO: check
+       NOT-FOR-US: Aris Global ARISg 
 CVE-2009-4882 (Cross-site scripting (XSS) vulnerability in 
zc/publisher/html.rb in ...)
-       TODO: check
+       - zonecheck <undetermined>
 CVE-2008-7256 (mm/shmem.c in the Linux kernel before 2.6.28-rc8, when strict 
...)
        TODO: check
 CVE-2010-2129 (Directory traversal vulnerability in the JE Ajax Event Calendar 
...)


_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits

Reply via email to