[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat Dec 14 08:12:51 GMT 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
8f5b909d by security tracker role at 2024-12-14T08:12:45+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,103 @@
+CVE-2024-9698 (The Crafthemes Demo Import plugin for WordPress is vulnerable to arbit ...)
+	TODO: check
+CVE-2024-55956 (In Cleo Harmony before 5.8.0.24, VLTrader before 5.8.0.24, and LexiCom ...)
+	TODO: check
+CVE-2024-55946 (Playloom Engine is an open-source, high-performance game development e ...)
+	TODO: check
+CVE-2024-12632
+	REJECTED
+CVE-2024-12628 (The bodi0`s Easy cache plugin for WordPress is vulnerable to Stored Cr ...)
+	TODO: check
+CVE-2024-12578 (The Tickera \u2013 WordPress Event Ticketing plugin for WordPress is v ...)
+	TODO: check
+CVE-2024-12555 (The SIP Calculator plugin for WordPress is vulnerable to Cross-Site Re ...)
+	TODO: check
+CVE-2024-12553 (GeoVision GV-ASManager Missing Authorization Information Disclosure Vu ...)
+	TODO: check
+CVE-2024-12552 (Wacom Center WTabletServicePro Link Following Local Privilege Escalati ...)
+	TODO: check
+CVE-2024-12523 (The States Map US plugin for WordPress is vulnerable to Stored Cross-S ...)
+	TODO: check
+CVE-2024-12517 (The WooCommerce Cart Count Shortcode plugin for WordPress is vulnerabl ...)
+	TODO: check
+CVE-2024-12502 (The My IDX Home Search plugin for WordPress is vulnerable to Stored Cr ...)
+	TODO: check
+CVE-2024-12501 (The Simple Locator plugin for WordPress is vulnerable to Stored Cross- ...)
+	TODO: check
+CVE-2024-12474 (The GeoDataSource Country Region DropDown plugin for WordPress is vuln ...)
+	TODO: check
+CVE-2024-12459 (The Ganohrs Toggle Shortcode plugin for WordPress is vulnerable to Sto ...)
+	TODO: check
+CVE-2024-12458 (The Smart PopUp Blaster plugin for WordPress is vulnerable to Stored C ...)
+	TODO: check
+CVE-2024-12448 (The Posts and Products Views for WooCommerce plugin for WordPress is v ...)
+	TODO: check
+CVE-2024-12447 (The Get Post Content Shortcode plugin for WordPress is vulnerable to I ...)
+	TODO: check
+CVE-2024-12446 (The Post to Pdf plugin for WordPress is vulnerable to Stored Cross-Sit ...)
+	TODO: check
+CVE-2024-12422 (The Import Eventbrite Events plugin for WordPress is vulnerable to Ref ...)
+	TODO: check
+CVE-2024-12411 (The WP Ad Guru \u2013 Banner ad, Responsive popup, Popup maker, Ad rot ...)
+	TODO: check
+CVE-2024-11894 (The The Permalinker plugin for WordPress is vulnerable to Stored Cross ...)
+	TODO: check
+CVE-2024-11889 (The My IDX Home Search plugin for WordPress is vulnerable to Stored Cr ...)
+	TODO: check
+CVE-2024-11888 (The IDer Login for WordPress plugin for WordPress is vulnerable to Sto ...)
+	TODO: check
+CVE-2024-11884 (The Wp photo text slider 50 plugin for WordPress is vulnerable to Stor ...)
+	TODO: check
+CVE-2024-11883 (The Connatix Video Embed plugin for WordPress is vulnerable to Stored  ...)
+	TODO: check
+CVE-2024-11879 (The Stripe Donation plugin for WordPress is vulnerable to Stored Cross ...)
+	TODO: check
+CVE-2024-11877 (The Cricket Live Score plugin for WordPress is vulnerable to Stored Cr ...)
+	TODO: check
+CVE-2024-11876 (The Kredeum NFTs, the easiest way to sell your NFTs directly on your W ...)
+	TODO: check
+CVE-2024-11873 (The glomex oEmbed plugin for WordPress is vulnerable to Stored Cross-S ...)
+	TODO: check
+CVE-2024-11869 (The Buk for WordPress plugin for WordPress is vulnerable to Stored Cro ...)
+	TODO: check
+CVE-2024-11867 (The Companion Portfolio \u2013 Responsive Portfolio Plugin plugin for  ...)
+	TODO: check
+CVE-2024-11865 (The Tabs Maker plugin for WordPress is vulnerable to Stored Cross-Site ...)
+	TODO: check
+CVE-2024-11855 (The Koalendar \u2013 Events & Appointments Booking Calendar plugin for ...)
+	TODO: check
+CVE-2024-11770 (The Post Carousel & Slider plugin for WordPress is vulnerable to Store ...)
+	TODO: check
+CVE-2024-11763 (The Plezi plugin for WordPress is vulnerable to Stored Cross-Site Scri ...)
+	TODO: check
+CVE-2024-11759 (The Bukza plugin for WordPress is vulnerable to Stored Cross-Site Scri ...)
+	TODO: check
+CVE-2024-11755 (The IMS Countdown plugin for WordPress is vulnerable to Stored Cross-S ...)
+	TODO: check
+CVE-2024-11752 (The Eveeno plugin for WordPress is vulnerable to Stored Cross-Site Scr ...)
+	TODO: check
+CVE-2024-11751 (The TCBD Popover plugin for WordPress is vulnerable to Stored Cross-Si ...)
+	TODO: check
+CVE-2024-11715 (The WP Job Portal \u2013 A Complete Recruitment System for Company or  ...)
+	TODO: check
+CVE-2024-11714 (The WP Job Portal \u2013 A Complete Recruitment System for Company or  ...)
+	TODO: check
+CVE-2024-11713 (The WP Job Portal \u2013 A Complete Recruitment System for Company or  ...)
+	TODO: check
+CVE-2024-11712 (The WP Job Portal \u2013 A Complete Recruitment System for Company or  ...)
+	TODO: check
+CVE-2024-11711 (The WP Job Portal \u2013 A Complete Recruitment System for Company or  ...)
+	TODO: check
+CVE-2024-11710 (The WP Job Portal \u2013 A Complete Recruitment System for Company or  ...)
+	TODO: check
+CVE-2024-11462 (The Filestack Official plugin for WordPress is vulnerable to Reflected ...)
+	TODO: check
+CVE-2024-11095 (The Visualmodo Elements plugin for WordPress is vulnerable to Stored C ...)
+	TODO: check
+CVE-2024-10690 (The Shortcodes for Elementor plugin for WordPress is vulnerable to Inf ...)
+	TODO: check
+CVE-2024-10646 (The Contact Form Plugin by Fluent Forms for Quiz, Survey, and Drag & D ...)
+	TODO: check
 CVE-2024-9945 (An information-disclosure vulnerability exists in Fortra's GoAnywhere  ...)
 	NOT-FOR-US: Fortra
 CVE-2024-9608 (The MyParcel plugin for WordPress is vulnerable to Reflected Cross-Sit ...)
@@ -136537,8 +136637,8 @@ CVE-2023-29478 (BiblioCraft before 2.4.6 does not sanitize path-traversal charac
 	NOT-FOR-US: BiblioCraft
 CVE-2023-29477
 	RESERVED
-CVE-2023-29476
-	RESERVED
+CVE-2023-29476 (In Menlo On-Premise Appliance before 2.88, web policy may not be consi ...)
+	TODO: check
 CVE-2023-29475 (inventory in Atos Unify OpenScape 4000 Platform and OpenScape 4000 Man ...)
 	NOT-FOR-US: Unify
 CVE-2023-29474 (inventory in Atos Unify OpenScape 4000 Platform and OpenScape 4000 Man ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8f5b909d0e4f0307c5e7b2386838f7119dcffe7b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8f5b909d0e4f0307c5e7b2386838f7119dcffe7b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241214/1defcb8e/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list