From b4d8cc46a8c63a0db2b033fc09fd36c269c62f70 Mon Sep 17 00:00:00 2001 From: Salvatore Bonaccorso Date: Mon, 3 Feb 2020 21:35:00 +0100 Subject: Associate several oder NFUs for phplist with the respective itp bug --- data/CVE/2005.list | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) (limited to 'data/CVE/2005.list') diff --git a/data/CVE/2005.list b/data/CVE/2005.list index db3010a72a..e76382d7e9 100644 --- a/data/CVE/2005.list +++ b/data/CVE/2005.list @@ -3025,11 +3025,11 @@ CVE-2005-3559 (Directory traversal vulnerability in vmail.cgi in Asterisk 1.0.9 CVE-2005-3558 (PHP file inclusion vulnerability in index.php in OSTE 1.0 allows remot ...) NOT-FOR-US: OSTE CVE-2005-3557 (Directory traversal vulnerability in admin/defaults.php in PHPlist 2.1 ...) - NOT-FOR-US: PHPList + - phplist (bug #612288) CVE-2005-3556 (Multiple cross-site scripting (XSS) vulnerabilities in PHPlist 2.10.1 ...) - NOT-FOR-US: PHPList + - phplist (bug #612288) CVE-2005-3555 (Multiple SQL injection vulnerabilities in PHPlist 2.10.1 and earlier a ...) - NOT-FOR-US: PHPList + - phplist (bug #612288) CVE-2005-3554 (Multiple eval injection vulnerabilities in the help function in PHPKIT ...) NOT-FOR-US: PHPKIT CVE-2005-3553 (Multiple SQL injection vulnerabilities in include.php in PHPKIT 1.6.1 ...) @@ -5914,9 +5914,9 @@ CVE-2005-2435 (Cross-site scripting (XSS) vulnerability in browse.php in Website CVE-2005-2434 (Linksys WRT54G router uses the same private key and certificate for ev ...) NOT-FOR-US: Linksys hardware CVE-2005-2433 (PhpList allows remote attackers to obtain sensitive information via a ...) - NOT-FOR-US: PhpList + - phplist (bug #612288) CVE-2005-2432 (SQL injection vulnerability in PhpList allows remote attackers to modi ...) - NOT-FOR-US: PhpList + - phplist (bug #612288) CVE-2005-2431 (The (1) lost password and (2) account pending features in GForge 4.5 d ...) - gforge 4.5.14-2 (bug #328224; unimportant) NOTE: Direct flooding is possible as well in most circumstances. -- cgit v1.2.3