[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso carnil at debian.org
Mon Apr 12 21:18:19 BST 2021 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
6027233b by Salvatore Bonaccorso at 2021-04-12T22:17:55+02:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2585,7 +2585,7 @@ CVE-2021-29359
 CVE-2021-29358
 	RESERVED
 CVE-2021-29357 (The ECT Provider component in OutSystems Platform Server 10 before 10. ...)
-	TODO: check
+	NOT-FOR-US: OutSystems Platform Server
 CVE-2021-29356
 	RESERVED
 CVE-2021-29355
@@ -2695,7 +2695,7 @@ CVE-2021-29304
 CVE-2021-29303
 	RESERVED
 CVE-2021-29302 (TP-Link TL-WR802N(US), Archer_C50v5_US v4_200 <= 2020.06 contains a ...)
-	TODO: check
+	NOT-FOR-US: TP-Link
 CVE-2021-29301
 	RESERVED
 CVE-2021-29300
@@ -6859,7 +6859,7 @@ CVE-2021-27488
 CVE-2021-27487
 	RESERVED
 CVE-2021-27486 (The Fatek Automation WinProladder Versions 3.3 and prior are vulnerabl ...)
-	TODO: check
+	NOT-FOR-US: Fatek Automation WinProladder
 CVE-2021-27485
 	RESERVED
 CVE-2021-27484
@@ -14478,43 +14478,43 @@ CVE-2021-24233
 CVE-2021-24232
 	RESERVED
 CVE-2021-24231 (The Jetpack Scan team identified a Cross-Site Request Forgery vulnerab ...)
-	TODO: check
+	NOT-FOR-US: Jetpack
 CVE-2021-24230 (The Jetpack Scan team identified a Cross-Site Request Forgery vulnerab ...)
-	TODO: check
+	NOT-FOR-US: Patreon WordPress plugin
 CVE-2021-24229 (The Jetpack Scan team identified a Reflected Cross-Site Scripting via  ...)
-	TODO: check
+	NOT-FOR-US: Patreon WordPress plugin
 CVE-2021-24228 (The Jetpack Scan team identified a Reflected Cross-Site Scripting in t ...)
-	TODO: check
+	NOT-FOR-US: Patreon WordPress plugin
 CVE-2021-24227 (The Jetpack Scan team identified a Local File Disclosure vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Patreon WordPress plugin
 CVE-2021-24226 (In the AccessAlly WordPress plugin before 3.5.7, the file "resource/fr ...)
-	TODO: check
+	NOT-FOR-US: AccessAlly WordPress plugin
 CVE-2021-24225 (The Advanced Booking Calendar WordPress plugin before 1.6.7 did not sa ...)
-	TODO: check
+	NOT-FOR-US: Advanced Booking Calendar WordPress plugin
 CVE-2021-24224 (The EFBP_verify_upload_file AJAX action of the Easy Form Builder WordP ...)
-	TODO: check
+	NOT-FOR-US: Easy Form Builder WordPress plugin
 CVE-2021-24223 (The N5 Upload Form WordPress plugin through 1.0 suffers from an arbitr ...)
-	TODO: check
+	NOT-FOR-US: N5 Upload Form WordPress plugin
 CVE-2021-24222 (The WP-Curriculo Vitae Free WordPress plugin through 6.3 suffers from  ...)
-	TODO: check
+	NOT-FOR-US: WP-Curriculo Vitae Free WordPress plugin
 CVE-2021-24221 (The Quiz And Survey Master – Best Quiz, Exam and Survey Plugin f ...)
-	TODO: check
+	NOT-FOR-US: Wordpress plugin
 CVE-2021-24220 (Thrive “Legacy” Rise by Thrive Themes WordPress theme befo ...)
-	TODO: check
+	NOT-FOR-US: WordPress theme
 CVE-2021-24219 (The Thrive Optimize WordPress plugin before 1.4.13.3, Thrive Comments  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-24218 (The wp_ajax_save_fbe_settings and wp_ajax_delete_fbe_settings AJAX act ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-24217 (The run_action function of the Facebook for WordPress plugin before 3. ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-24216
 	RESERVED
 CVE-2021-24215 (An Improper Access Control vulnerability was discovered in the Control ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-24214
 	RESERVED
 CVE-2021-24213 (The GiveWP – Donation Plugin and Fundraising Platform WordPress  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-24212 (The WooCommerce Help Scout WordPress plugin before 2.9.1 (https://wooc ...)
 	NOT-FOR-US: Wordpress plugin
 CVE-2021-24211 (The WordPress Related Posts plugin through 3.6.4 contains an authentic ...)
@@ -14540,13 +14540,13 @@ CVE-2021-24202 (In the Elementor Website Builder WordPress plugin before 3.1.4,
 CVE-2021-24201 (In the Elementor Website Builder WordPress plugin before 3.1.4, the co ...)
 	NOT-FOR-US: Wordpress plugin
 CVE-2021-24200 (The wpDataTables – Tables & Table Charts premium WordPress p ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-24199 (The wpDataTables – Tables & Table Charts premium WordPress p ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-24198 (The wpDataTables – Tables & Table Charts premium WordPress p ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-24197 (The wpDataTables – Tables & Table Charts premium WordPress p ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-24196 (The Social Slider Widget WordPress plugin before 1.8.5 allowed Authent ...)
 	NOT-FOR-US: Wordpress plugin
 CVE-2021-24195



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6027233b04a3da633bca6549b9e5ed44a68efa8e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6027233b04a3da633bca6549b9e5ed44a68efa8e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210412/80eec471/attachment.htm>

More information about the debian-security-tracker-commits mailing list