[Git][security-tracker-team/security-tracker][master] Process several NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Dec 26 20:25:02 GMT 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
7c8d2b9c by Salvatore Bonaccorso at 2022-12-26T21:24:25+01:00
Process several NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -5896,11 +5896,11 @@ CVE-2022-4269 (A flaw was found in the Linux kernel Traffic Control (TC) subsyst
- linux <unfixed>
NOTE: https://lore.kernel.org/netdev/33dc43f587ec1388ba456b4915c75f02a8aae226.1663945716.git.dcaratti@redhat.com/
CVE-2022-4268 (The Plugin Logic WordPress plugin through 1.0.7 does not sanitise and ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2022-4267 (The Bulk Delete Users by Email WordPress plugin through 1.2 does not s ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2022-4266 (The Bulk Delete Users by Email WordPress plugin through 1.2 does not h ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2022-4265
RESERVED
CVE-2022-4264 (Incorrect Privilege Assignment in M-Files Web (Classic) in M-Files bef ...)
@@ -6161,9 +6161,9 @@ CVE-2022-4245
CVE-2022-4244
RESERVED
CVE-2022-4243 (The ImageInject WordPress plugin through TODO does not sanitise and es ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2022-4242 (The WP Google Review Slider WordPress plugin before 11.6 does not sani ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2022-4241
RESERVED
CVE-2022-4240
@@ -6223,9 +6223,9 @@ CVE-2022-4229 (A vulnerability classified as critical was found in SourceCodeste
CVE-2022-4228 (A vulnerability classified as problematic has been found in SourceCode ...)
NOT-FOR-US: SourceCodester Book Store Management System
CVE-2022-4227 (The Booster for WooCommerce WordPress plugin before 5.6.3, Booster Plu ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2022-4226 (The Simple Basic Contact Form WordPress plugin before 20221201 does no ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2022-4225
RESERVED
CVE-2021-4242 (A vulnerability was found in Sapido BR270n, BRC76n, GR297 and RB1732 a ...)
@@ -6461,7 +6461,7 @@ CVE-2022-4199
CVE-2022-4198
RESERVED
CVE-2022-4197 (The Sliderby10Web WordPress plugin before 1.2.53 does not sanitise and ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2022-4196
RESERVED
CVE-2022-4195 (Insufficient policy enforcement in Safe Browsing in Google Chrome prio ...)
@@ -6860,39 +6860,39 @@ CVE-2022-4168
CVE-2022-4167
RESERVED
CVE-2022-4166 (The Contest Gallery WordPress plugin before 19.1.5.1, Contest Gallery ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2022-4165 (The Contest Gallery WordPress plugin before 19.1.5.1, Contest Gallery ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2022-4164 (The Contest Gallery WordPress plugin before 19.1.5.1, Contest Gallery ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2022-4163 (The Contest Gallery WordPress plugin before 19.1.5.1, Contest Gallery ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2022-4162 (The Contest Gallery WordPress plugin before 19.1.5.1, Contest Gallery ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2022-4161 (The Contest Gallery WordPress plugin before 19.1.5.1, Contest Gallery ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2022-4160 (The Contest Gallery WordPress plugin before 19.1.5.1, Contest Gallery ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2022-4159 (The Contest Gallery WordPress plugin before 19.1.5.1, Contest Gallery ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2022-4158 (The Contest Gallery WordPress plugin before 19.1.5.1, Contest Gallery ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2022-4157 (The Contest Gallery WordPress plugin before 19.1.5.1, Contest Gallery ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2022-4156 (The Contest Gallery WordPress plugin before 19.1.5.1, Contest Gallery ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2022-4155 (The Contest Gallery WordPress plugin before 19.1.5.1, Contest Gallery ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2022-4154 (The Contest Gallery Pro WordPress plugin before 19.1.5 does not escape ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2022-4153 (The Contest Gallery WordPress plugin before 19.1.5.1, Contest Gallery ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2022-4152 (The Contest Gallery WordPress plugin before 19.1.5, Contest Gallery Pr ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2022-4151 (The Contest Gallery WordPress plugin before 19.1.5.1, Contest Gallery ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2022-4150 (The Contest Gallery WordPress plugin before 19.1.5.1, Contest Gallery ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2022-4149
RESERVED
CVE-2022-4148
@@ -7730,13 +7730,13 @@ CVE-2022-4121 [Null pointer dereference in mailimap_mailbox_data_status_free in
[bullseye] - libetpan <no-dsa> (Minor issue)
NOTE: https://github.com/dinhvh/libetpan/issues/420
CVE-2022-4120 (The Stop Spammers Security | Block Spam Users, Comments, Forms WordPre ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2022-4119
RESERVED
CVE-2022-4118
RESERVED
CVE-2022-4117 (The IWS WordPress plugin through 1.0 does not properly escape a parame ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2022-4116 (A vulnerability was found in quarkus. This security flaw happens in De ...)
NOT-FOR-US: Quarkus
CVE-2022-4115
@@ -7761,7 +7761,7 @@ CVE-2022-4112 (The Quizlord WordPress plugin through 2.0 does not sanitise and e
CVE-2022-4111 (Unrestricted file size limit can lead to DoS in tooljet/tooljet <1. ...)
NOT-FOR-US: ToolJet
CVE-2022-4110 (The Eventify™ WordPress plugin through 2.1 does not sanitise and ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2022-4109
RESERVED
CVE-2022-4108 (The Wholesale Market for WooCommerce WordPress plugin before 1.0.8 doe ...)
@@ -8557,7 +8557,7 @@ CVE-2022-4049
CVE-2022-4048
RESERVED
CVE-2022-4047 (The Return Refund and Exchange For WooCommerce WordPress plugin before ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2022-4046
RESERVED
CVE-2022-4045 (A denial-of-service vulnerability in the Mattermost allows an authenti ...)
@@ -8567,7 +8567,7 @@ CVE-2022-4044 (A denial-of-service vulnerability in Mattermost allows an authent
CVE-2022-4043
RESERVED
CVE-2022-4042 (The Paytium: Mollie payment forms & donations WordPress plugin thr ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2022-4041
RESERVED
CVE-2022-4040
@@ -12149,7 +12149,7 @@ CVE-2022-3841
RESERVED
NOT-FOR-US: Red Hat Advanced Cluster Management for Kubernetes (RHACM)
CVE-2022-3840 (The Login for Google Apps WordPress plugin before 3.4.5 does not sanit ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2022-3839 (The Analytics for WP WordPress plugin through 1.5.1 does not sanitise ...)
NOT-FOR-US: WordPress plugin
CVE-2022-3838 (The WPUpper Share Buttons WordPress plugin through 3.42 does not sanit ...)
@@ -12159,7 +12159,7 @@ CVE-2022-3837 (The Uji Countdown WordPress plugin through 2.2 does not sanitise
CVE-2022-3836
RESERVED
CVE-2022-3835 (The Kwayy HTML Sitemap WordPress plugin before 4.0 does not sanitise a ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2022-3834 (The Google Forms WordPress plugin through 0.95 does not sanitise and e ...)
NOT-FOR-US: WordPress plugin
CVE-2022-3833 (The Fancier Author Box by ThematoSoup WordPress plugin through 1.4 doe ...)
@@ -137990,7 +137990,7 @@ CVE-2021-24944 (The Custom Dashboard & Login Page WordPress plugin before 7.
CVE-2021-24943 (The Registrations for the Events Calendar WordPress plugin before 2.7. ...)
NOT-FOR-US: WordPress plugin
CVE-2021-24942 (The Menu Item Visibility Control WordPress plugin through 0.5 doesn't ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24941 (The Popups, Welcome Bar, Optins and Lead Generation Plugin WordPress p ...)
NOT-FOR-US: WordPress plugin
CVE-2021-24940 (The Persian Woocommerce WordPress plugin through 5.8.0 does not escape ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7c8d2b9c87f3c9dda59e42eaa9b82ca7ab78a9cf
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7c8d2b9c87f3c9dda59e42eaa9b82ca7ab78a9cf
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221226/81f7e60d/attachment.htm>
More information about the debian-security-tracker-commits
mailing list