[Git][security-tracker-team/security-tracker][master] Process some NFUs

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1e00587f by Salvatore Bonaccorso at 2024-05-09T22:22:54+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,31 +1,31 @@
 CVE-2024-4685 (A vulnerability was found in Campcodes Complete Web-Based School Manag ...)
-	TODO: check
+	NOT-FOR-US: Campcodes Complete Web-Based School Management System
 CVE-2024-4684 (A vulnerability was found in Campcodes Complete Web-Based School Manag ...)
-	TODO: check
+	NOT-FOR-US: Campcodes Complete Web-Based School Management System
 CVE-2024-4683 (A vulnerability was found in Campcodes Complete Web-Based School Manag ...)
-	TODO: check
+	NOT-FOR-US: Campcodes Complete Web-Based School Management System
 CVE-2024-4682 (A vulnerability has been found in Campcodes Complete Web-Based School  ...)
-	TODO: check
+	NOT-FOR-US: Campcodes Complete Web-Based School Management System
 CVE-2024-4681 (A vulnerability, which was classified as critical, was found in Campco ...)
-	TODO: check
+	NOT-FOR-US: Campcodes Legal Case Management System
 CVE-2024-4678 (A vulnerability was found in Campcodes Complete Web-Based School Manag ...)
-	TODO: check
+	NOT-FOR-US: Campcodes Complete Web-Based School Management System
 CVE-2024-4677 (A vulnerability was found in Campcodes Complete Web-Based School Manag ...)
-	TODO: check
+	NOT-FOR-US: Campcodes Complete Web-Based School Management System
 CVE-2024-4676 (A vulnerability was found in Campcodes Complete Web-Based School Manag ...)
-	TODO: check
+	NOT-FOR-US: Campcodes Complete Web-Based School Management System
 CVE-2024-4675 (A vulnerability has been found in Campcodes Complete Web-Based School  ...)
-	TODO: check
+	NOT-FOR-US: Campcodes Complete Web-Based School Management System
 CVE-2024-4674 (A vulnerability, which was classified as problematic, was found in Cam ...)
-	TODO: check
+	NOT-FOR-US: Campcodes Complete Web-Based School Management System
 CVE-2024-4673 (A vulnerability, which was classified as problematic, has been found i ...)
-	TODO: check
+	NOT-FOR-US: Campcodes Complete Web-Based School Management System
 CVE-2024-4614
 	REJECTED
 CVE-2024-4606 (Deserialization of Untrusted Data vulnerability in BdThemes Ultimate S ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-4605 (The Breakdance plugin for WordPress is vulnerable to Remote Code Execu ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-4579
 	REJECTED
 CVE-2024-4572
@@ -33,17 +33,17 @@ CVE-2024-4572
 CVE-2024-4571
 	REJECTED
 CVE-2024-4567 (The Themify Shortcodes plugin for WordPress is vulnerable to Stored Cr ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-4545 (All versions of EnterpriseDB Postgres Advanced Server (EPAS) from 15.0 ...)
 	TODO: check
 CVE-2024-4542 (The WP Shortcodes Plugin \u2014 Shortcodes Ultimate plugin for WordPre ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-4463 (The Squelch Tabs and Accordions Shortcodes plugin for WordPress is vul ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-4446 (The Content Views \u2013 Post Grid & Filter, Recent Posts, Category Po ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-4441 (The XML Sitemap & Google News plugin for WordPress is vulnerable to Lo ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-4425 (The access control inCemiPark software stores integration (e.g. FTP or ...)
 	TODO: check
 CVE-2024-4424 (The access control inCemiPark software does not properly validate user ...)
@@ -51,15 +51,15 @@ CVE-2024-4424 (The access control inCemiPark software does not properly validate
 CVE-2024-4423 (The access control inCemiPark software does not properly validate user ...)
 	TODO: check
 CVE-2024-4411 (The Mihdan: Yandex Turbo Feed plugin for WordPress is vulnerable to St ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-4397 (The LearnPress \u2013 WordPress LMS Plugin plugin for WordPress is vul ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-4386 (The Gallery Block (Meow Gallery) plugin for WordPress is vulnerable to ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-4383 (The Simple Membership plugin for WordPress is vulnerable to Stored Cro ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-4339 (The Prime Slider \u2013 Addons For Elementor (Revolution of a slider,  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-4335 (The Rank Math SEO with AI Best SEO Tools plugin for WordPress is vulne ...)
 	TODO: check
 CVE-2024-4316 (The EmbedPress \u2013 Embed PDF, Google Docs, Vimeo, Wistia, Embed You ...)
@@ -347,11 +347,11 @@ CVE-2024-29158 (HDF5 through 1.14.3 contains a stack buffer overflow in H5FL_arr
 CVE-2024-29157 (HDF5 through 1.14.3 contains a heap buffer overflow in H5HG_read, resu ...)
 	TODO: check
 CVE-2024-28075 (The SolarWinds Access Rights Manager was susceptible to Remote Code Ex ...)
-	TODO: check
+	NOT-FOR-US: SolarWinds
 CVE-2024-24157 (Gnuboard g6 / https://github.com/gnuboard/g6 commit c2cc1f5069e00491ea ...)
 	TODO: check
 CVE-2024-23473 (The SolarWinds Access Rights Manager was found to contain a hard-coded ...)
-	TODO: check
+	NOT-FOR-US: SolarWinds
 CVE-2024-22910 (Cross Site Scripting (XSS) vulnerability in CrushFTP v.10.6.0 and v.10 ...)
 	TODO: check
 CVE-2024-1693 (The SP Project & Document Manager plugin for WordPress is vulnerable t ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1e00587f30f35b6dbf754857f0b0f6777c914c9b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1e00587f30f35b6dbf754857f0b0f6777c914c9b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240509/bed5b564/attachment.htm>