[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Apr 23 21:10:57 BST 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
8408670a by security tracker role at 2023-04-23T20:10:21+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,11 @@
+CVE-2023-31042
+ RESERVED
+CVE-2023-31041
+ RESERVED
+CVE-2023-31040
+ RESERVED
+CVE-2023-2246 (A vulnerability has been found in SourceCodester Online Pizza Ordering ...)
+ TODO: check
CVE-2023-31039
RESERVED
CVE-2023-31038
@@ -10264,8 +10272,8 @@ CVE-2023-27616
RESERVED
CVE-2023-27615
RESERVED
-CVE-2023-27614
- RESERVED
+CVE-2023-27614 (Auth. (admin+) Cross-Site Scripting (XSS) vulnerability in Ian Haycox ...)
+ TODO: check
CVE-2023-27613
RESERVED
CVE-2023-27612
@@ -10870,8 +10878,8 @@ CVE-2023-27427
RESERVED
CVE-2023-27426
RESERVED
-CVE-2023-27425
- RESERVED
+CVE-2023-27425 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Jame ...)
+ TODO: check
CVE-2023-27424
RESERVED
CVE-2023-27423
@@ -16487,8 +16495,8 @@ CVE-2023-25453
RESERVED
CVE-2023-25452
RESERVED
-CVE-2023-25451
- RESERVED
+CVE-2023-25451 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in WPCh ...)
+ TODO: check
CVE-2023-25450
RESERVED
CVE-2023-25449
@@ -19473,8 +19481,8 @@ CVE-2023-24406
RESERVED
CVE-2023-24405
RESERVED
-CVE-2023-24404
- RESERVED
+CVE-2023-24404 (Reflected Cross-Site Scripting (XSS) vulnerability in VryaSage Marketi ...)
+ TODO: check
CVE-2023-24403 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in WP F ...)
NOT-FOR-US: WordPress plugin
CVE-2023-24402 (Auth. (admin+) Cross-Site Scripting (XSS) vulnerability in Veribo, Rol ...)
@@ -19509,8 +19517,8 @@ CVE-2023-24388 (Cross-Site Request Forgery (CSRF) vulnerability in WpDevArt Book
NOT-FOR-US: WpDevArt Booking calendar, Appointment Booking System plugin
CVE-2023-24387 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in WPde ...)
NOT-FOR-US: WordPress plugin
-CVE-2023-24386
- RESERVED
+CVE-2023-24386 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Kari ...)
+ TODO: check
CVE-2023-24385
RESERVED
CVE-2023-24384 (Cross-Site Request Forgery (CSRF) vulnerability in WpDevArt Organizati ...)
@@ -20760,8 +20768,8 @@ CVE-2023-23881
RESERVED
CVE-2023-23880
RESERVED
-CVE-2023-23879
- RESERVED
+CVE-2023-23879 (Cross-Site Request Forgery (CSRF) vulnerability in Nicolas Zeh PHP Exe ...)
+ TODO: check
CVE-2023-23878 (Auth. (editor+) Stored Cross-Site Scripting (XSS) vulnerability in fli ...)
NOT-FOR-US: WordPress plugin
CVE-2023-23877
@@ -20912,8 +20920,8 @@ CVE-2023-23834
RESERVED
CVE-2023-23833
RESERVED
-CVE-2023-23832
- RESERVED
+CVE-2023-23832 (Auth. (contributor+) Cross-Site Scripting (XSS) vulnerability in TC Ul ...)
+ TODO: check
CVE-2023-23831
RESERVED
CVE-2023-23830
@@ -20922,8 +20930,8 @@ CVE-2023-23829
RESERVED
CVE-2023-23828
RESERVED
-CVE-2023-23827
- RESERVED
+CVE-2023-23827 (Auth. (contributor+) Cross-Site Scripting (XSS) vulnerability in Googl ...)
+ TODO: check
CVE-2023-23826
RESERVED
CVE-2023-23825
@@ -20942,10 +20950,10 @@ CVE-2023-23819
RESERVED
CVE-2023-23818
RESERVED
-CVE-2023-23817
- RESERVED
-CVE-2023-23816
- RESERVED
+CVE-2023-23817 (Auth. (contrinbutor+) Cross-Site Scripting (XSS) vulnerability in WebA ...)
+ TODO: check
+CVE-2023-23816 (Auth. (admin+) Cross-Site Scripting (XSS) vulnerability in Twardes Sit ...)
+ TODO: check
CVE-2023-23815 (Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability i ...)
NOT-FOR-US: WordPress plugin
CVE-2023-23814
@@ -20964,8 +20972,8 @@ CVE-2023-23808
RESERVED
CVE-2023-23807
RESERVED
-CVE-2023-23806
- RESERVED
+CVE-2023-23806 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Davi ...)
+ TODO: check
CVE-2023-23805
RESERVED
CVE-2023-23804
@@ -21296,8 +21304,8 @@ CVE-2023-23719
RESERVED
CVE-2023-23718 (Auth. (admin+) Cross-Site Scripting (XSS) vulnerability in Esstat17 Pa ...)
NOT-FOR-US: Esstat17
-CVE-2023-23717
- RESERVED
+CVE-2023-23717 (Auth. (contributor+) Cross-Site Scripting (XSS) vulnerability in Georg ...)
+ TODO: check
CVE-2023-23716
RESERVED
CVE-2023-23715
@@ -24696,8 +24704,8 @@ CVE-2023-22720
RESERVED
CVE-2023-22719
RESERVED
-CVE-2023-22718
- RESERVED
+CVE-2023-22718 (Reflected Cross-Site Scripting (XSS) vulnerability in Jason Lau User M ...)
+ TODO: check
CVE-2023-22717
RESERVED
CVE-2023-22716 (Auth. (admin+) Cross-Site Scripting vulnerability in OOPSpam OOPSpam A ...)
@@ -24736,8 +24744,8 @@ CVE-2023-22700 (Cross-Site Request Forgery (CSRF) vulnerability in PixelYourSite
NOT-FOR-US: PixelYourSite
CVE-2023-22699
RESERVED
-CVE-2023-22698
- RESERVED
+CVE-2023-22698 (Auth. (contributor+) Cross-Site Scripting (XSS) vulnerability in Jason ...)
+ TODO: check
CVE-2023-22697
RESERVED
CVE-2023-22696
@@ -24760,8 +24768,8 @@ CVE-2023-22688
RESERVED
CVE-2023-22687 (Insecure Storage of Sensitive Information vulnerability in Jose Mortel ...)
NOT-FOR-US: Jose Mortellaro Freesoul Deactivate
-CVE-2023-22686
- RESERVED
+CVE-2023-22686 (Cross-Site Request Forgery (CSRF) vulnerability in TriniTronic Nice Pa ...)
+ TODO: check
CVE-2023-22685
RESERVED
CVE-2023-22684
@@ -29678,8 +29686,8 @@ CVE-2022-47437
RESERVED
CVE-2022-47436
RESERVED
-CVE-2022-47435
- RESERVED
+CVE-2022-47435 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Oliv ...)
+ TODO: check
CVE-2022-47434
RESERVED
CVE-2022-47433 (Unauth. Reflected Cross-Site Scripting vulnerability in Daniel Powney ...)
@@ -36179,8 +36187,8 @@ CVE-2022-45363 (Auth. (subscriber+) Stored Cross-Site Scripting (XSS) in Muffing
NOT-FOR-US: WordPress plugin
CVE-2022-45362
RESERVED
-CVE-2022-45361
- RESERVED
+CVE-2022-45361 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Bori ...)
+ TODO: check
CVE-2022-45360
RESERVED
CVE-2022-45359 (Unauth. Arbitrary File Upload vulnerability in YITH WooCommerce Gift C ...)
@@ -36944,8 +36952,8 @@ CVE-2022-45082 (Multiple Auth. (admin+) Stored Cross-Site Scripting (XSS) vulner
NOT-FOR-US: WordPress plugin
CVE-2022-45081
RESERVED
-CVE-2022-45080
- RESERVED
+CVE-2022-45080 (Cross-Site Request Forgery (CSRF) vulnerability in KrishaWeb Add Multi ...)
+ TODO: check
CVE-2022-45079
RESERVED
CVE-2022-45078
@@ -36956,8 +36964,8 @@ CVE-2022-45076
RESERVED
CVE-2022-45075
RESERVED
-CVE-2022-45074
- RESERVED
+CVE-2022-45074 (Cross-Site Request Forgery (CSRF) vulnerability in Paramveer Singh for ...)
+ TODO: check
CVE-2022-45073 (Cross-Site Request Forgery (CSRF) vulnerability in REST API Authentica ...)
NOT-FOR-US: WordPress plugin
CVE-2022-45072 (Cross-Site Request Forgery (CSRF) vulnerability in WPML Multilingual C ...)
@@ -37816,8 +37824,8 @@ CVE-2022-44745 (Sensitive information leak through log files. The following prod
NOT-FOR-US: Acronis
CVE-2022-44744 (Local privilege escalation due to DLL hijacking vulnerability. The fol ...)
NOT-FOR-US: Acronis
-CVE-2022-44743
- RESERVED
+CVE-2022-44743 (Auth. (author+) Stored Cross-Site Scripting (XSS) vulnerability in Blu ...)
+ TODO: check
CVE-2022-44742 (Auth. (admin+) Stored Cross-Site Scripting vulnerability in Yannick Le ...)
NOT-FOR-US: WordPress plugin
CVE-2022-44741 (Cross-Site Request Forgery (CSRF) vulnerability leading to Cross-Site ...)
@@ -39166,8 +39174,8 @@ CVE-2022-44633
RESERVED
CVE-2022-44632 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Deni ...)
NOT-FOR-US: WordPress plugin
-CVE-2022-44631
- RESERVED
+CVE-2022-44631 (Auth. (author+) Stored Cross-Site Scripting (XSS) vulnerability in 1ap ...)
+ TODO: check
CVE-2022-44630
RESERVED
CVE-2022-44629
@@ -39411,8 +39419,8 @@ CVE-2022-44596
RESERVED
CVE-2022-44595
RESERVED
-CVE-2022-44594
- RESERVED
+CVE-2022-44594 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Code ...)
+ TODO: check
CVE-2022-44593
RESERVED
CVE-2022-44592
@@ -39435,8 +39443,8 @@ CVE-2022-44584 (Unauth. Arbitrary File Deletion vulnerability in WatchTowerHQ pl
NOT-FOR-US: WordPress plugin
CVE-2022-44583 (Unauth. Arbitrary File Download vulnerability in WatchTowerHQ plugin & ...)
NOT-FOR-US: WordPress plugin
-CVE-2022-44582
- RESERVED
+CVE-2022-44582 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Appt ...)
+ TODO: check
CVE-2022-44581
RESERVED
CVE-2022-44580 (SQL Injection (SQLi) vulnerability in RichPlugins Plugin for Google Re ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8408670a1dc2bc32507e78320694282475fd8649
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8408670a1dc2bc32507e78320694282475fd8649
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230423/ae6ddf6b/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list