[Git][security-tracker-team/security-tracker][master] automatic update

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
52b9f51b by security tracker role at 2024-10-02T08:12:19+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,4 +1,52 @@
-CVE-2024-47609
+CVE-2024-9407 (A vulnerability exists in the bind-propagation option of the Dockerfil ...)
+	TODO: check
+CVE-2024-9333 (Permissions bypass in M-Files Connector for Copilot before version 24. ...)
+	TODO: check
+CVE-2024-9225 (The SEOPress \u2013 On-site SEO plugin for WordPress is vulnerable to  ...)
+	TODO: check
+CVE-2024-9222 (The Paid Membership Subscriptions \u2013 Effortless Memberships, Recur ...)
+	TODO: check
+CVE-2024-9210 (The MC4WP: Mailchimp Top Bar plugin for WordPress is vulnerable to Ref ...)
+	TODO: check
+CVE-2024-9174 (Stored HTML Injection in Social Module in M-Files Hubshare before vers ...)
+	TODO: check
+CVE-2024-9172 (The Demo Importer Plus plugin for WordPress is vulnerable to Stored Cr ...)
+	TODO: check
+CVE-2024-8967 (The PWA \u2014 easy way to Progressive Web App plugin for WordPress is ...)
+	TODO: check
+CVE-2024-8800 (The RabbitLoader \u2013 Website Speed Optimization for improving Core  ...)
+	TODO: check
+CVE-2024-8254 (The Email Subscribers by Icegram Express \u2013 Email Marketing, Newsl ...)
+	TODO: check
+CVE-2024-7855 (The WP Hotel Booking plugin for WordPress is vulnerable to arbitrary f ...)
+	TODO: check
+CVE-2024-7315 (The Migration, Backup, Staging  WordPress plugin before 0.9.106 does n ...)
+	TODO: check
+CVE-2024-47528 (LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring sy ...)
+	TODO: check
+CVE-2024-47527 (LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring sy ...)
+	TODO: check
+CVE-2024-47526 (LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring sy ...)
+	TODO: check
+CVE-2024-47525 (LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring sy ...)
+	TODO: check
+CVE-2024-47524 (LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring sy ...)
+	TODO: check
+CVE-2024-47523 (LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring sy ...)
+	TODO: check
+CVE-2024-46084 (Scriptcase 9.10.023 and before is vulnerable to Remote Code Execution  ...)
+	TODO: check
+CVE-2024-46082 (Scriptcase v.9.10.023 and before is vulnerable to Cross Site Scripting ...)
+	TODO: check
+CVE-2024-46080 (Scriptcase v9.10.023 and before is vulnerable to Remote Code Execution ...)
+	TODO: check
+CVE-2024-45186 (FileSender before 2.49 allows server-side template injection (SSTI) fo ...)
+	TODO: check
+CVE-2024-33662 (Portainer before 2.20.2 improperly uses an encryption algorithm in the ...)
+	TODO: check
+CVE-2024-21530 (Versions of the package cocoon before 0.4.0 are vulnerable to Reusing  ...)
+	TODO: check
+CVE-2024-47609 (Tonic is a native gRPC client & server implementation with async/await ...)
 	- rust-tonic <not-affected> (Only affects 0.12.2)
 	NOTE: https://github.com/hyperium/tonic/security/advisories/GHSA-4jwc-w2hc-78qv
 	NOTE: https://github.com/hyperium/tonic/issues/1897



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/52b9f51b0ea5f931f1368ab756775cdd4ade75c2

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/52b9f51b0ea5f931f1368ab756775cdd4ade75c2
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241002/93319124/attachment-0001.htm>