[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Mar 29 20:44:52 GMT 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
82e47499 by Salvatore Bonaccorso at 2024-03-29T21:43:56+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,205 +1,205 @@
CVE-2024-3081 (A vulnerability was found in EasyCorp EasyAdmin up to 4.8.9. It has be ...)
- TODO: check
+ NOT-FOR-US: EasyCorp EasyAdmin
CVE-2024-3078 (A vulnerability was found in Qdrant up to 1.6.1/1.7.4/1.8.2 and classi ...)
TODO: check
CVE-2024-3077 (An malicious BLE device can crash BLE victim device by sending malform ...)
- TODO: check
+ NOT-FOR-US: Zephyr RTOS (unrelated to src:zephyr)
CVE-2024-3061 (The HUSKY \u2013 Products Filter Professional for WooCommerce plugin f ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-31032 (An issue in Huashi Private Cloud CDN Live Streaming Acceleration Serve ...)
- TODO: check
+ NOT-FOR-US: Huashi Private Cloud CDN Live Streaming Acceleration Server hgateway-sixport
CVE-2024-30645 (Tenda AC15V1.0 V15.03.20_multi has a command injection vulnerability v ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-30639 (Tenda F1202 v1.2.0.20(408) has a stack overflow vulnerability in the p ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-30638 (Tenda F1202 v1.2.0.20(408) has a stack overflow vulnerability via the ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-30637 (Tenda F1202 v1.2.0.20(408) has a command injection vulnerablility in t ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-30636 (Tenda F1202 v1.2.0.20(408) has a stack overflow vulnerability via the ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-30635 (Tenda F1202 v1.2.0.20(408) has a stack overflow vulnerability located ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-30634 (Tenda F1202 v1.2.0.20(408) has a stack overflow vulnerability via the ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-30633 (Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the s ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-30632 (Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the s ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-30631 (Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the s ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-30630 (Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the t ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-30629 (Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the l ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-30628 (Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the p ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-30627 (Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the d ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-30626 (Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the s ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-30625 (Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the e ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-30624 (Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the u ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-30623 (Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the p ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-30622 (Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the m ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-30613 (Tenda AC15 v15.03.05.18 has a stack overflow vulnerability in the time ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-30521 (Cross-Site Request Forgery (CSRF) vulnerability in Landingi Landingi L ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30520 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30519 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30518 (Cross-Site Request Forgery (CSRF) vulnerability in ThemeLocation Custo ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30514 (Insertion of Sensitive Information into Log File vulnerability in Paid ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30513 (Authorization Bypass Through User-Controlled Key vulnerability in Meta ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30511 (Insertion of Sensitive Information into Log File vulnerability in Fr\x ...)
- TODO: check
+ NOT-FOR-US: PrestaShop module
CVE-2024-30510 (Unrestricted Upload of File with Dangerous Type vulnerability in Salon ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30508 (Missing Authorization vulnerability in ThimPress WP Hotel Booking.This ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30507 (Authorization Bypass Through User-Controlled Key vulnerability in Molo ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30506 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30505 (Missing Authorization vulnerability in Andy Moyle Church Admin.This is ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30504 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30503 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30502 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30501 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30500 (Unrestricted Upload of File with Dangerous Type vulnerability in CubeW ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30499 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30498 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30497 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30496 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30495 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30494 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30493 (Cross-Site Request Forgery (CSRF) vulnerability in Andy Moyle Church A ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30492 (Improper Limitation of a Pathname to a Restricted Directory ('Path Tra ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30491 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30490 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30488 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30487 (Missing Authorization vulnerability in Sonaar Music MP3 Audio Player f ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30486 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30483 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30482 (Cross-Site Request Forgery (CSRF) vulnerability in Brice CAPOBIANCO Si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30478 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30477 (Missing Authorization vulnerability in Klarna Klarna Payments for WooC ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30469 (Missing Authorization vulnerability in WPExperts Wholesale For WooComm ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30468 (Cross-Site Request Forgery (CSRF) vulnerability in All In One WP Secur ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30463 (Missing Authorization vulnerability in realmag777 BEAR.This issue affe ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30462 (Cross-Site Request Forgery (CSRF) vulnerability in realmag777 HUSKY \u ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30460 (Cross-Site Request Forgery (CSRF) vulnerability in Tumult Inc Tumult H ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30458 (Cross-Site Request Forgery (CSRF) vulnerability in realmag777 WOOCS \u ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30457 (Cross-Site Request Forgery (CSRF) vulnerability in realmag777 WordPres ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30456 (Cross-Site Request Forgery (CSRF) vulnerability in realmag777 WPCS.Thi ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30455 (Cross-Site Request Forgery (CSRF) vulnerability in GamiPress.This issu ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30454 (Cross-Site Request Forgery (CSRF) vulnerability in VeronaLabs WP SMS.T ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30453 (Server-Side Request Forgery (SSRF) vulnerability in Brave Brave Popup ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30452 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30451 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30450 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30449 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30448 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30447 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30446 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30445 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30444 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30443 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30442 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30441 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30440 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30439 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30438 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30437 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30436 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30435 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30434 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30433 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30432 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30431 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30430 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30429 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30428 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30427 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30426 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30425 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30423 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-30247 (NextcloudPi is a ready to use image for Virtual Machines, Raspberry Pi ...)
- TODO: check
+ NOT-FOR-US: NextcloudPi
CVE-2024-30246 (Tuleap is an Open Source Suite to improve management of software devel ...)
- TODO: check
+ NOT-FOR-US: Tuleap
CVE-2024-2970 (The News Wall plugin for WordPress is vulnerable to Cross-Site Request ...)
TODO: check
CVE-2024-2969 (The WP-Eggdrop plugin for WordPress is vulnerable to Cross-Site Reques ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/82e47499b5f85e38b6f971139a84502a87bc59cb
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/82e47499b5f85e38b6f971139a84502a87bc59cb
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240329/de45957e/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list