[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Jun 18 09:12:10 BST 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
adb4fafb by security tracker role at 2024-06-18T08:11:50+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,65 @@
+CVE-2024-6084 (A vulnerability has been found in itsourcecode Pool of Bethesda Online ...)
+	TODO: check
+CVE-2024-6083 (A vulnerability, which was classified as critical, was found in PHPVib ...)
+	TODO: check
+CVE-2024-6082 (A vulnerability, which was classified as problematic, has been found i ...)
+	TODO: check
+CVE-2024-6080 (A vulnerability classified as critical was found in Intelbras InContro ...)
+	TODO: check
+CVE-2024-6067 (A vulnerability classified as critical was found in SourceCodester Mus ...)
+	TODO: check
+CVE-2024-6066 (A vulnerability classified as critical has been found in SourceCodeste ...)
+	TODO: check
+CVE-2024-6065 (A vulnerability was found in itsourcecode Bakery Online Ordering Syste ...)
+	TODO: check
+CVE-2024-6064 (A vulnerability was found in GPAC 2.5-DEV-rev228-g11067ea92-master. It ...)
+	TODO: check
+CVE-2024-6063 (A vulnerability was found in GPAC 2.5-DEV-rev228-g11067ea92-master. It ...)
+	TODO: check
+CVE-2024-5860 (The Tickera \u2013 WordPress Event Ticketing plugin for WordPress is v ...)
+	TODO: check
+CVE-2024-5541 (The Ibtana \u2013 WordPress Website Builder plugin for WordPress is vu ...)
+	TODO: check
+CVE-2024-5533 (The Divi theme for WordPress is vulnerable to Stored Cross-Site Script ...)
+	TODO: check
+CVE-2024-5172 (The Expert Invoice WordPress plugin through 1.0.2 does not sanitise an ...)
+	TODO: check
+CVE-2024-4375 (The Master Slider \u2013 Responsive Touch Slider plugin for WordPress  ...)
+	TODO: check
+CVE-2024-4094 (The Simple Share Buttons Adder WordPress plugin before 8.5.1 does not  ...)
+	TODO: check
+CVE-2024-3276 (The Lightbox & Modal Popup WordPress Plugin  WordPress plugin before 2 ...)
+	TODO: check
+CVE-2024-37828 (A stored cross-site scripting (XSS) in Vermeg Agile Reporter v23.2.1 a ...)
+	TODO: check
+CVE-2024-37798 (Cross-site scripting (XSS) vulnerability in search-appointment.php in  ...)
+	TODO: check
+CVE-2024-37081 (The vCenter Server contains multiple local privilege escalation vulner ...)
+	TODO: check
+CVE-2024-37080 (vCenter Server contains a heap-overflow vulnerability in the implement ...)
+	TODO: check
+CVE-2024-37079 (vCenter Server contains a heap-overflow vulnerability in the implement ...)
+	TODO: check
+CVE-2024-34833 (Sourcecodester Payroll Management System v1.0 is vulnerable to File Up ...)
+	TODO: check
+CVE-2024-34024 (Observable response discrepancy issue exists in ID Link Manager and FU ...)
+	TODO: check
+CVE-2024-33622 (Missing authentication for critical function vulnerability exists in I ...)
+	TODO: check
+CVE-2024-33620 (Absolute path traversal vulnerability exists in ID Link Manager and FU ...)
+	TODO: check
+CVE-2024-1634 (The Scheduling Plugin \u2013 Online Booking for WordPress plugin for W ...)
+	TODO: check
+CVE-2024-0845 (The PDF Viewer for Elementor plugin for WordPress is vulnerable to Sto ...)
+	TODO: check
+CVE-2024-0066 (Johan Fagerstr\xf6m, member of the AXIS OS Bug Bounty Program, has fou ...)
+	TODO: check
+CVE-2023-5527 (The Business Directory Plugin plugin for WordPress is vulnerable to CS ...)
+	TODO: check
+CVE-2023-37058 (Insecure Permissions vulnerability in JLINK Unionman Technology Co. Lt ...)
+	TODO: check
+CVE-2023-37057 (An issue in JLINK Unionman Technology Co. Ltd Jlink AX1800 v.1.0 allow ...)
+	TODO: check
 CVE-2024-6062 (A vulnerability was found in GPAC 2.5-DEV-rev228-g11067ea92-master and ...)
 	- gpac <unfixed>
 	NOTE: https://github.com/gpac/gpac/issues/2872
@@ -321912,7 +321974,7 @@ CVE-2020-10138 (Acronis Cyber Backup 12.5 and Cyber Protect 15 include an OpenSS
 	NOT-FOR-US: Acronis
 CVE-2020-10137 (Z-Wave devices based on Silicon Labs 700 series chipsets using S2 do n ...)
 	NOT-FOR-US: Z-Wave devices
-CVE-2020-10136 (Multiple products that implement the IP Encapsulation within IP standa ...)
+CVE-2020-10136 (IP-in-IP protocol specifies IP Encapsulation within IP standard (RFC 2 ...)
 	NOT-FOR-US: Cisco
 CVE-2020-10135 (Legacy pairing and secure-connections pairing authentication in Blueto ...)
 	NOTE: Bluetooth protocol issue



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/adb4fafb0053344432a5bccfb7dbe264b0539ff1

-- 
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/adb4fafb0053344432a5bccfb7dbe264b0539ff1
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240618/5d29d044/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list