[Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Sun Jun 25 18:54:41 BST 2023
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
287a2d46 by Moritz Muehlenhoff at 2023-06-25T19:54:16+02:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,7 +1,7 @@
CVE-2023-36612 (Directory traversal can occur in the Basecamp com.basecamp.bc3 applica ...)
- TODO: check
+ NOT-FOR-US: Basecamp
CVE-2023-3388 (The Beautiful Cookie Consent Banner for WordPress is vulnerable to Sto ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2023-3387 (The Lana Text to Image plugin for WordPress is vulnerable to Stored Cr ...)
NOT-FOR-US: Lana Text to Image plugin for WordPress
CVE-2023-3197 (The MStore API plugin for WordPress is vulnerable to Unauthenticated B ...)
@@ -21,11 +21,11 @@ CVE-2023-35171 (NextCloud Server and NextCloud Enterprise Server provide file st
CVE-2023-35169 (PHP-IMAP is a wrapper for common IMAP communication without the need t ...)
TODO: check
CVE-2023-35165 (AWS Cloud Development Kit (AWS CDK) is an open-source software develop ...)
- TODO: check
+ NOT-FOR-US: AWS Cloud Development Kit
CVE-2023-35163 (Vega is a decentralized trading platform that allows pseudo-anonymous ...)
- TODO: check
+ NOT-FOR-US: Vega
CVE-2023-35154 (Knowage is an open source analytics and business intelligence suite. S ...)
- TODO: check
+ NOT-FOR-US: Knowage
CVE-2023-34254 (The GLPI Agent is a generic management agent. Prior to version 1.5, if ...)
TODO: check
CVE-2023-3394 (Session Fixation in GitHub repository fossbilling/fossbilling prior to ...)
@@ -12574,9 +12574,9 @@ CVE-2023-28802
CVE-2023-28801
RESERVED
CVE-2023-28800 (When using local accounts for administration, the redirect url paramet ...)
- TODO: check
+ NOT-FOR-US: Zscaler
CVE-2023-28799 (A URL parameter during login flow was vulnerable to injection. An atta ...)
- TODO: check
+ NOT-FOR-US: Zscaler
CVE-2023-28798
RESERVED
CVE-2023-28797
@@ -12606,7 +12606,7 @@ CVE-2023-28786
CVE-2023-28785 (Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability i ...)
NOT-FOR-US: WordPress plugin
CVE-2023-28784 (Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Contest ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2023-28783
RESERVED
CVE-2023-28782
@@ -12618,15 +12618,15 @@ CVE-2023-28780
CVE-2023-28779
RESERVED
CVE-2023-28778 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Best ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2023-28777
RESERVED
CVE-2023-28776 (Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in I Thirte ...)
- TODO: check
+ NOT-FOR-US: Lightbox plugin
CVE-2023-28775
RESERVED
CVE-2023-28774 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Grad ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2023-28773
RESERVED
CVE-2023-28772 (An issue was discovered in the Linux kernel before 5.13.3. lib/seq_buf ...)
@@ -12787,9 +12787,9 @@ CVE-2023-1584
RESERVED
NOT-FOR-US: Quarkus
CVE-2023-28751 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Wpme ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2023-28750 (Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Ignazio ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2023-28749
RESERVED
CVE-2023-28748
@@ -12983,7 +12983,7 @@ CVE-2023-28697 (Moxa MiiNePort E1 has a vulnerability of insufficient access con
CVE-2023-28696
RESERVED
CVE-2023-28695 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Drew ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2023-28694
RESERVED
CVE-2023-28693
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/287a2d461aaddd55748e14007ececc98cc019463
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/287a2d461aaddd55748e14007ececc98cc019463
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230625/d3fe8c0e/attachment.htm>
More information about the debian-security-tracker-commits
mailing list