[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Sep 6 21:58:33 BST 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
a8fb964f by Salvatore Bonaccorso at 2021-09-06T22:58:01+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -38307,15 +38307,15 @@ CVE-2021-24605
CVE-2021-24604
RESERVED
CVE-2021-24603 (The Site Reviews WordPress plugin before 5.13.1 does not sanitise some ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24602 (The HM Multiple Roles WordPress plugin before 1.3 does not have any ac ...)
NOT-FOR-US: WordPress plugin
CVE-2021-24601 (The WPFront Notification Bar WordPress plugin before 2.1.0.08087 does ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24600
RESERVED
CVE-2021-24599 (The Email Encoder – Protect Email Addresses WordPress plugin bef ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24598
RESERVED
CVE-2021-24597
@@ -38331,13 +38331,13 @@ CVE-2021-24593 (The Business Hours Indicator WordPress plugin before 2.3.5 does
CVE-2021-24592 (The Sitewide Notice WP WordPress plugin before 2.3 does not sanitise s ...)
NOT-FOR-US: WordPress plugin
CVE-2021-24591 (The Highlight WordPress plugin before 0.9.3 does not sanitise its Cust ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24590 (The Cookie Notice & Consent Banner for GDPR & CCPA Compliance ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24589
RESERVED
CVE-2021-24588 (The SMS Alert Order Notifications WordPress plugin before 3.4.7 is aff ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24587
RESERVED
CVE-2021-24586
@@ -38377,7 +38377,7 @@ CVE-2021-24570
CVE-2021-24569
RESERVED
CVE-2021-24568 (The AddToAny Share Buttons WordPress plugin before 1.7.46 does not san ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24567
RESERVED
CVE-2021-24566
@@ -38479,7 +38479,7 @@ CVE-2021-24519 (The VikRentCar Car Rental Management System WordPress plugin bef
CVE-2021-24518 (The WPFront Notification Bar WordPress plugin before 2.0.0.07176 does ...)
NOT-FOR-US: WordPress plugin
CVE-2021-24517 (The Stop Spammers Security | Block Spam Users, Comments, Forms WordPre ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24516
RESERVED
CVE-2021-24515
@@ -38487,7 +38487,7 @@ CVE-2021-24515
CVE-2021-24514
RESERVED
CVE-2021-24513 (The Form Builder | Create Responsive Contact Forms WordPress plugin be ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24512 (The Video Posts Webcam Recorder WordPress plugin before 3.2.4 has an a ...)
NOT-FOR-US: WordPress plugin
CVE-2021-24511
@@ -38723,17 +38723,17 @@ CVE-2021-24397
CVE-2021-24396
RESERVED
CVE-2021-24395 (The editid GET parameter of the Embed Youtube Video WordPress plugin t ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24394 (An id GET parameter of the Easy Testimonial Manager WordPress plugin t ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24393 (A c GET parameter of the Comment Highlighter WordPress plugin through ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24392 (An id GET parameter of the WordPress Membership SwiftCloud.io WordPres ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24391 (An editid GET parameter of the Cashtomer WordPress plugin through 1.0. ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24390 (A proid GET parameter of the WordPress支付宝Alipay|& ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24389 (The WP Foodbakery WordPress plugin before 2.2, used in the FoodBakery ...)
NOT-FOR-US: Wordpress plugin
CVE-2021-24388 (In the VikRentCar Car Rental Management System WordPress plugin before ...)
@@ -38907,7 +38907,7 @@ CVE-2021-24305 (The Target First WordPress Plugin v2.0, also previously known as
CVE-2021-24304 (The Newsmag WordPress theme before 5.0 does not sanitise the td_block_ ...)
NOT-FOR-US: Wordpress theme
CVE-2021-24303 (The JiangQie Official Website Mini Program WordPress plugin before 1.1 ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24302 (The Hana Flv Player WordPress plugin through 3.1.3 is vulnerable to an ...)
NOT-FOR-US: WordPress plugin
CVE-2021-24301 (The Hotjar Connecticator WordPress plugin through 1.1.1 is vulnerable ...)
@@ -39542,7 +39542,7 @@ CVE-2021-24008
CVE-2021-24007 (Multiple improper neutralization of special elements of SQL commands v ...)
NOT-FOR-US: Fortiguard
CVE-2021-24006 (An improper access control vulnerability in FortiManager versions 6.4. ...)
- TODO: check
+ NOT-FOR-US: FortiGuard
CVE-2021-24005 (Usage of hard-coded cryptographic keys to encrypt configuration files ...)
NOT-FOR-US: FortiGuard
CVE-2021-24004
@@ -87893,7 +87893,7 @@ CVE-2020-15941
CVE-2020-15940
RESERVED
CVE-2020-15939 (An improper access control vulnerability (CWE-284) in FortiSandbox ver ...)
- TODO: check
+ NOT-FOR-US: FortiGuard
CVE-2020-15938 (When traffic other than HTTP/S (eg: SSH traffic, etc...) traverses the ...)
NOT-FOR-US: FortiGate FortiGuard
CVE-2020-15937 (An improper neutralization of input vulnerability in FortiGate version ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a8fb964f6820b18d4a46823cd540e2ceb5440ff7
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a8fb964f6820b18d4a46823cd540e2ceb5440ff7
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210906/86591959/attachment.htm>
More information about the debian-security-tracker-commits
mailing list