[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Aug 28 21:21:47 BST 2023 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
26a4b501 by Salvatore Bonaccorso at 2023-08-28T22:21:04+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,47 +1,47 @@
 CVE-2023-41109 (SmartNode SN200 (aka SN200) 3.21.2-23021 allows unauthenticated OS Com ...)
-	TODO: check
+	NOT-FOR-US: SmartNode SN200 (aka SN200)
 CVE-2023-40846 (Tenda AC6 US_AC6V1.0BR_V15.03.05.16_multi_TD01.bin is vulnerable to Bu ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2023-40767 (User enumeration is found in in PHPJabbers Make an Offer Widget v1.0.  ...)
-	TODO: check
+	NOT-FOR-US: PHPJabbers
 CVE-2023-40766 (User enumeration is found in in PHPJabbers Ticket Support Script v3.2. ...)
-	TODO: check
+	NOT-FOR-US: PHPJabbers
 CVE-2023-40765 (User enumeration is found in PHPJabbers Event Booking Calendar v4.0. T ...)
-	TODO: check
+	NOT-FOR-US: PHPJabbers
 CVE-2023-40764 (User enumeration is found in PHP Jabbers Car Rental Script v3.0. This  ...)
-	TODO: check
+	NOT-FOR-US: PHPJabbers
 CVE-2023-40763 (User enumeration is found in PHPJabbers Taxi Booking Script v2.0. This ...)
-	TODO: check
+	NOT-FOR-US: PHPJabbers
 CVE-2023-40762 (User enumeration is found in PHPJabbers Fundraising Script v1.0. This  ...)
-	TODO: check
+	NOT-FOR-US: PHPJabbers
 CVE-2023-40761 (User enumeration is found in PHPJabbers Yacht Listing Script v2.0. Thi ...)
-	TODO: check
+	NOT-FOR-US: PHPJabbers
 CVE-2023-40760 (User enumeration is found in PHP Jabbers Hotel Booking System v4.0. Th ...)
-	TODO: check
+	NOT-FOR-US: PHPJabbers
 CVE-2023-40759 (User enumeration is found in PHP Jabbers Restaurant Booking Script v3. ...)
-	TODO: check
+	NOT-FOR-US: PHPJabbers
 CVE-2023-40758 (User enumeration is found in PHPJabbers Document Creator v1.0. This is ...)
-	TODO: check
+	NOT-FOR-US: PHPJabbers
 CVE-2023-40757 (User enumeration is found in PHPJabbers Food Delivery Script v3.1. Thi ...)
-	TODO: check
+	NOT-FOR-US: PHPJabbers
 CVE-2023-40756 (User enumeration is found in PHPJabbers Callback Widget v1.0. This iss ...)
-	TODO: check
+	NOT-FOR-US: PHPJabbers
 CVE-2023-40755 (There is a Cross Site Scripting (XSS) vulnerability in the "theme" par ...)
-	TODO: check
+	NOT-FOR-US: PHPJabbers
 CVE-2023-40754 (In PHPJabbers Car Rental Script 3.0, lack of verification when changin ...)
-	TODO: check
+	NOT-FOR-US: PHPJabbers
 CVE-2023-40753 (There is a Cross Site Scripting (XSS) vulnerability in the message par ...)
-	TODO: check
+	NOT-FOR-US: PHPJabbers
 CVE-2023-40752 (There is a Cross Site Scripting (XSS) vulnerability in the "action" pa ...)
-	TODO: check
+	NOT-FOR-US: PHPJabbers
 CVE-2023-40751 (PHPJabbers Fundraising Script v1.0 is vulnerable to Cross Site Scripti ...)
-	TODO: check
+	NOT-FOR-US: PHPJabbers
 CVE-2023-40750 (There is a Cross Site Scripting (XSS) vulnerability in the "action" pa ...)
-	TODO: check
+	NOT-FOR-US: PHPJabbers
 CVE-2023-40749 (PHPJabbers Food Delivery Script v3.0 is vulnerable to SQL Injection in ...)
-	TODO: check
+	NOT-FOR-US: PHPJabbers
 CVE-2023-40748 (PHPJabbers Food Delivery Script 3.0 has a SQL injection (SQLi) vulnera ...)
-	TODO: check
+	NOT-FOR-US: PHPJabbers
 CVE-2023-40590 (GitPython is a python library used to interact with Git repositories.  ...)
 	TODO: check
 CVE-2023-40170 (jupyter-server is the backend for Jupyter web applications. Improper c ...)
@@ -49,9 +49,9 @@ CVE-2023-40170 (jupyter-server is the backend for Jupyter web applications. Impr
 CVE-2023-39810 (An issue in the CPIO command of Busybox v1.33.2 allows attackers to ex ...)
 	TODO: check
 CVE-2023-39709 (Multiple cross-site scripting (XSS) vulnerabilities in Free and Open S ...)
-	TODO: check
+	NOT-FOR-US: Free and Open Source Inventory Management System
 CVE-2023-39708 (A stored cross-site scripting (XSS) vulnerability in Free and Open Sou ...)
-	TODO: check
+	NOT-FOR-US: Free and Open Source Inventory Management System
 CVE-2023-39652 (theme volty tvcmsvideotab up to v4.0.0 was discovered to contain a SQL ...)
 	TODO: check
 CVE-2023-39578 (A stored cross-site scripting (XSS) vulnerability in the Create functi ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/26a4b501a4bbc5b66a923d47fa65ad4fcd6045de

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/26a4b501a4bbc5b66a923d47fa65ad4fcd6045de
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230828/5899853a/attachment.htm>

More information about the debian-security-tracker-commits mailing list