[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff (@jmm) jmm at debian.org
Wed May 22 09:24:17 BST 2024



Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
6d16cff1 by Moritz Muehlenhoff at 2024-05-22T10:23:47+02:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,79 +1,79 @@
 CVE-2024-5190
 	REJECTED
 CVE-2024-5147 (The WPZOOM Addons for Elementor (Templates, Widgets) plugin for WordPr ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-5092 (The Elegant Addons for elementor plugin for WordPress is vulnerable to ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-5040 (There are multiple ways in  LCDS LAquis SCADA for an attacker to acces ...)
-	TODO: check
+	NOT-FOR-US: LCDS LAquis SCADA
 CVE-2024-4980 (The WPKoi Templates for Elementor plugin for WordPress is vulnerable t ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-4971 (The LearnPress \u2013 WordPress LMS Plugin plugin for WordPress is vul ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-4443 (The Business Directory Plugin \u2013 Easy Listing Directories for Word ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-4157 (The Contact Form Plugin by Fluent Forms for Quiz, Survey, and Drag & D ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-3927 (The Element Pack Elementor Addons (Header Footer, Template Library, Dy ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-3671 (The Print-O-Matic plugin for WordPress is vulnerable to Stored Cross-S ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-3666 (The Opal Estate Pro \u2013 Property Management and Submission plugin f ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-3663 (The WP Scraper plugin for WordPress is vulnerable to unauthorized acce ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-3611 (The Toolbar Extras for Elementor & More \u2013 WordPress Admin Bar Enh ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-3519 (The Media Library Assistant plugin for WordPress is vulnerable to Refl ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-3518 (The Media Library Assistant plugin for WordPress is vulnerable to SQL  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-3198 (The WP Font Awesome Share Icons plugin for WordPress is vulnerable to  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-3066 (The Elegant Addons for elementor plugin for WordPress is vulnerable to ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-35220 (@fastify/session is a session plugin for fastify. Requires the @fastif ...)
-	TODO: check
+	NOT-FOR-US: @fastify/session
 CVE-2024-35162 (Path traversal vulnerability exists in Download Plugins and Themes fro ...)
-	TODO: check
+	NOT-FOR-US: @fastify/session
 CVE-2024-32988 ('OfferBox' App for Android versions 2.0.0 to 2.3.17 and 'OfferBox' App ...)
-	TODO: check
+	NOT-FOR-US: OffBox
 CVE-2024-31396 (Code injection vulnerability exists in a-blog cms Ver.3.1.x series ver ...)
-	TODO: check
+	NOT-FOR-US: a-blog cms
 CVE-2024-31395 (Cross-site scripting vulnerability exists in a-blog cms Ver.3.1.x seri ...)
-	TODO: check
+	NOT-FOR-US: a-blog cms
 CVE-2024-31394 (Directory traversal vulnerability exists in a-blog cms Ver.3.1.x serie ...)
-	TODO: check
+	NOT-FOR-US: a-blog cms
 CVE-2024-31340 (TP-Link Tether versions prior to 4.5.13 and TP-Link Tapo versions prio ...)
-	TODO: check
+	NOT-FOR-US: TP-Link
 CVE-2024-30420 (Server-side request forgery (SSRF) vulnerability exists in a-blog cms  ...)
-	TODO: check
+	NOT-FOR-US: a-blog cms
 CVE-2024-30419 (Cross-site scripting vulnerability exists in a-blog cms Ver.3.1.x seri ...)
-	TODO: check
+	NOT-FOR-US: a-blog cms
 CVE-2024-2953 (The LuckyWP Table of Contents plugin for WordPress is vulnerable to St ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-2163 (The Ninja Beaver Add-ons for Beaver Builder plugin for WordPress is vu ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-2119 (The LuckyWP Table of Contents plugin for WordPress is vulnerable to Re ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-2088 (The NextScripts: Social Networks Auto-Poster plugin for WordPress is v ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-21683 (This High severity RCE (Remote Code Execution) vulnerability was intro ...)
-	TODO: check
+	NOT-FOR-US: Atlassian
 CVE-2024-1762 (The NextScripts: Social Networks Auto-Poster plugin for WordPress is v ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-1446 (The NextScripts: Social Networks Auto-Poster plugin for WordPress is v ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-0632 (The Automatic Translator with Google Translate plugin for WordPress is ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-0453 (The AI ChatBot plugin for WordPress is vulnerable to unauthorized modi ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-0452 (The AI ChatBot plugin for WordPress is vulnerable to unauthorized modi ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-0451 (The AI ChatBot plugin for WordPress is vulnerable to unauthorized acce ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-6487 (The LuckyWP Table of Contents plugin for WordPress is vulnerable to St ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-47473 (In the Linux kernel, the following vulnerability has been resolved:  s ...)
 	- linux 5.14.16-1
 	[bullseye] - linux 5.10.84-1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6d16cff173b4ffb0627d4e023d50a062339b7a77

-- 
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6d16cff173b4ffb0627d4e023d50a062339b7a77
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240522/12cd2ab2/attachment.htm>


More information about the debian-security-tracker-commits mailing list