From 1e9de1e7dd2e639c3335d43da2a67a234614e390 Mon Sep 17 00:00:00 2001 From: Salvatore Bonaccorso Date: Tue, 12 Feb 2019 21:32:28 +0100 Subject: Unify some older Joomla! NFUs --- data/CVE/2007.list | 46 +++++++++++++++++++++++----------------------- 1 file changed, 23 insertions(+), 23 deletions(-) (limited to 'data/CVE/2007.list') diff --git a/data/CVE/2007.list b/data/CVE/2007.list index 5477d40a9c..a91a32a79d 100644 --- a/data/CVE/2007.list +++ b/data/CVE/2007.list @@ -275,13 +275,13 @@ CVE-2007-6647 (SQL injection vulnerability in index.php in w-Agora 4.2.1 and ear CVE-2007-6646 (Multiple cross-site scripting (XSS) vulnerabilities in LiveCart 1.0.1, ...) NOT-FOR-US: LiveCart CVE-2007-6645 (Unspecified vulnerability in Joomla! before 1.5 RC4 allows remote ...) - NOT-FOR-US: Joomla + NOT-FOR-US: Joomla! CVE-2007-6644 (Joomla! before 1.5 RC4 allows remote authenticated administrators to ...) - NOT-FOR-US: Joomla + NOT-FOR-US: Joomla! CVE-2007-6643 (Cross-site scripting (XSS) vulnerability in the com_poll component in ...) - NOT-FOR-US: Joomla + NOT-FOR-US: Joomla! CVE-2007-6642 (Multiple cross-site request forgery (CSRF) vulnerabilities in Joomla! ...) - NOT-FOR-US: Joomla + NOT-FOR-US: Joomla! CVE-2007-6641 (Cross-site scripting (XSS) vulnerability in dir.php in milliscripts ...) NOT-FOR-US: milliscripts CVE-2007-6640 (Creammonkey 0.9 through 1.1 and GreaseKit 1.2 through 1.3 does not ...) @@ -1179,7 +1179,7 @@ CVE-2007-6274 (Multiple cross-site scripting (XSS) vulnerabilities in ...) CVE-2007-6273 (Multiple format string vulnerabilities in the configuration file in ...) NOT-FOR-US: SonicWALL GLobal VPN Client CVE-2007-6272 (Multiple SQL injection vulnerabilities in index.php in Joomla! 1.5 RC3 ...) - NOT-FOR-US: Joomla + NOT-FOR-US: Joomla! CVE-2007-6271 (Absolute News Manager.NET 5.1 allows remote attackers to obtain ...) NOT-FOR-US: Absolute News Manager.NET CVE-2007-6270 (Multiple cross-site scripting (XSS) vulnerabilities in Absolute News ...) @@ -2845,7 +2845,7 @@ CVE-2007-5578 (Basic Analysis and Security Engine (BASE) before 1.3.8 sends a .. - acidbase 1.3.8 (low) [etch] - acidbase (Minor issue) CVE-2007-5577 (Multiple cross-site scripting (XSS) vulnerabilities in Joomla! before ...) - NOT-FOR-US: Joomla + NOT-FOR-US: Joomla! CVE-2007-5576 (BEA Tuxedo 8.0 before RP392 and 8.1 before RP293, and WebLogic ...) NOT-FOR-US: BEA Tuxedo CVE-2007-5575 (Cross-site request forgery (CSRF) vulnerability in 1024 CMS 1.2.5 ...) @@ -3155,7 +3155,7 @@ CVE-2007-5429 (Cross-site scripting (XSS) vulnerability in index.php in Nucleus CVE-2007-5428 (Cross-site scripting (XSS) vulnerability in UMI CMS allows remote ...) NOT-FOR-US: UMI CMS CVE-2007-5427 (Cross-site scripting (XSS) vulnerability in the com_search component ...) - NOT-FOR-US: Joomla + NOT-FOR-US: Joomla! CVE-2007-5426 (Multiple cross-site scripting (XSS) vulnerabilities in ActiveKB NX ...) NOT-FOR-US: ActiveKB NX CVE-2007-5425 (SQL injection vulnerability in admin/index.php in Interspire ActiveKB ...) @@ -4716,15 +4716,15 @@ CVE-2007-4782 (PHP before 5.2.3 allows context-dependent attackers to cause a de - php5 5.2.3-1 (unimportant) NOTE: Only triggerable by malicious script CVE-2007-4781 (administrator/index.php in the installer component (com_installer) in ...) - NOT-FOR-US: Joomla + NOT-FOR-US: Joomla! CVE-2007-4780 (Joomla! 1.5 before RC2 (aka Endeleo) allows remote attackers to obtain ...) - NOT-FOR-US: Joomla + NOT-FOR-US: Joomla! CVE-2007-4779 (Cross-site scripting (XSS) vulnerability in Joomla! 1.5 before RC2 ...) - NOT-FOR-US: Joomla + NOT-FOR-US: Joomla! CVE-2007-4778 (Multiple SQL injection vulnerabilities in the content component ...) - NOT-FOR-US: Joomla + NOT-FOR-US: Joomla! CVE-2007-4777 (SQL injection vulnerability in Joomla! 1.5 before RC2 (aka Endeleo) ...) - NOT-FOR-US: Joomla + NOT-FOR-US: Joomla! CVE-2007-4776 (Buffer overflow in Microsoft Visual Basic 6.0 and Enterprise Edition ...) NOT-FOR-US: Microsoft Visual Basic CVE-2007-4775 @@ -6008,7 +6008,7 @@ CVE-2007-4246 (Unspecified vulnerability, possibly a buffer overflow, in Justsys CVE-2007-4245 (Cross-site scripting (XSS) vulnerability in Search.php in DiMeMa ...) NOT-FOR-US: DiMeMa CONTENTdm CVE-2007-4244 (PHP remote file inclusion vulnerability in langset.php in J! ...) - NOT-FOR-US: Joomla + NOT-FOR-US: Joomla! CVE-2007-4243 (Unspecified vulnerability in pfilter-reporter.pl in Astaro Security ...) NOT-FOR-US: Astaro Security Gateway CVE-2007-4242 (The pop3 Proxy in Astaro Security Gateway (ASG) 7 does not perform ...) @@ -6129,19 +6129,19 @@ CVE-2007-4192 (Multiple cross-site scripting (XSS) vulnerabilities in IDE Group CVE-2007-4191 (Panda Antivirus 2008 stores service executables under the product's ...) NOT-FOR-US: Panda Antivirus CVE-2007-4190 (CRLF injection vulnerability in Joomla! before 1.0.13 (aka Sunglow) ...) - NOT-FOR-US: Joomla + NOT-FOR-US: Joomla! CVE-2007-4189 (Multiple cross-site scripting (XSS) vulnerabilities in Joomla! before ...) - NOT-FOR-US: Joomla + NOT-FOR-US: Joomla! CVE-2007-4188 (Session fixation vulnerability in Joomla! before 1.0.13 (aka Sunglow) ...) - NOT-FOR-US: Joomla + NOT-FOR-US: Joomla! CVE-2007-4187 (Multiple eval injection vulnerabilities in the com_search component in ...) - NOT-FOR-US: Joomla + NOT-FOR-US: Joomla! CVE-2007-4186 (PHP remote file inclusion vulnerability in admin.tour_toto.php in the ...) NOT-FOR-US: Joomla! addon CVE-2007-4185 (Joomla! 1.0.12 allows remote attackers to obtain sensitive information ...) - NOT-FOR-US: Joomla + NOT-FOR-US: Joomla! CVE-2007-4184 (SQL injection vulnerability in administrator/popups/pollwindow.php in ...) - NOT-FOR-US: Joomla + NOT-FOR-US: Joomla! CVE-2007-4183 (SQL injection vulnerability in main.php in paBugs 2.0 Beta 3 and ...) NOT-FOR-US: paBugs CVE-2007-4182 (Unrestricted file upload vulnerability in index.php in WikiWebWeaver ...) @@ -10884,7 +10884,7 @@ CVE-2007-2201 (Multiple PHP remote file inclusion vulnerabilities in Post Revolu CVE-2007-2200 (Directory traversal vulnerability in navigator/navigator_ok.php in ...) NOT-FOR-US: Pagode CVE-2007-2199 (PHP remote file inclusion vulnerability in lib/pcltar.lib.php (aka ...) - NOT-FOR-US: Joomla + NOT-FOR-US: Joomla! CVE-2007-2198 (Cross-site scripting (XSS) vulnerability in LAN Management System ...) NOT-FOR-US: LAN Management System CVE-2007-2197 (Race condition in the NeatUpload ASP.NET component 1.2.11 through ...) @@ -15132,7 +15132,7 @@ CVE-2007-0389 (Directory traversal vulnerability in ArsDigita Community System ( CVE-2007-0388 (SQL injection vulnerability in search.php in Woltlab Burning Board ...) NOT-FOR-US: Woltlab Burning Board CVE-2007-0387 (SQL injection vulnerability in models/category.php in the Weblinks ...) - NOT-FOR-US: Joomla + NOT-FOR-US: Joomla! CVE-2007-0386 (Unspecified vulnerability in the rating section in PostNuke 0.764 has ...) NOT-FOR-US: PostNuke CVE-2007-0385 (The faq section in PostNuke 0.764 allows remote attackers to obtain ...) @@ -15156,11 +15156,11 @@ CVE-2007-0377 (Multiple SQL injection vulnerabilities in Xoops 2.0.16 allow remo CVE-2007-0376 (Cross-site scripting (XSS) vulnerability in Virtuemart 1.0.7 allows ...) NOT-FOR-US: Virtuemart CVE-2007-0375 (Joomla! 1.5.0 Beta allows remote attackers to obtain sensitive ...) - NOT-FOR-US: Joomla + NOT-FOR-US: Joomla! CVE-2007-0374 (SQL injection vulnerability in (1) Joomla! 1.0.11 and 1.5 Beta, and ...) - mambo 4.6.1-5 (bug #407995; low) CVE-2007-0373 (Multiple SQL injection vulnerabilities in Joomla! 1.5.0 Beta allow ...) - NOT-FOR-US: Joomla + NOT-FOR-US: Joomla! CVE-2007-0372 (Multiple SQL injection vulnerabilities in Francisco Burzi PHP-Nuke 7.9 ...) NOT-FOR-US: PHP-Nuke CVE-2007-0371 (A certain ActiveX control in the Common Controls Replacement Project ...) -- cgit v1.2.3