[Git][security-tracker-team/security-tracker][master] automatic update

Sat Jun 1 09:12:33 BST 2024


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
be893c27 by security tracker role at 2024-06-01T08:12:15+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,47 @@
+CVE-2024-5501 (The Supreme Modules Lite \u2013 Divi Theme, Extra Theme and Divi Build ...)
+	TODO: check
+CVE-2024-5138 (The snapctl component within snapd allows a confined snap to interact  ...)
+	TODO: check
+CVE-2024-4958 (The User Registration \u2013 Custom Registration Form, Login Form, and ...)
+	TODO: check
+CVE-2024-4711 (The WordPress Infinite Scroll \u2013 Ajax Load More plugin for WordPre ...)
+	TODO: check
+CVE-2024-4342 (The Royal Elementor Addons and Templates plugin for WordPress is vulne ...)
+	TODO: check
+CVE-2024-4087 (The Royal Elementor Addons and Templates plugin for WordPress is vulne ...)
+	TODO: check
+CVE-2024-3565 (The Content Blocks (Custom Post Widget) plugin for WordPress is vulner ...)
+	TODO: check
+CVE-2024-3564 (The Content Blocks (Custom Post Widget) plugin for WordPress is vulner ...)
+	TODO: check
+CVE-2024-34009 (Insufficient checks whether ReCAPTCHA was enabled made it possible to  ...)
+	TODO: check
+CVE-2024-34008 (Actions in the admin management of analytics models did not include th ...)
+	TODO: check
+CVE-2024-34007 (The logout option within MFA did not include the necessary token to av ...)
+	TODO: check
+CVE-2024-34006 (The site log report required additional encoding of event descriptions ...)
+	TODO: check
+CVE-2024-34005 (In a shared hosting environment that has been misconfigured to allow a ...)
+	TODO: check
+CVE-2024-34004 (In a shared hosting environment that has been misconfigured to allow a ...)
+	TODO: check
+CVE-2024-34003 (In a shared hosting environment that has been misconfigured to allow a ...)
+	TODO: check
+CVE-2024-34002 (In a shared hosting environment that has been misconfigured to allow a ...)
+	TODO: check
+CVE-2024-34001 (Actions in the admin preset tool did not include the necessary token t ...)
+	TODO: check
+CVE-2024-2933 (The Page Builder Gutenberg Blocks \u2013 CoBlocks plugin for WordPress ...)
+	TODO: check
+CVE-2024-2506 (The Popup Builder \u2013 Create highly converting, mobile friendly mar ...)
+	TODO: check
+CVE-2024-2295 (The Contact Form Manager plugin for WordPress is vulnerable to Stored  ...)
+	TODO: check
+CVE-2024-1324 (The QQWorld Auto Save Images plugin for WordPress is vulnerable to una ...)
+	TODO: check
+CVE-2023-6382 (The Master Slider \u2013 Responsive Touch Slider plugin for WordPress  ...)
+	TODO: check
 CVE-2024-5565 (The Vanna library uses a prompt function to present the user with visu ...)
 	TODO: check
 CVE-2024-5564 (A vulnerability was found in libndp. This flaw allows a local maliciou ...)
@@ -2161,7 +2205,7 @@ CVE-2024-4563 (The Progress MOVEit Automation configuration export function prio
 CVE-2024-4454 (WithSecure Elements Endpoint Protection Link Following Local Privilege ...)
 	NOT-FOR-US: WithSecure Elements Endpoint Protection
 CVE-2024-4453 (GStreamer EXIF Metadata Parsing Integer Overflow Remote Code Execution ...)
-	{DLA-3824-1}
+	{DSA-5702-1 DLA-3824-1}
 	- gst-plugins-base1.0 1.24.3-1
 	- gst-plugins-base0.10 <removed>
 	NOTE: https://gstreamer.freedesktop.org/security/sa-2024-0002.html



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/be893c27ba2e9550ccaeefc3bffe73426062e220

-- 
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/be893c27ba2e9550ccaeefc3bffe73426062e220
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240601/b9224176/attachment.htm>
