[Git][security-tracker-team/security-tracker][master] Process some NFUs

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ef6bbecc by Salvatore Bonaccorso at 2023-08-01T09:38:30+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -53,41 +53,41 @@ CVE-2023-38304 (An issue was discovered in Webmin 2.021. A Stored Cross-Site Scr
 CVE-2023-38303 (An issue was discovered in Webmin 2.021. One can exploit a stored Cros ...)
 	- webmin <removed>
 CVE-2023-37771 (Art Gallery Management System v1.0 contains a SQL injection vulnerabil ...)
-	TODO: check
+	NOT-FOR-US: Art Gallery Management System
 CVE-2023-37647 (SEMCMS v1.5 was discovered to contain a SQL injection vulnerability vi ...)
-	TODO: check
+	NOT-FOR-US: SEMCMS
 CVE-2023-37580 (Zimbra Collaboration (ZCS) 8 before 8.8.15 Patch 41 allows XSS in the  ...)
-	TODO: check
+	NOT-FOR-US: Zimbra
 CVE-2023-36092 (Authentication Bypass vulnerability in D-Link DIR-859 FW105b03 allows  ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2023-36091 (Authentication Bypass vulnerability in D-Link DIR-895 FW102b07 allows  ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2023-36090 (Authentication Bypass vulnerability in D-Link DIR-885L FW102b01 allows ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2023-36089 (Authentication Bypass vulnerability in D-Link DIR-645 firmware version ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2023-35861 (A shell-injection vulnerability in email notifications on Supermicro m ...)
 	TODO: check
 CVE-2023-35792 (Vound Intella Connect 2.6.0.3 is vulnerable to stored Cross-site Scrip ...)
-	TODO: check
+	NOT-FOR-US: Vound Intella Connect
 CVE-2023-35791 (Vound Intella Connect 2.6.0.3 has an Open Redirect vulnerability.)
-	TODO: check
+	NOT-FOR-US: Vound Intella Connect
 CVE-2023-34917 (Fuge CMS v1.0 contains an Open Redirect vulnerability in member/Regist ...)
-	TODO: check
+	NOT-FOR-US: Fuge CMS
 CVE-2023-34916 (Fuge CMS v1.0 contains an Open Redirect vulnerability via /front/Proce ...)
-	TODO: check
+	NOT-FOR-US: Fuge CMS
 CVE-2023-34872 (A vulnerability in Outline.cc for Poppler prior to 23.06.0 allows a re ...)
 	TODO: check
 CVE-2023-34842 (Remote Code Execution vulnerability in DedeCMS through 5.7.109 allows  ...)
-	TODO: check
+	NOT-FOR-US: DedeCMS
 CVE-2023-34644 (Remote code execution vulnerability in Ruijie Networks Product: RG-EW  ...)
-	TODO: check
+	NOT-FOR-US: Ruijie
 CVE-2023-34635 (Wifi Soft Unibox Administration 3.0 and 3.1 is vulnerable to SQL Injec ...)
-	TODO: check
+	NOT-FOR-US: Wifi Soft Unibox Administration
 CVE-2023-33534 (A Cross-Site Request Forgery (CSRF) in Guanzhou Tozed Kangwei Intellig ...)
 	TODO: check
 CVE-2020-36763 (Cross Site Scripting (XSS) vulnerability in DuxCMS 2.1 allows remote a ...)
-	TODO: check
+	NOT-FOR-US: DuxCMS
 CVE-2023-4007 (Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpm ...)
 	NOT-FOR-US: phpmyfaq
 CVE-2023-4006 (Improper Neutralization of Formula Elements in a CSV File in GitHub re ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ef6bbecc18651f1212d1bce34aff0f50fab13383

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ef6bbecc18651f1212d1bce34aff0f50fab13383
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230801/65a40b66/attachment-0001.htm>