[Git][security-tracker-team/security-tracker][master] Process some NFUs

Mon Oct 7 21:17:56 BST 2019


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9af8ba29 by Salvatore Bonaccorso at 2019-10-07T20:17:22Z
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -922,19 +922,19 @@ CVE-2019-16904 (TeamPass 2.1.27.36 allows Stored XSS by setting a crafted passwo
 CVE-2019-16903 (Platinum UPnP SDK 1.2.0 allows Directory Traversal in Core/PltHttpServ ...)
 	NOT-FOR-US: Platinum UPnP SDK
 CVE-2015-9456 (The orbisius-child-theme-creator plugin before 1.2.8 for WordPress has ...)
-	TODO: check
+	NOT-FOR-US: orbisius-child-theme-creator plugin for WordPress
 CVE-2015-9455 (The buddypress-activity-plus plugin before 1.6.2 for WordPress has CSR ...)
-	TODO: check
+	NOT-FOR-US: buddypress-activity-plus plugin for WordPress
 CVE-2015-9454 (The smooth-slider plugin before 2.7 for WordPress has SQL Injection vi ...)
-	TODO: check
+	NOT-FOR-US: smooth-slider plugin for WordPress
 CVE-2015-9453 (The broken-link-manager plugin before 0.6.0 for WordPress has XSS via  ...)
-	TODO: check
+	NOT-FOR-US: broken-link-manager plugin for WordPress
 CVE-2015-9452 (The nex-forms-express-wp-form-builder plugin before 4.6.1 for WordPres ...)
-	TODO: check
+	NOT-FOR-US: nex-forms-express-wp-form-builder plugin for WordPress
 CVE-2015-9451 (The plugmatter-optin-feature-box-lite plugin before 2.0.14 for WordPre ...)
-	TODO: check
+	NOT-FOR-US: plugmatter-optin-feature-box-lite plugin for WordPress
 CVE-2015-9450 (The plugmatter-optin-feature-box-lite plugin before 2.0.14 for WordPre ...)
-	TODO: check
+	NOT-FOR-US: plugmatter-optin-feature-box-lite plugin for WordPress
 CVE-2019-16902 (In the ARforms plugin 3.7.1 for WordPress, arf_delete_file in arformco ...)
 	NOT-FOR-US: ARforms plugin for WordPress
 CVE-2019-16901 (Advantech WebAccess/HMI Designer 2.1.9.31 has Exception Handler Chain  ...)
@@ -52331,7 +52331,7 @@ CVE-2018-18381 (Z-BlogPHP 1.5.2.1935 (Zero) has a stored XSS Vulnerability in zb
 CVE-2018-18380 (A Session Fixation issue was discovered in Bigtree before 4.2.24. admi ...)
 	NOT-FOR-US: Bigtree CMS
 CVE-2018-18379 (The elementor-edit-template class in wp-admin/customize.php in the Ele ...)
-	TODO: check
+	NOT-FOR-US: Elementor Pro plugin for WordPress
 CVE-2018-18378
 	RESERVED
 CVE-2018-18377 (goform/setReset on Orange AirBox Y858_FL_01.16_04 devices allows attac ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/9af8ba29cbff3ec37b9b6b88dc9887965e4ecbb3

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/9af8ba29cbff3ec37b9b6b88dc9887965e4ecbb3
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191007/ac495cbe/attachment.html>
