[Git][security-tracker-team/security-tracker][master] Process new NFUsProcess new NFUsProcess new NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat Dec 14 08:22:20 GMT 2024



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
cd4f11d6 by Salvatore Bonaccorso at 2024-12-14T09:21:28+01:00
Process new NFUsProcess new NFUsProcess new NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,103 +1,103 @@
 CVE-2024-9698 (The Crafthemes Demo Import plugin for WordPress is vulnerable to arbit ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-55956 (In Cleo Harmony before 5.8.0.24, VLTrader before 5.8.0.24, and LexiCom ...)
-	TODO: check
+	NOT-FOR-US: Cleo
 CVE-2024-55946 (Playloom Engine is an open-source, high-performance game development e ...)
-	TODO: check
+	NOT-FOR-US: Playloom Engine
 CVE-2024-12632
 	REJECTED
 CVE-2024-12628 (The bodi0`s Easy cache plugin for WordPress is vulnerable to Stored Cr ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-12578 (The Tickera \u2013 WordPress Event Ticketing plugin for WordPress is v ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-12555 (The SIP Calculator plugin for WordPress is vulnerable to Cross-Site Re ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-12553 (GeoVision GV-ASManager Missing Authorization Information Disclosure Vu ...)
-	TODO: check
+	NOT-FOR-US: GeoVision GV-ASManager
 CVE-2024-12552 (Wacom Center WTabletServicePro Link Following Local Privilege Escalati ...)
-	TODO: check
+	NOT-FOR-US: Wacom Center WTabletServicePro
 CVE-2024-12523 (The States Map US plugin for WordPress is vulnerable to Stored Cross-S ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-12517 (The WooCommerce Cart Count Shortcode plugin for WordPress is vulnerabl ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-12502 (The My IDX Home Search plugin for WordPress is vulnerable to Stored Cr ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-12501 (The Simple Locator plugin for WordPress is vulnerable to Stored Cross- ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-12474 (The GeoDataSource Country Region DropDown plugin for WordPress is vuln ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-12459 (The Ganohrs Toggle Shortcode plugin for WordPress is vulnerable to Sto ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-12458 (The Smart PopUp Blaster plugin for WordPress is vulnerable to Stored C ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-12448 (The Posts and Products Views for WooCommerce plugin for WordPress is v ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-12447 (The Get Post Content Shortcode plugin for WordPress is vulnerable to I ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-12446 (The Post to Pdf plugin for WordPress is vulnerable to Stored Cross-Sit ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-12422 (The Import Eventbrite Events plugin for WordPress is vulnerable to Ref ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-12411 (The WP Ad Guru \u2013 Banner ad, Responsive popup, Popup maker, Ad rot ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-11894 (The The Permalinker plugin for WordPress is vulnerable to Stored Cross ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-11889 (The My IDX Home Search plugin for WordPress is vulnerable to Stored Cr ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-11888 (The IDer Login for WordPress plugin for WordPress is vulnerable to Sto ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-11884 (The Wp photo text slider 50 plugin for WordPress is vulnerable to Stor ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-11883 (The Connatix Video Embed plugin for WordPress is vulnerable to Stored  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-11879 (The Stripe Donation plugin for WordPress is vulnerable to Stored Cross ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-11877 (The Cricket Live Score plugin for WordPress is vulnerable to Stored Cr ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-11876 (The Kredeum NFTs, the easiest way to sell your NFTs directly on your W ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-11873 (The glomex oEmbed plugin for WordPress is vulnerable to Stored Cross-S ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-11869 (The Buk for WordPress plugin for WordPress is vulnerable to Stored Cro ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-11867 (The Companion Portfolio \u2013 Responsive Portfolio Plugin plugin for  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-11865 (The Tabs Maker plugin for WordPress is vulnerable to Stored Cross-Site ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-11855 (The Koalendar \u2013 Events & Appointments Booking Calendar plugin for ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-11770 (The Post Carousel & Slider plugin for WordPress is vulnerable to Store ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-11763 (The Plezi plugin for WordPress is vulnerable to Stored Cross-Site Scri ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-11759 (The Bukza plugin for WordPress is vulnerable to Stored Cross-Site Scri ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-11755 (The IMS Countdown plugin for WordPress is vulnerable to Stored Cross-S ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-11752 (The Eveeno plugin for WordPress is vulnerable to Stored Cross-Site Scr ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-11751 (The TCBD Popover plugin for WordPress is vulnerable to Stored Cross-Si ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-11715 (The WP Job Portal \u2013 A Complete Recruitment System for Company or  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-11714 (The WP Job Portal \u2013 A Complete Recruitment System for Company or  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-11713 (The WP Job Portal \u2013 A Complete Recruitment System for Company or  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-11712 (The WP Job Portal \u2013 A Complete Recruitment System for Company or  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-11711 (The WP Job Portal \u2013 A Complete Recruitment System for Company or  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-11710 (The WP Job Portal \u2013 A Complete Recruitment System for Company or  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-11462 (The Filestack Official plugin for WordPress is vulnerable to Reflected ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-11095 (The Visualmodo Elements plugin for WordPress is vulnerable to Stored C ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-10690 (The Shortcodes for Elementor plugin for WordPress is vulnerable to Inf ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-10646 (The Contact Form Plugin by Fluent Forms for Quiz, Survey, and Drag & D ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-9945 (An information-disclosure vulnerability exists in Fortra's GoAnywhere  ...)
 	NOT-FOR-US: Fortra
 CVE-2024-9608 (The MyParcel plugin for WordPress is vulnerable to Reflected Cross-Sit ...)
@@ -136639,7 +136639,7 @@ CVE-2023-29478 (BiblioCraft before 2.4.6 does not sanitize path-traversal charac
 CVE-2023-29477
 	RESERVED
 CVE-2023-29476 (In Menlo On-Premise Appliance before 2.88, web policy may not be consi ...)
-	TODO: check
+	NOT-FOR-US: Menlo On-Premise Appliance
 CVE-2023-29475 (inventory in Atos Unify OpenScape 4000 Platform and OpenScape 4000 Man ...)
 	NOT-FOR-US: Unify
 CVE-2023-29474 (inventory in Atos Unify OpenScape 4000 Platform and OpenScape 4000 Man ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cd4f11d643d1a5952c7bdeded8fe4b1932684e54

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cd4f11d643d1a5952c7bdeded8fe4b1932684e54
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241214/a0fdbf7c/attachment.htm>


More information about the debian-security-tracker-commits mailing list