[Git][security-tracker-team/security-tracker][master] Update notes for some rejected lunary-ai/lunary CVEs

Sun Jun 9 08:08:25 BST 2024


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
62f74308 by Salvatore Bonaccorso at 2024-06-09T09:07:32+02:00
Update notes for some rejected lunary-ai/lunary CVEs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -520,7 +520,6 @@ CVE-2024-5133 (In lunary-ai/lunary version 1.2.4, an account takeover vulnerabil
 	NOT-FOR-US: lunary-ai/lunary
 CVE-2024-5132
 	REJECTED
-	NOT-FOR-US: lunary-ai/lunary
 CVE-2024-5131 (An Improper Access Control vulnerability exists in the lunary-ai/lunar ...)
 	NOT-FOR-US: lunary-ai/lunary
 CVE-2024-5130 (An Incorrect Authorization vulnerability exists in lunary-ai/lunary ve ...)
@@ -3829,7 +3828,6 @@ CVE-2024-4261 (The Responsive Contact Form Builder & Lead Generation Plugin plug
 	NOT-FOR-US: WordPress plugin
 CVE-2024-4153
 	REJECTED
-	NOT-FOR-US: lunary-ai/lunary
 CVE-2024-3926 (The Element Pack Elementor Addons (Header Footer, Template Library, Dy ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2024-3495 (The Country State City Dropdown CF7 plugin for WordPress is vulnerable ...)
@@ -19358,7 +19356,6 @@ CVE-2024-1666 (In lunary-ai/lunary version 1.0.0, an authorization flaw exists t
 	NOT-FOR-US: lunary-ai/lunary
 CVE-2024-1665
 	REJECTED
-	NOT-FOR-US: lunary-ai/lunary
 CVE-2024-1646 (parisneo/lollms-webui is vulnerable to authentication bypass due to in ...)
 	NOT-FOR-US: lollms-webui
 CVE-2024-1626 (An Insecure Direct Object Reference (IDOR) vulnerability exists in the ...)
@@ -20709,7 +20706,6 @@ CVE-2024-1600 (A Local File Inclusion (LFI) vulnerability exists in the parisneo
 	NOT-FOR-US: parisneo/lollms-webui
 CVE-2024-1599
 	REJECTED
-	NOT-FOR-US: lunary-ai/lunary
 CVE-2024-1520 (An OS Command Injection vulnerability exists in the '/open_code_folder ...)
 	NOT-FOR-US: parisneo/lollms-webui
 CVE-2024-1511 (The parisneo/lollms-webui repository is susceptible to a path traversa ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/62f74308c542fe98b1d469473a887ca8fba0d9c1

-- 
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/62f74308c542fe98b1d469473a887ca8fba0d9c1
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240609/3daec047/attachment-0001.htm>
