[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Dec 17 08:41:24 GMT 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
31232a16 by Salvatore Bonaccorso at 2024-12-17T09:40:57+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,27 +1,27 @@
CVE-2024-9624 (The WP All Import Pro plugin for WordPress is vulnerable to Server-Sid ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-56017 (Cross-Site Request Forgery (CSRF) vulnerability in Tom Royal Stop Regi ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-55951 (Metabase is an open-source data analytics platform. For new sandboxing ...)
TODO: check
CVE-2024-55864 (Cross-site scripting vulnerability exists in My WP Customize Admin/Fro ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-55557 (ui/pref/ProxyPrefView.java in weasis-core in Weasis 4.5.1 has a hardco ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-55554 (Intrexx Portal Server before 12.0.2 allows XSS via a user-defined port ...)
- TODO: check
+ NOT-FOR-US: Intrexx Portal Server
CVE-2024-55452 (A URL redirection vulnerability exists in UJCMS 9.6.3 due to improper ...)
- TODO: check
+ NOT-FOR-US: UJCMS
CVE-2024-55451 (A Stored Cross-Site Scripting (XSS) vulnerability exists in authentica ...)
- TODO: check
+ NOT-FOR-US: UJCMS
CVE-2024-55104 (Online Nurse Hiring System v1.0 was discovered to contain multiple SQL ...)
- TODO: check
+ NOT-FOR-US: Online Nurse Hiring System
CVE-2024-55103 (Online Nurse Hiring System v1.0 was discovered to contain a SQL inject ...)
- TODO: check
+ NOT-FOR-US: Online Nurse Hiring System
CVE-2024-55100 (A stored cross-site scripting (XSS) vulnerability in the component /ad ...)
- TODO: check
+ NOT-FOR-US: Online Nurse Hiring System
CVE-2024-55085 (GetSimple CMS CE 3.3.19 suffers from arbitrary code execution in the t ...)
- TODO: check
+ NOT-FOR-US: GetSimple CMS CE
CVE-2024-54125 (Improper authorization in handler for custom URL scheme issue in "Shon ...)
TODO: check
CVE-2024-52949 (iptraf-ng 1.2.1 has a stack-based buffer overflow.)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/31232a16e4a15b854dc6633d4bb1f968e9647722
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/31232a16e4a15b854dc6633d4bb1f968e9647722
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241217/715833a1/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list