[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Jul 24 21:14:27 BST 2023 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
712b8d0c by Salvatore Bonaccorso at 2023-07-24T22:13:49+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3,7 +3,7 @@ CVE-2023-3870
 CVE-2023-3863 (A use-after-free flaw was found in nfc_llcp_find_local in net/nfc/llcp ...)
 	TODO: check
 CVE-2023-3344 (The Auto Location for WP Job Manager via Google WordPress plugin befor ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-3324 (A vulnerability exists by allowing low-privileged users to read and up ...)
 	TODO: check
 CVE-2023-3323 (A vulnerability exists by allowing low-privileged users to read and up ...)
@@ -13,7 +13,7 @@ CVE-2023-3322 (A vulnerability exists by allowing low-privileged users to read a
 CVE-2023-3321 (A vulnerability exists by allowing low-privileged users to read and up ...)
 	TODO: check
 CVE-2023-3248 (The All-in-one Floating Contact Form WordPress plugin before 2.1.2 doe ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-38060 (Improper Input Validation vulnerability in the ContentType parameter f ...)
 	TODO: check
 CVE-2023-38058 (An improper privilege check in the OTRS ticket move action in the agen ...)
@@ -25,7 +25,7 @@ CVE-2023-38056 (Improper Neutralization of commands allowed to be executed via O
 CVE-2023-37613 (A cross-site scripting (XSS) vulnerability in Assembly Software Trialw ...)
 	TODO: check
 CVE-2023-2761 (The User Activity Log WordPress plugin before 1.6.3 does not properly  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-3862 (A vulnerability was found in Travelmate Travelable Trek Management Sol ...)
 	NOT-FOR-US: Travelmate Travelable Trek Management Solution
 CVE-2023-3861 (A vulnerability was found in phpscriptpoint Insurance 1.2. It has been ...)
@@ -9072,7 +9072,7 @@ CVE-2023-2311
 CVE-2023-2310 (A Channel Accessible by Non-Endpoint vulnerability in the Schweitzer E ...)
 	NOT-FOR-US: Schweitzer Engineering Laboratories
 CVE-2023-2309 (The wpForo Forum WordPress plugin before 2.1.9 does not escape some re ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-2308
 	RESERVED
 CVE-2023-2307 (Cross-Site Request Forgery (CSRF) in GitHub repository builderio/qwik  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/712b8d0c5ca8ed3eb2c61ac1bbb10023a009c9dd

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/712b8d0c5ca8ed3eb2c61ac1bbb10023a009c9dd
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230724/30164712/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list