[Git][security-tracker-team/security-tracker][master] Process some more NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Mar 21 08:47:31 GMT 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
eff30ec1 by Salvatore Bonaccorso at 2024-03-21T09:47:00+01:00
Process some more NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,7 +1,7 @@
CVE-2024-2754 (A vulnerability classified as critical has been found in SourceCodeste ...)
NOT-FOR-US: SourceCodester Complete E-Commerce Site
CVE-2024-2748 (A Cross Site Request Forgery vulnerability was identified in GitHub En ...)
- TODO: check
+ NOT-FOR-US: GitHub Enterprise Server
CVE-2024-2720 (A vulnerability classified as problematic was found in Campcodes Compl ...)
NOT-FOR-US: Campcodes Complete Online DJ Booking System
CVE-2024-2719 (A vulnerability classified as problematic has been found in Campcodes ...)
@@ -11,13 +11,13 @@ CVE-2024-2718 (A vulnerability was found in Campcodes Complete Online DJ Booking
CVE-2024-2717 (A vulnerability was found in Campcodes Complete Online DJ Booking Syst ...)
NOT-FOR-US: Campcodes Complete Online DJ Booking System
CVE-2024-2469 (An attacker with an Administrator role in GitHub Enterprise Server cou ...)
- TODO: check
+ NOT-FOR-US: GitHub Enterprise Server
CVE-2024-2443 (A command injection vulnerability was identified in GitHub Enterprise ...)
- TODO: check
+ NOT-FOR-US: GitHub Enterprise Server
CVE-2024-2162 (An OS Command Injection vulnerability in Kiloview NDI allows a low-pri ...)
- TODO: check
+ NOT-FOR-US: Kiloview
CVE-2024-2161 (Use of Hard-coded Credentials in Kiloview NDI allows un-authenticated ...)
- TODO: check
+ NOT-FOR-US: Kiloview
CVE-2024-29864 (Distrobox before 1.7.0.1 allows attackers to execute arbitrary code vi ...)
NOT-FOR-US: Distrobox
CVE-2024-29862 (The Kerlink firewall in ChirpStack chirpstack-mqtt-forwarder before 4. ...)
@@ -69,15 +69,15 @@ CVE-2024-28635 (Cross Site Scripting (XSS) vulnerability in SurveyJS Survey Crea
CVE-2024-25294 (An SSRF issue in REBUILD v.3.5 allows a remote attacker to obtain sens ...)
TODO: check
CVE-2024-24050 (Cross Site Scripting (XSS) vulnerability in Sourcecodester Workout Jou ...)
- TODO: check
+ NOT-FOR-US: Sourcecodester Workout Journal App
CVE-2024-22724 (An issue was discovered in osCommerce v4, allows local attackers to by ...)
- TODO: check
+ NOT-FOR-US: osCommerce
CVE-2024-1538 (The File Manager plugin for WordPress is vulnerable to Cross-Site Requ ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-1148 (Weak access control in OpenText PVCS Version Manager allows potential ...)
- TODO: check
+ NOT-FOR-US: OpenText
CVE-2024-1147 (Weak access control in OpenText PVCS Version Manager allows potential ...)
- TODO: check
+ NOT-FOR-US: OpenText
CVE-2023-48903 (Stored Cross-Site Scripting (XSS) vulnerability in tramyardg autoexpre ...)
TODO: check
CVE-2023-48902 (An issue was discovered in tramyardg autoexpress version 1.3.0, allows ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/eff30ec14d097e32c9797ea0f254ccf4daadaa82
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/eff30ec14d097e32c9797ea0f254ccf4daadaa82
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240321/49a64ebd/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list