[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Oct 2 09:33:38 BST 2024



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5b614b3e by Salvatore Bonaccorso at 2024-10-02T10:33:19+02:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,49 +1,49 @@
 CVE-2024-9407 (A vulnerability exists in the bind-propagation option of the Dockerfil ...)
 	TODO: check
 CVE-2024-9333 (Permissions bypass in M-Files Connector for Copilot before version 24. ...)
-	TODO: check
+	NOT-FOR-US: M-Files
 CVE-2024-9225 (The SEOPress \u2013 On-site SEO plugin for WordPress is vulnerable to  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-9222 (The Paid Membership Subscriptions \u2013 Effortless Memberships, Recur ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-9210 (The MC4WP: Mailchimp Top Bar plugin for WordPress is vulnerable to Ref ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-9174 (Stored HTML Injection in Social Module in M-Files Hubshare before vers ...)
-	TODO: check
+	NOT-FOR-US: M-Files
 CVE-2024-9172 (The Demo Importer Plus plugin for WordPress is vulnerable to Stored Cr ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-8967 (The PWA \u2014 easy way to Progressive Web App plugin for WordPress is ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-8800 (The RabbitLoader \u2013 Website Speed Optimization for improving Core  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-8254 (The Email Subscribers by Icegram Express \u2013 Email Marketing, Newsl ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-7855 (The WP Hotel Booking plugin for WordPress is vulnerable to arbitrary f ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-7315 (The Migration, Backup, Staging  WordPress plugin before 0.9.106 does n ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-47528 (LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring sy ...)
-	TODO: check
+	NOT-FOR-US: LibreNMS
 CVE-2024-47527 (LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring sy ...)
-	TODO: check
+	NOT-FOR-US: LibreNMS
 CVE-2024-47526 (LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring sy ...)
-	TODO: check
+	NOT-FOR-US: LibreNMS
 CVE-2024-47525 (LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring sy ...)
-	TODO: check
+	NOT-FOR-US: LibreNMS
 CVE-2024-47524 (LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring sy ...)
-	TODO: check
+	NOT-FOR-US: LibreNMS
 CVE-2024-47523 (LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring sy ...)
-	TODO: check
+	NOT-FOR-US: LibreNMS
 CVE-2024-46084 (Scriptcase 9.10.023 and before is vulnerable to Remote Code Execution  ...)
-	TODO: check
+	NOT-FOR-US: Scriptcase
 CVE-2024-46082 (Scriptcase v.9.10.023 and before is vulnerable to Cross Site Scripting ...)
-	TODO: check
+	NOT-FOR-US: Scriptcase
 CVE-2024-46080 (Scriptcase v9.10.023 and before is vulnerable to Remote Code Execution ...)
-	TODO: check
+	NOT-FOR-US: Scriptcase
 CVE-2024-45186 (FileSender before 2.49 allows server-side template injection (SSTI) fo ...)
-	TODO: check
+	NOT-FOR-US: FileSender
 CVE-2024-33662 (Portainer before 2.20.2 improperly uses an encryption algorithm in the ...)
-	TODO: check
+	NOT-FOR-US: Portainer
 CVE-2024-21530 (Versions of the package cocoon before 0.4.0 are vulnerable to Reusing  ...)
 	TODO: check
 CVE-2024-47609 (Tonic is a native gRPC client & server implementation with async/await ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5b614b3ecf70dc88e24edc8765eae62dd8db53e4

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5b614b3ecf70dc88e24edc8765eae62dd8db53e4
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241002/62fea19a/attachment.htm>


More information about the debian-security-tracker-commits mailing list