[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Jul 24 14:09:30 BST 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
778cc6df by Salvatore Bonaccorso at 2024-07-24T15:08:31+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,55 +1,55 @@
 CVE-2024-7027 (The WooCommerce - PDF Vouchers plugin for WordPress is vulnerable to a ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-6930 (The WP Booking Calendar plugin for WordPress is vulnerable to Stored C ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-6836 (The Funnel Builder for WordPress by FunnelKit \u2013 Customize WooComm ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-6756 (The Social Auto Poster plugin for WordPress is vulnerable to arbitrary ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-6755 (The Social Auto Poster plugin for WordPress is vulnerable to unauthori ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-6754 (The Social Auto Poster plugin for WordPress is vulnerable to unauthori ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-6753 (The Social Auto Poster plugin for WordPress is vulnerable to Stored Cr ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-6752 (The Social Auto Poster plugin for WordPress is vulnerable to Stored Cr ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-6751 (The Social Auto Poster plugin for WordPress is vulnerable to Cross-Sit ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-6750 (The Social Auto Poster plugin for WordPress is vulnerable to unauthori ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-6629 (The All-in-One Video Gallery plugin for WordPress is vulnerable to Sto ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-6571 (The Optimize Images ALT Text (alt tag) & names for SEO using AI plugin ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-6553 (The WP Meteor Website Speed Optimization Addon plugin for WordPress is ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-6094 (The WP ULike  WordPress plugin before 4.7.1 does not sanitise and esca ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-5861 (The WP EasyPay \u2013 Square for WordPress plugin for WordPress is vul ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-41656 (Sentry is an error tracking and performance monitoring platform. Start ...)
-	TODO: check
+	NOT-FOR-US: Sentry
 CVE-2024-3454 (An implementation issue in the Connectivity Standards Alliance Matter  ...)
-	TODO: check
+	NOT-FOR-US: connectedhomeip
 CVE-2024-3297 (An issue in the Certificate Authenticated Session Establishment (CASE) ...)
-	TODO: check
+	NOT-FOR-US: Matter
 CVE-2024-3246 (The LiteSpeed Cache plugin for WordPress is vulnerable to Cross-Site R ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-39676 (Exposure of Sensitive Information to an Unauthorized Actor vulnerabili ...)
-	TODO: check
+	NOT-FOR-US: Apache Pinot
 CVE-2024-38176 (An improper restriction of excessive authentication attempts in GroupM ...)
-	TODO: check
+	NOT-FOR-US: GroupMe
 CVE-2024-38164 (An improper access control vulnerability in GroupMe allows an a unauth ...)
-	TODO: check
+	NOT-FOR-US: GroupMe
 CVE-2024-0981 (Okta Browser Plugin versions 6.5.0 through 6.31.0 (Chrome/Edge/Firefox ...)
-	TODO: check
+	NOT-FOR-US: Okta Browser Plugin
 CVE-2023-48362 (XXE in the XML Format Plugin in Apache Drill version 1.19.0 and greate ...)
-	TODO: check
+	NOT-FOR-US: XML Format Plugin in Apache Drill
 CVE-2023-32471 (Dell Edge Gateway BIOS, versions 3200 and 5200, contains an out-of-bou ...)
-	TODO: check
+	NOT-FOR-US: Dell
 CVE-2023-32466 (Dell Edge Gateway BIOS, versions 3200 and 5200, contains an out-of-bou ...)
-	TODO: check
+	NOT-FOR-US: Dell
 CVE-2024-7014 (EvilVideo vulnerability allows sending malicious apps disguised as vid ...)
 	NOT-FOR-US: Telegram for Android
 CVE-2024-6783 (A vulnerability has been discovered in Vue, that allows an attacker to ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/778cc6dfd3f1340ec8046e54d864665afedc87f6

-- 
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/778cc6dfd3f1340ec8046e54d864665afedc87f6
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240724/9792d832/attachment.htm>

More information about the debian-security-tracker-commits mailing list