[Git][security-tracker-team/security-tracker][master] Process NFUs

Sat Apr 8 10:35:45 BST 2023


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b7a3e42b by Salvatore Bonaccorso at 2023-04-08T11:35:13+02:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1823,13 +1823,13 @@ CVE-2023-1951
 CVE-2023-1950
 	RESERVED
 CVE-2023-1949 (A vulnerability, which was classified as critical, was found in PHPGur ...)
-	TODO: check
+	NOT-FOR-US: PHPGurukul BP Monitoring Management System
 CVE-2023-1948 (A vulnerability, which was classified as problematic, has been found i ...)
-	TODO: check
+	NOT-FOR-US: PHPGurukul BP Monitoring Management System
 CVE-2023-1947 (A vulnerability was found in taoCMS 3.0.2. It has been classified as c ...)
-	TODO: check
+	NOT-FOR-US: taoCMS
 CVE-2023-1946 (A vulnerability was found in SourceCodester Survey Application System  ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Survey Application System
 CVE-2023-1945
 	RESERVED
 CVE-2023-1944
@@ -2362,7 +2362,7 @@ CVE-2021-4335
 CVE-2021-4334
 	RESERVED
 CVE-2014-125094 (A vulnerability classified as problematic was found in phpMiniAdmin up ...)
-	TODO: check
+	NOT-FOR-US: phpMiniAdmin
 CVE-2023-29383
 	RESERVED
 CVE-2023-29382
@@ -3350,7 +3350,7 @@ CVE-2023-1728 (Unrestricted Upload of File with Dangerous Type vulnerability in
 CVE-2023-1727
 	RESERVED
 CVE-2023-1726 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
-	TODO: check
+	NOT-FOR-US: Proliz OBS
 CVE-2023-1725 (Server-Side Request Forgery (SSRF) vulnerability in Infoline Project M ...)
 	NOT-FOR-US: Infoline Project Management System
 CVE-2023-1724
@@ -9346,7 +9346,7 @@ CVE-2023-27182
 CVE-2023-27181
 	RESERVED
 CVE-2023-27180 (GDidees CMS v3.9.1 was discovered to contain a source code disclosure  ...)
-	TODO: check
+	NOT-FOR-US: GDidees CMS
 CVE-2023-27179
 	RESERVED
 CVE-2023-27178
@@ -9661,7 +9661,7 @@ CVE-2023-27035
 CVE-2023-27034 (PrestaShop jmsblog 2.5.5 was discovered to contain a SQL injection vul ...)
 	NOT-FOR-US: PrestaShop
 CVE-2023-27033 (Prestashop cdesigner v3.1.3 to v3.1.8 was discovered to contain a code ...)
-	TODO: check
+	NOT-FOR-US: Prestashop cdesigner
 CVE-2023-27032
 	RESERVED
 CVE-2023-27031
@@ -13223,17 +13223,17 @@ CVE-2023-25718 (In ConnectWise Control through 22.9.10032 (formerly known as Scr
 CVE-2023-25717 (Ruckus Wireless Admin through 10.4 allows Remote Code Execution via an ...)
 	NOT-FOR-US: Ruckus Wireless Admin
 CVE-2023-25716 (Auth (admin+) Stored Cross-Site Scripting (XSS) vulnerability in gqevu ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-25715
 	RESERVED
 CVE-2023-25714
 	RESERVED
 CVE-2023-25713 (Unauth. Stored Cross-Site Scripting (XSS) vulnerability in Fullworks Q ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-25712 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in WP-B ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-25711 (Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in WPGlobus ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-25710
 	RESERVED
 CVE-2023-25709 (Cross-Site Request Forgery (CSRF) vulnerability in Plainware Locatorai ...)
@@ -13245,13 +13245,13 @@ CVE-2023-25707
 CVE-2023-25706
 	RESERVED
 CVE-2023-25705 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Go P ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-25704 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Mehj ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2023-25703
 	RESERVED
 CVE-2023-25702 (Auth. (admin+) Stored Cross-site Scripting (XSS) vulnerability in Full ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-25701
 	RESERVED
 CVE-2023-25700
@@ -14162,7 +14162,7 @@ CVE-2023-25466
 CVE-2023-25465
 	RESERVED
 CVE-2023-25464 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Stre ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-25463
 	RESERVED
 CVE-2023-25462
@@ -14206,7 +14206,7 @@ CVE-2023-25444
 CVE-2023-25443
 	RESERVED
 CVE-2023-25442 (Auth. (admin+) Stored Cross-site Scripting (XSS) vulnerability in Marc ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-25441
 	RESERVED
 CVE-2023-25440
@@ -15112,11 +15112,11 @@ CVE-2023-25063
 CVE-2023-25062 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in PINP ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2023-25061 (Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability i ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-25060
 	RESERVED
 CVE-2023-25059 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in aval ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-25058
 	RESERVED
 CVE-2023-25057
@@ -15142,7 +15142,7 @@ CVE-2023-25048
 CVE-2023-25047
 	RESERVED
 CVE-2023-25046 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Podl ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-25045
 	RESERVED
 CVE-2023-25044
@@ -15152,7 +15152,7 @@ CVE-2023-25043
 CVE-2023-25042
 	RESERVED
 CVE-2023-25041 (Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Cththeme ...)
-	TODO: check
+	NOT-FOR-US: WordPress theme
 CVE-2023-25040 (Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability i ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2023-25039
@@ -15172,7 +15172,7 @@ CVE-2023-25033
 CVE-2023-25032
 	RESERVED
 CVE-2023-25031 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Kibo ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-25030
 	RESERVED
 CVE-2023-25029
@@ -15180,21 +15180,21 @@ CVE-2023-25029
 CVE-2023-25028
 	RESERVED
 CVE-2023-25027 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Kibo ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-25026
 	RESERVED
 CVE-2023-25025
 	RESERVED
 CVE-2023-25024 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Iceg ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-25023 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Sale ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-25022 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Kibo ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-25021
 	RESERVED
 CVE-2023-25020 (Unauth. Stored Cross-Site Scripting (XSS) vulnerability in Kiboko Labs ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-25019
 	RESERVED
 CVE-2023-0657
@@ -15208,7 +15208,7 @@ CVE-2023-0654
 CVE-2023-0653
 	RESERVED
 CVE-2023-0652 (Due to a hardlink created in the ProgramData folder during the repair  ...)
-	TODO: check
+	NOT-FOR-US: installer (MSI) of WARP Client for Windows
 CVE-2023-0651 (A vulnerability was found in FastCMS 0.1.0. It has been classified as  ...)
 	NOT-FOR-US: FastCMS
 CVE-2023-0650 (A vulnerability was found in YAFNET up to 3.1.11 and classified as pro ...)
@@ -15872,13 +15872,13 @@ CVE-2023-24802
 CVE-2023-24801
 	RESERVED
 CVE-2023-24800 (D-Link DIR878 DIR_878_FW120B05 was discovered to contain a stack overf ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2023-24799 (D-Link DIR878 DIR_878_FW120B05 was discovered to contain a stack overf ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2023-24798 (D-Link DIR878 DIR_878_FW120B05 was discovered to contain a stack overf ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2023-24797 (D-Link DIR882 DIR882A1_FW110B02 was discovered to contain a stack over ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2023-24796
 	RESERVED
 CVE-2023-24795 (Command execution vulnerability was discovered in JHR-N916R router fir ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b7a3e42b9a57730b670319091b55b2eae9106c3f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b7a3e42b9a57730b670319091b55b2eae9106c3f
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230408/5abd208d/attachment.htm>
