[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Nov 19 08:11:42 GMT 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
937b8b8e by security tracker role at 2023-11-19T08:11:30+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,49 @@
+CVE-2023-47685 (Cross-Site Request Forgery (CSRF) vulnerability in Lukman Nakib Preloa ...)
+ TODO: check
+CVE-2023-47672 (Cross-Site Request Forgery (CSRF) vulnerability in Swashata WP Categor ...)
+ TODO: check
+CVE-2023-47671 (Cross-Site Request Forgery (CSRF) vulnerability in Gopi Ramasamy Verti ...)
+ TODO: check
+CVE-2023-47670 (Cross-Site Request Forgery (CSRF) vulnerability in Jongmyoung Kim Kore ...)
+ TODO: check
+CVE-2023-47667 (Cross-Site Request Forgery (CSRF) vulnerability in Mammothology WP Ful ...)
+ TODO: check
+CVE-2023-47666 (Cross-Site Request Forgery (CSRF) vulnerability in Code Snippets Pro C ...)
+ TODO: check
+CVE-2023-47664 (Cross-Site Request Forgery (CSRF) vulnerability in edward_plainview Pl ...)
+ TODO: check
+CVE-2023-47655 (Cross-Site Request Forgery (CSRF) vulnerability in Marco Milesi ANAC X ...)
+ TODO: check
+CVE-2023-47651 (Cross-Site Request Forgery (CSRF) vulnerability in Robert Macchi WP Li ...)
+ TODO: check
+CVE-2023-47650 (Cross-Site Request Forgery (CSRF) vulnerability in Peter Sterling Add ...)
+ TODO: check
+CVE-2023-47649 (Cross-Site Request Forgery (CSRF) vulnerability in PriceListo Best Res ...)
+ TODO: check
+CVE-2023-47644 (Cross-Site Request Forgery (CSRF) vulnerability in profilegrid Profile ...)
+ TODO: check
+CVE-2023-47556 (Cross-Site Request Forgery (CSRF) vulnerability in James Mehorter Devi ...)
+ TODO: check
+CVE-2023-47553 (Cross-Site Request Forgery (CSRF) vulnerability in User Local Inc User ...)
+ TODO: check
+CVE-2023-47552 (Cross-Site Request Forgery (CSRF) vulnerability in Labib Ahmed Image H ...)
+ TODO: check
+CVE-2023-47551 (Cross-Site Request Forgery (CSRF) vulnerability in RedNao Donations Ma ...)
+ TODO: check
+CVE-2023-47531 (Cross-Site Request Forgery (CSRF) vulnerability in DroitThemes Droit D ...)
+ TODO: check
+CVE-2023-47519 (Cross-Site Request Forgery (CSRF) vulnerability in WC Product Table Wo ...)
+ TODO: check
+CVE-2023-47243 (Cross-Site Request Forgery (CSRF) vulnerability in CodeMShop \ucf54\ub ...)
+ TODO: check
+CVE-2023-41129 (Cross-Site Request Forgery (CSRF) vulnerability in Patreon Patreon Wor ...)
+ TODO: check
+CVE-2023-32514 (Cross-Site Request Forgery (CSRF) vulnerability in Himanshu Parashar G ...)
+ TODO: check
+CVE-2023-32504 (Cross-Site Request Forgery (CSRF) vulnerability in Kainex Wise Chat.Th ...)
+ TODO: check
+CVE-2023-32245 (Cross-Site Request Forgery (CSRF) vulnerability in WPDeveloper Essenti ...)
+ TODO: check
CVE-2023-48736 (In International Color Consortium DemoIccMAX 3e7948b, CIccCLUT::Interp ...)
NOT-FOR-US: International Color Consortium DemoIccMAX
CVE-2023-40363 (IBM InfoSphere Information Server 11.7 could allow an authenticated us ...)
@@ -27815,8 +27861,8 @@ CVE-2023-31091 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability i
NOT-FOR-US: WordPress plugin
CVE-2023-31090
RESERVED
-CVE-2023-31089
- RESERVED
+CVE-2023-31089 (Cross-Site Request Forgery (CSRF) vulnerability in Tradebooster Video ...)
+ TODO: check
CVE-2023-31088 (Cross-Site Request Forgery (CSRF) vulnerability in Faraz Quazi Floatin ...)
NOT-FOR-US: WordPress plugin
CVE-2023-31087 (Cross-Site Request Forgery (CSRF) vulnerability in JoomSky JS Job Mana ...)
@@ -27852,8 +27898,8 @@ CVE-2023-31077 (Cross-Site Request Forgery (CSRF) vulnerability in ReCorp Export
NOT-FOR-US: WordPress plugin
CVE-2023-31076 (Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Really S ...)
NOT-FOR-US: WordPress plugin
-CVE-2023-31075
- RESERVED
+CVE-2023-31075 (Cross-Site Request Forgery (CSRF) vulnerability in Arshid Easy Hide Lo ...)
+ TODO: check
CVE-2023-31074 (Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in hupe13 E ...)
NOT-FOR-US: WordPress plugin
CVE-2023-31073
@@ -34902,8 +34948,8 @@ CVE-2023-28782
RESERVED
CVE-2023-28781 (Unauth. Stored Cross-Site Scripting (XSS) vulnerability in Cimatti Con ...)
NOT-FOR-US: WordPress plugin
-CVE-2023-28780
- RESERVED
+CVE-2023-28780 (Cross-Site Request Forgery (CSRF) vulnerability in Yoast Yoast Local P ...)
+ TODO: check
CVE-2023-28779 (Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Vladimir ...)
NOT-FOR-US: WordPress plugin
CVE-2023-28778 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Best ...)
@@ -43427,8 +43473,8 @@ CVE-2023-25987
RESERVED
CVE-2023-25986
RESERVED
-CVE-2023-25985
- RESERVED
+CVE-2023-25985 (Cross-Site Request Forgery (CSRF) vulnerability in Tomas | Docs | FAQ ...)
+ TODO: check
CVE-2023-25984 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Rigo ...)
NOT-FOR-US: WordPress plugin
CVE-2023-25983 (Improper Neutralization of Formula Elements in a CSV File vulnerabilit ...)
@@ -233672,6 +233718,7 @@ CVE-2020-22284 (A buffer overflow vulnerability in the zepif_linkoutput() functi
NOTE: https://git.savannah.nongnu.org/cgit/lwip.git/commit/?id=379d55044e9181533f1fd4d0e0cf89bc01cb9b8b (STABLE-2_1_3_RC1)
NOTE: Vulnerable feature introduced with https://git.savannah.nongnu.org/cgit/lwip.git/commit/?id=43a55003da622851b1c1677c8e7cb75e9430300f (first contained in STABLE-2_1_0_RC1)
CVE-2020-22283 (A buffer overflow vulnerability in the icmp6_send_response_with_addrs_ ...)
+ {DLA-3655-1}
- lwip 2.1.3+dfsg1-1 (bug #991645)
[bullseye] - lwip 2.1.2+dfsg1-8+deb11u1
NOTE: https://savannah.nongnu.org/bugs/index.php?58553
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/937b8b8eb6080ec483c17a1f397419ea0ea8bc65
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/937b8b8eb6080ec483c17a1f397419ea0ea8bc65
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231119/525b3f1d/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list