[Git][security-tracker-team/security-tracker][master] Process more NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Mar 22 08:28:18 GMT 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
8d06da28 by Salvatore Bonaccorso at 2024-03-22T09:27:50+01:00
Process more NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -87,13 +87,13 @@ CVE-2024-28441 (File Upload vulnerability in magicflue v.7.0 and before allows a
 CVE-2024-28171 (It is possible to perform a path traversal attack and write outside of ...)
 	NOT-FOR-US: Delta Electronics
 CVE-2024-28119 (Grav is an open-source, flat-file content management system. Prior to  ...)
-	TODO: check
+	NOT-FOR-US: Grav CMS
 CVE-2024-28118 (Grav is an open-source, flat-file content management system. Prior to  ...)
-	TODO: check
+	NOT-FOR-US: Grav CMS
 CVE-2024-28117 (Grav is an open-source, flat-file content management system. Prior to  ...)
-	TODO: check
+	NOT-FOR-US: Grav CMS
 CVE-2024-28116 (Grav is an open-source, flat-file content management system. Grav CMS  ...)
-	TODO: check
+	NOT-FOR-US: Grav CMS
 CVE-2024-28045 (Improper neutralization of input within the affected product could lea ...)
 	NOT-FOR-US: Delta Electronics
 CVE-2024-28040 (SQL injection vulnerability exists in GetDIAE_astListParameters.)
@@ -101,7 +101,7 @@ CVE-2024-28040 (SQL injection vulnerability exists in GetDIAE_astListParameters.
 CVE-2024-28029 (Privileges are not fully verified server-side, which can be abused by  ...)
 	NOT-FOR-US: Delta Electronics
 CVE-2024-27921 (Grav is an open-source, flat-file content management system. A file up ...)
-	TODO: check
+	NOT-FOR-US: Grav CMS
 CVE-2024-26557 (Codiad v2.8.4 allows reflected XSS via the components/market/dialog.ph ...)
 	TODO: check
 CVE-2024-25937 (SQL injection vulnerability exists in the script DIAE_tagHandler.ashx.)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8d06da2838a9e9b385e671ad61f0e5b99c5e7222

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8d06da2838a9e9b385e671ad61f0e5b99c5e7222
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240322/62066626/attachment.htm>

More information about the debian-security-tracker-commits mailing list