[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu May 2 09:24:34 BST 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
ac3e1c62 by Salvatore Bonaccorso at 2024-05-02T10:24:12+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,25 +1,25 @@
CVE-2024-4142 (An Improper input validation vulnerability that could potentially lead ...)
TODO: check
CVE-2024-3490 (The WP Recipe Maker plugin for WordPress is vulnerable to Stored Cross ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-3481 (The Counter Box WordPress plugin before 1.2.4 does not have CSRF chec ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-3478 (The Herd Effects WordPress plugin before 5.2.7 does not have CSRF che ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-3477 (The Popup Box WordPress plugin before 2.2.7 does not have CSRF checks ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-3476 (The Side Menu Lite WordPress plugin before 4.2.1 does not have CSRF c ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-3475 (The Sticky Buttons WordPress plugin before 3.2.4 does not have CSRF c ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-3474 (The Wow Skype Buttons WordPress plugin before 4.0.4 does not have CSRF ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-3472 (The Modal Window WordPress plugin before 5.3.10 does not have CSRF ch ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-3471 (The Button Generator WordPress plugin before 3.0 does not have CSRF c ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-3280 (The Follow Us Badges plugin for WordPress is vulnerable to Stored Cros ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-32971 (Apollo Router is a configurable, graph router written in Rust to run a ...)
TODO: check
CVE-2024-32962 (xml-crypto is an xml digital signature and encryption library for Node ...)
@@ -27,7 +27,7 @@ CVE-2024-32962 (xml-crypto is an xml digital signature and encryption library fo
CVE-2024-32882 (Wagtail is an open source content management system built on Django. I ...)
TODO: check
CVE-2024-2405 (The Float menu WordPress plugin before 6.0.1 does not have CSRF check ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2023-51631 (D-Link DIR-X3260 prog.cgi SetUsersSettings Stack-based Buffer Overflow ...)
TODO: check
CVE-2024-33835 (Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the remo ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ac3e1c624d3e4a1a1eb28aeb97a26afd4fe1d0d6
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ac3e1c624d3e4a1a1eb28aeb97a26afd4fe1d0d6
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240502/8c486452/attachment.htm>
More information about the debian-security-tracker-commits
mailing list