[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri May 3 21:32:42 BST 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
78645aae by Salvatore Bonaccorso at 2024-05-03T22:31:58+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,21 +1,21 @@
CVE-2024-4466 (SQL injection vulnerability in Gescen on the centrosdigitales.net plat ...)
- TODO: check
+ NOT-FOR-US: Gescen
CVE-2024-4461 (Unquoted path or search item vulnerability in SugarSync versions prior ...)
- TODO: check
+ NOT-FOR-US: SugarSync
CVE-2024-4439 (WordPress Core is vulnerable to Stored Cross-Site Scripting via user d ...)
TODO: check
CVE-2024-4433 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-4406 (Xiaomi Pro 13 GetApps integral-dialog-page Cross-Site Scripting Remote ...)
- TODO: check
+ NOT-FOR-US: Xiaomi
CVE-2024-4405 (Xiaomi Pro 13 mimarket manual-upgrade Cross-Site Scripting Remote Code ...)
- TODO: check
+ NOT-FOR-US: Xiaomi
CVE-2024-4334 (The Supreme Modules Lite \u2013 Divi Theme, Extra Theme and Divi Build ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-4324 (The WP Video Lightbox plugin for WordPress is vulnerable to Stored Cro ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-4265 (The Master Addons \u2013 Free Widgets, Hover Effects, Toggle, Conditio ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-4216 (pgAdmin <= 8.5 is affected by XSS vulnerability in /settings/store API ...)
TODO: check
CVE-2024-4215 (pgAdmin <= 8.5 is affected by a multi-factor authentication bypass vul ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/78645aaef4e28bd857607700ff7601abbb7d52b6
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/78645aaef4e28bd857607700ff7601abbb7d52b6
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240503/e72ab74e/attachment.htm>
More information about the debian-security-tracker-commits
mailing list