[Git][security-tracker-team/security-tracker][master] Process some more NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Aug 27 09:54:40 BST 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
09476ac5 by Salvatore Bonaccorso at 2024-08-27T10:53:50+02:00
Process some more NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -20,57 +20,57 @@ CVE-2024-45321 (The App::cpanminus package through 1.7047 for Perl downloads cod
 CVE-2024-45036 (Tophat is a mobile applications testing harness. An Improper Access Co ...)
 	TODO: check
 CVE-2024-43916 (Authorization Bypass Through User-Controlled Key vulnerability in Dyla ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-43915 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-43798 (Chisel is a fast TCP/UDP tunnel, transported over HTTP, secured via SS ...)
 	TODO: check
 CVE-2024-43356 (Cross-Site Request Forgery (CSRF) vulnerability in bobbingwide.This is ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-43340 (Cross-Site Request Forgery (CSRF) vulnerability in Nasirahmed Advanced ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-43339 (Cross-Site Request Forgery (CSRF) vulnerability in WebinarPress allows ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-43337 (Cross-Site Request Forgery (CSRF) vulnerability in Brave Brave Popup B ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-43336 (Cross-Site Request Forgery (CSRF) vulnerability in WP User Manager.Thi ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-43325 (Cross-Site Request Forgery (CSRF) vulnerability in Naiche Dark Mode fo ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-43316 (Cross-Site Request Forgery (CSRF) vulnerability in Checkout Plugins St ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-43301 (Cross-Site Request Forgery (CSRF) vulnerability in Fonts Plugin Fonts  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-43299 (Cross-Site Request Forgery (CSRF) vulnerability in Softaculous Team Sp ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-43295 (Cross-Site Request Forgery (CSRF) vulnerability in Passionate Programm ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-43287 (Cross-Site Request Forgery (CSRF) vulnerability in Brevo Newsletter, S ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-43269 (Cross-Site Request Forgery (CSRF) vulnerability in WPBackItUp Backup a ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-43265 (Cross-Site Request Forgery (CSRF) vulnerability in Analytify.This issu ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-43264 (Exposure of Sensitive Information to an Unauthorized Actor vulnerabili ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-43259 (Exposure of Sensitive Information to an Unauthorized Actor vulnerabili ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-43258 (Exposure of Sensitive Information to an Unauthorized Actor vulnerabili ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-43257 (Exposure of Sensitive Information to an Unauthorized Actor vulnerabili ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-43255 (Cross-Site Request Forgery (CSRF) vulnerability in Stormhill Media MyB ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-43251 (Exposure of Sensitive Information to an Unauthorized Actor vulnerabili ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-43230 (Exposure of Sensitive Information to an Unauthorized Actor vulnerabili ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-43214 (Missing Authorization vulnerability in myCred.This issue affects myCre ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-43117 (Cross-Site Request Forgery (CSRF) vulnerability in WPMU DEV Hummingbir ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-43116 (Cross-Site Request Forgery (CSRF) vulnerability in 10up Simple Local A ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-41176 (The MPD package included in TwinCAT/BSDallows an authenticated, low-pr ...)
 	TODO: check
 CVE-2024-41175 (The IPC-Diagnostics package included in TwinCAT/BSD is vulnerable to a ...)
@@ -80,13 +80,13 @@ CVE-2024-41174 (The IPC-Diagnostics package in TwinCAT/BSD is susceptible to imp
 CVE-2024-41173 (The IPC-Diagnostics package included in TwinCAT/BSD is vulnerable to a ...)
 	TODO: check
 CVE-2024-39657 (Cross-Site Request Forgery (CSRF) vulnerability in Sender Sender \u201 ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-39645 (Cross-Site Request Forgery (CSRF) vulnerability in Themeum Tutor LMS.T ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-39641 (Cross-Site Request Forgery (CSRF) vulnerability in ThimPress LearnPres ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-39628 (Cross-Site Request Forgery (CSRF) vulnerability in Saturday Drive Ninj ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-8188
 	REJECTED
 CVE-2024-8174 (A vulnerability has been found in code-projects Blood Bank System 1.0  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/09476ac5dfbc5c4767344f9429ce23d8628466c8

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/09476ac5dfbc5c4767344f9429ce23d8628466c8
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240827/69a04f73/attachment.htm>

More information about the debian-security-tracker-commits mailing list