[Git][security-tracker-team/security-tracker][master] Process some NFUs

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1e0fc1b2 by Salvatore Bonaccorso at 2024-12-24T21:59:36+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,5 +1,5 @@
 CVE-2024-8721 (The Tracking Code Manager plugin for WordPress is vulnerable to Stored ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-53163 (In the Linux kernel, the following vulnerability has been resolved:  c ...)
 	- linux 6.12.3-1
 	[bookworm] - linux <not-affected> (Vulnerable code not present)
@@ -75,9 +75,9 @@ CVE-2024-53145 (In the Linux kernel, the following vulnerability has been resolv
 CVE-2024-43441 (Authentication Bypass by Assumed-Immutable Data vulnerability in Apach ...)
 	TODO: check
 CVE-2024-12881 (The PlugVersions \u2013 Easily rollback to previous versions of your p ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-12850 (The Database Backup and check Tables Automated With Scheduler 2024 plu ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-12746 (A SQL injection in the Amazon Redshift ODBC Driver v2.1.5.0 (Windows o ...)
 	TODO: check
 CVE-2024-12745 (A SQL injection in the Amazon Redshift Python Connector v2.1.4 allows  ...)
@@ -85,21 +85,21 @@ CVE-2024-12745 (A SQL injection in the Amazon Redshift Python Connector v2.1.4 a
 CVE-2024-12744 (A SQL injection in the Amazon Redshift JDBC Driver in v2.1.0.31 allows ...)
 	TODO: check
 CVE-2024-12468 (The WP Datepicker plugin for WordPress is vulnerable to Reflected Cros ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-12268 (The Responsive Blocks \u2013 WordPress Gutenberg Blocks plugin for Wor ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-12103 (The Content No Cache: prevent specific content from being cached plugi ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-12031 (The Advanced Floating Content plugin for WordPress is vulnerable to SQ ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-11896 (The Text Prompter \u2013 Unlimited chatgpt text prompts for openai tas ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-11726 (The Appointment Booking Calendar Plugin and Scheduling Plugin \u2013 B ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-10856 (The Booking Calendar WpDevArt plugin is vulnerable to time-based, blin ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-10584 (The DirectoryPress \u2013 Business Directory And Classified Ad Listing ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-9427 (A vulnerability in Koji was found. An unsanitized input allows for an  ...)
 	TODO: check
 CVE-2024-53961 (ColdFusion versions 2023.11, 2021.17 and earlier are affected by an Im ...)
@@ -147,7 +147,7 @@ CVE-2024-12034 (The Advanced Google reCAPTCHA plugin for WordPress is vulnerable
 CVE-2024-11885 (The NinjaTeam Chat for Telegram plugin for WordPress is vulnerable to  ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2018-25106 (A vulnerability, which was classified as critical, has been found in w ...)
-	TODO: check
+	NOT-FOR-US: WordPress theme
 CVE-2024-56364 (SimpleXLSX is software for parsing and retrieving data from Excel XLSx ...)
 	NOT-FOR-US: SimpleXLSX
 CVE-2024-56363 (APTRS (Automated Penetration Testing Reporting System) is a Python and ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1e0fc1b2ee423d75da2e6356eacab952d39c1f76

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1e0fc1b2ee423d75da2e6356eacab952d39c1f76
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241224/143ed884/attachment-0001.htm>