update movable type, avoid unneeded comments, fix CVEs, add latest, fix urls (c878399)

update movable type, avoid unneeded comments, fix CVEs, add latest, fix urls

Hanno Böck commited on 2019-12-11 08:33:21
Zeige 6 geänderte Dateien mit 13 Einfügungen und 15 Löschungen.

freewvsdb/blog.freewvs 6bb7adf..7b4d8d3
freewvsdb/cms.freewvs ee4fa29..f607226
freewvsdb/games.freewvs 76a7321..0fbcbc3
freewvsdb/link.freewvs 4ee8a9c..c7dc0d1
freewvsdb/misc.freewvs 3e1e7a9..b11f73a
freewvsdb/plugins.freewvs 859e119..1ec2d6c

@@ -53,12 +53,11 @@ subdir=1
 extra_match=[sblog_version_info]
 
 [Movable_Type]
-url=https://www.movabletype.com/
-# movable type has a crazy versioning scheme, that makes it basically
-# impossible to really use freewvs properly, latest is 5.2.3
-safe=5.13
-old_safe=5.2.3,5.2.2,5.2.1
-vuln=CVE-2010-3921
+url=https://movabletype.com/
+# only 5.x public
+safe=7.1.4
+old_safe=6.5.2,6.3.10
+vuln=https://movabletype.org/news/2019/11/movable_type_r4603_v714_v652_and_v6310_released.html
 file=mt.php
 variable=VERSION_ID
 subdir=1
@@ -66,7 +65,7 @@ subdir=1
 [artmedic_weblog]
 url=http://www.artmedic-phpscripts.de/
 safe=
-# 1.0 as of 20080325
+latest=1.0
 vuln=CVE-2008-0798
 file=artmedic_index.php
 variable=# artmedic weblog

freewvsdb/cms.freewvs

Zeige Datei @ c878399

@@ -111,8 +111,8 @@ subdir=1
 
 [w-Agora]
 url=http://www.w-agora.net/
-# last release 4.2.1 in 2006-07-12
 safe=
+latest=4.2.1
 vuln=CVE-2007-0607
 file=misc_func.php
 variable=$v =

freewvsdb/games.freewvs

Zeige Datei @ c878399

@@ -1,7 +1,7 @@
 [NetRisk]
 url=http://phprisk.org/
 safe=
-# 1.9.7 as of 20080205
+latest=1.9.7
 vuln=CVE-2008-0144
 file=install.php
 variable=$version

freewvsdb/link.freewvs

Zeige Datei @ c878399

@@ -1,6 +1,6 @@
 [cpDynaLinks]
-url=http://www.cplinks.com/cpdynalinks/
-# last release 1.02 on 2004-10-25
+url=https://web.archive.org/web/20160423004721/http://www.cplinks.com/cpdynalinks/
+latest=1.02
 safe=
 vuln=CVE-2007-5408
 file=version.php

freewvsdb/misc.freewvs

Zeige Datei @ c878399

@@ -33,7 +33,6 @@ variable=$version
 extra_match=SquirrelMail version number
 subdir=1
 
-# old mantis versions behave different
 [Mantis-deprecated]
 url=https://mantisbt.org/
 safe=2.22.1
@@ -288,7 +287,7 @@ url=http://phpgedview.sourceforge.net/
 file=session.php
 variable=define('PGV_VERSION'
 safe=
-vuln=2011-0405
+vuln=CVE-2011-0405
 subdir=1
 
 [status.net]

freewvsdb/plugins.freewvs

Zeige Datei @ c878399

@@ -121,7 +121,7 @@ subdir=0
 [Wordpress-NextGEN]
 url=https://wordpress.org/plugins/nextgen-gallery/
 safe=3.2.11
-vuln=2019-14314
+vuln=CVE-2019-14314
 file=nggallery.php
 variable=NGG_PLUGIN_VERSION
 subdir=0
@@ -169,7 +169,7 @@ subdir=0
 [Wordpress-SEObyYoast]
 url=https://wordpress.org/plugins/wordpress-seo/
 safe=11.6.0
-vuln=2019-13478
+vuln=CVE-2019-13478
 file=wp-seo-main.php
 variable=WPSEO_VERSION
 subdir=0


...	...	@@ -111,8 +111,8 @@ subdir=1
111	111
112	112	[w-Agora]
113	113	url=http://www.w-agora.net/
114		-# last release 4.2.1 in 2006-07-12
115	114	safe=
	115	+latest=4.2.1
116	116	vuln=CVE-2007-0607
117	117	file=misc_func.php
118	118	variable=$v =

...	...	@@ -121,7 +121,7 @@ subdir=0
121	121	[Wordpress-NextGEN]
122	122	url=https://wordpress.org/plugins/nextgen-gallery/
123	123	safe=3.2.11
124		-vuln=2019-14314
	124	+vuln=CVE-2019-14314
125	125	file=nggallery.php
126	126	variable=NGG_PLUGIN_VERSION
127	127	subdir=0
...	...	@@ -169,7 +169,7 @@ subdir=0
169	169	[Wordpress-SEObyYoast]
170	170	url=https://wordpress.org/plugins/wordpress-seo/
171	171	safe=11.6.0
172		-vuln=2019-13478
	172	+vuln=CVE-2019-13478
173	173	file=wp-seo-main.php
174	174	variable=WPSEO_VERSION
175	175	subdir=0
176	176

...	...	@@ -53,12 +53,11 @@ subdir=1
53	53	extra_match=[sblog_version_info]
54	54
55	55	[Movable_Type]
56		-url=https://www.movabletype.com/
57		-# movable type has a crazy versioning scheme, that makes it basically
58		-# impossible to really use freewvs properly, latest is 5.2.3
59		-safe=5.13
60		-old_safe=5.2.3,5.2.2,5.2.1
61		-vuln=CVE-2010-3921
	56	+url=https://movabletype.com/
	57	+# only 5.x public
	58	+safe=7.1.4
	59	+old_safe=6.5.2,6.3.10
	60	+vuln=https://movabletype.org/news/2019/11/movable_type_r4603_v714_v652_and_v6310_released.html
62	61	file=mt.php
63	62	variable=VERSION_ID
64	63	subdir=1
...	...	@@ -66,7 +65,7 @@ subdir=1
66	65	[artmedic_weblog]
67	66	url=http://www.artmedic-phpscripts.de/
68	67	safe=
69		-# 1.0 as of 20080325
	68	+latest=1.0
70	69	vuln=CVE-2008-0798
71	70	file=artmedic_index.php
72	71	variable=# artmedic weblog

...	...	@@ -1,7 +1,7 @@
1	1	[NetRisk]
2	2	url=http://phprisk.org/
3	3	safe=
4		-# 1.9.7 as of 20080205
	4	+latest=1.9.7
5	5	vuln=CVE-2008-0144
6	6	file=install.php
7	7	variable=$version

...	...	@@ -1,6 +1,6 @@
1	1	[cpDynaLinks]
2		-url=http://www.cplinks.com/cpdynalinks/
3		-# last release 1.02 on 2004-10-25
	2	+url=https://web.archive.org/web/20160423004721/http://www.cplinks.com/cpdynalinks/
	3	+latest=1.02
4	4	safe=
5	5	vuln=CVE-2007-5408
6	6	file=version.php

...	...	@@ -33,7 +33,6 @@ variable=$version
33	33	extra_match=SquirrelMail version number
34	34	subdir=1
35	35
36		-# old mantis versions behave different
37	36	[Mantis-deprecated]
38	37	url=https://mantisbt.org/
39	38	safe=2.22.1
...	...	@@ -288,7 +287,7 @@ url=http://phpgedview.sourceforge.net/
288	287	file=session.php
289	288	variable=define('PGV_VERSION'
290	289	safe=
291		-vuln=2011-0405
	290	+vuln=CVE-2011-0405
292	291	subdir=1
293	292
294	293	[status.net]

freewvs.git