[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Oct 4 09:11:58 BST 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
fa0c024d by security tracker role at 2024-10-04T08:11:51+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,65 @@
+CVE-2024-9445 (The Display Medium Posts plugin for WordPress is vulnerable to Stored  ...)
+	TODO: check
+CVE-2024-9435 (The ShiftController Employee Shift Scheduling plugin for WordPress is  ...)
+	TODO: check
+CVE-2024-9421 (The Login Logout Shortcode plugin for WordPress is vulnerable to Store ...)
+	TODO: check
+CVE-2024-9384 (The Quantity Dynamic Pricing & Bulk Discounts for WooCommerce plugin f ...)
+	TODO: check
+CVE-2024-9375 (The WordPress Captcha Plugin by Captcha Bank plugin for WordPress is v ...)
+	TODO: check
+CVE-2024-9372 (The WP Blocks Hub plugin for WordPress is vulnerable to Stored Cross-S ...)
+	TODO: check
+CVE-2024-9368 (The Aggregator Advanced Settings plugin for WordPress is vulnerable to ...)
+	TODO: check
+CVE-2024-9353 (The Popularis Extra plugin for WordPress is vulnerable to Reflected Cr ...)
+	TODO: check
+CVE-2024-9349 (The Auto Amazon Links \u2013 Amazon Associates Affiliate Plugin plugin ...)
+	TODO: check
+CVE-2024-9345 (The Product Delivery Date for WooCommerce \u2013 Lite plugin for WordP ...)
+	TODO: check
+CVE-2024-9306 (The WP Booking Calendar plugin for WordPress is vulnerable to Stored C ...)
+	TODO: check
+CVE-2024-9242 (The Memberful \u2013 Membership Plugin plugin for WordPress is vulnera ...)
+	TODO: check
+CVE-2024-9237 (The Fish and Ships \u2013 Most flexible shipping table rate. A WooComm ...)
+	TODO: check
+CVE-2024-9204 (The Smart Custom 404 Error Page plugin for WordPress is vulnerable to  ...)
+	TODO: check
+CVE-2024-8804 (The Code Embed plugin for WordPress is vulnerable to Stored Cross-Site ...)
+	TODO: check
+CVE-2024-8802 (The Clio Grow plugin for WordPress is vulnerable to Reflected Cross-Si ...)
+	TODO: check
+CVE-2024-8520 (The Ultimate Member \u2013 User Profile, Registration, Login, Member D ...)
+	TODO: check
+CVE-2024-8519 (The Ultimate Member \u2013 User Profile, Registration, Login, Member D ...)
+	TODO: check
+CVE-2024-6444 (No proper validation of the length of user input in olcp_ind_handler i ...)
+	TODO: check
+CVE-2024-6443 (In utf8_trunc in zephyr/lib/utils/utf8.c, last_byte_p can point to one ...)
+	TODO: check
+CVE-2024-6442 (In ascs_cp_rsp_add in /subsys/bluetooth/audio/ascs.c, an unchecked tai ...)
+	TODO: check
+CVE-2024-47855 (util/JSONTokener.java in JSON-lib before 3.1.0 mishandles an unbalance ...)
+	TODO: check
+CVE-2024-47854 (A vulnerability was discovered in Veritas Data Insight before 7.1. It  ...)
+	TODO: check
+CVE-2024-47850 (CUPS cups-browsed before 2.5b1 will send an HTTP POST request to an ar ...)
+	TODO: check
+CVE-2024-46658 (Syrotech SY-GOPON-8OLT-L3 v1.6.0_240629 was discovered to contain an a ...)
+	TODO: check
+CVE-2024-45367 (The web server for ONS-S8 - Spectra Aggregation Switch includes an inc ...)
+	TODO: check
+CVE-2024-44207 (This issue was addressed with improved checks. This issue is fixed in  ...)
+	TODO: check
+CVE-2024-44204 (A logic issue was addressed with improved validation. This issue is fi ...)
+	TODO: check
+CVE-2024-43699 (Delta Electronics DIAEnergie is vulnerable to an SQL injection in the  ...)
+	TODO: check
+CVE-2024-42417 (Delta Electronics DIAEnergie is vulnerable to an SQL injection in the  ...)
+	TODO: check
+CVE-2024-41925 (The web service for ONS-S8 - Spectra Aggregation Switch includes funct ...)
+	TODO: check
 CVE-2024-9460 (A vulnerability was found in Codezips Online Shopping Portal 1.0. It h ...)
 	NOT-FOR-US: Codezips Online Shopping Portal
 CVE-2024-9313 (Authd PAM module before version 0.3.5 can allow broker-managed users t ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fa0c024d3b5244ac48e5cc129ec25f6e44cc057d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fa0c024d3b5244ac48e5cc129ec25f6e44cc057d
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241004/0ce7dd84/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list