update movable type, avoid unneeded comments, fix CVEs, add latest, fix urls
Hanno Böck

Hanno Böck commited on 2019-12-11 08:33:21
Zeige 6 geänderte Dateien mit 13 Einfügungen und 15 Löschungen.

... ...
@@ -53,12 +53,11 @@ subdir=1
53 53
 extra_match=[sblog_version_info]
54 54
 
55 55
 [Movable_Type]
56
-url=https://www.movabletype.com/
57
-# movable type has a crazy versioning scheme, that makes it basically
58
-# impossible to really use freewvs properly, latest is 5.2.3
59
-safe=5.13
60
-old_safe=5.2.3,5.2.2,5.2.1
61
-vuln=CVE-2010-3921
56
+url=https://movabletype.com/
57
+# only 5.x public
58
+safe=7.1.4
59
+old_safe=6.5.2,6.3.10
60
+vuln=https://movabletype.org/news/2019/11/movable_type_r4603_v714_v652_and_v6310_released.html
62 61
 file=mt.php
63 62
 variable=VERSION_ID
64 63
 subdir=1
... ...
@@ -66,7 +65,7 @@ subdir=1
66 65
 [artmedic_weblog]
67 66
 url=http://www.artmedic-phpscripts.de/
68 67
 safe=
69
-# 1.0 as of 20080325
68
+latest=1.0
70 69
 vuln=CVE-2008-0798
71 70
 file=artmedic_index.php
72 71
 variable=# artmedic weblog
... ...
@@ -111,8 +111,8 @@ subdir=1
111 111
 
112 112
 [w-Agora]
113 113
 url=http://www.w-agora.net/
114
-# last release 4.2.1 in 2006-07-12
115 114
 safe=
115
+latest=4.2.1
116 116
 vuln=CVE-2007-0607
117 117
 file=misc_func.php
118 118
 variable=$v =
... ...
@@ -1,7 +1,7 @@
1 1
 [NetRisk]
2 2
 url=http://phprisk.org/
3 3
 safe=
4
-# 1.9.7 as of 20080205
4
+latest=1.9.7
5 5
 vuln=CVE-2008-0144
6 6
 file=install.php
7 7
 variable=$version
... ...
@@ -1,6 +1,6 @@
1 1
 [cpDynaLinks]
2
-url=http://www.cplinks.com/cpdynalinks/
3
-# last release 1.02 on 2004-10-25
2
+url=https://web.archive.org/web/20160423004721/http://www.cplinks.com/cpdynalinks/
3
+latest=1.02
4 4
 safe=
5 5
 vuln=CVE-2007-5408
6 6
 file=version.php
... ...
@@ -33,7 +33,6 @@ variable=$version
33 33
 extra_match=SquirrelMail version number
34 34
 subdir=1
35 35
 
36
-# old mantis versions behave different
37 36
 [Mantis-deprecated]
38 37
 url=https://mantisbt.org/
39 38
 safe=2.22.1
... ...
@@ -288,7 +287,7 @@ url=http://phpgedview.sourceforge.net/
288 287
 file=session.php
289 288
 variable=define('PGV_VERSION'
290 289
 safe=
291
-vuln=2011-0405
290
+vuln=CVE-2011-0405
292 291
 subdir=1
293 292
 
294 293
 [status.net]
... ...
@@ -121,7 +121,7 @@ subdir=0
121 121
 [Wordpress-NextGEN]
122 122
 url=https://wordpress.org/plugins/nextgen-gallery/
123 123
 safe=3.2.11
124
-vuln=2019-14314
124
+vuln=CVE-2019-14314
125 125
 file=nggallery.php
126 126
 variable=NGG_PLUGIN_VERSION
127 127
 subdir=0
... ...
@@ -169,7 +169,7 @@ subdir=0
169 169
 [Wordpress-SEObyYoast]
170 170
 url=https://wordpress.org/plugins/wordpress-seo/
171 171
 safe=11.6.0
172
-vuln=2019-13478
172
+vuln=CVE-2019-13478
173 173
 file=wp-seo-main.php
174 174
 variable=WPSEO_VERSION
175 175
 subdir=0
176 176