[Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Fri Oct 4 11:37:24 BST 2024
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
8930421a by Moritz Muehlenhoff at 2024-10-04T12:36:35+02:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,69 +1,69 @@
CVE-2024-9445 (The Display Medium Posts plugin for WordPress is vulnerable to Stored ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-9435 (The ShiftController Employee Shift Scheduling plugin for WordPress is ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-9421 (The Login Logout Shortcode plugin for WordPress is vulnerable to Store ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-9384 (The Quantity Dynamic Pricing & Bulk Discounts for WooCommerce plugin f ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-9375 (The WordPress Captcha Plugin by Captcha Bank plugin for WordPress is v ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-9372 (The WP Blocks Hub plugin for WordPress is vulnerable to Stored Cross-S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-9368 (The Aggregator Advanced Settings plugin for WordPress is vulnerable to ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-9353 (The Popularis Extra plugin for WordPress is vulnerable to Reflected Cr ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-9349 (The Auto Amazon Links \u2013 Amazon Associates Affiliate Plugin plugin ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-9345 (The Product Delivery Date for WooCommerce \u2013 Lite plugin for WordP ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-9306 (The WP Booking Calendar plugin for WordPress is vulnerable to Stored C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-9242 (The Memberful \u2013 Membership Plugin plugin for WordPress is vulnera ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-9237 (The Fish and Ships \u2013 Most flexible shipping table rate. A WooComm ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-9204 (The Smart Custom 404 Error Page plugin for WordPress is vulnerable to ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-8804 (The Code Embed plugin for WordPress is vulnerable to Stored Cross-Site ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-8802 (The Clio Grow plugin for WordPress is vulnerable to Reflected Cross-Si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-8520 (The Ultimate Member \u2013 User Profile, Registration, Login, Member D ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-8519 (The Ultimate Member \u2013 User Profile, Registration, Login, Member D ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-6444 (No proper validation of the length of user input in olcp_ind_handler i ...)
- TODO: check
+ NOT-FOR-US: Zephyr, different from src:zephyr
CVE-2024-6443 (In utf8_trunc in zephyr/lib/utils/utf8.c, last_byte_p can point to one ...)
- TODO: check
+ NOT-FOR-US: Zephyr, different from src:zephyr
CVE-2024-6442 (In ascs_cp_rsp_add in /subsys/bluetooth/audio/ascs.c, an unchecked tai ...)
- TODO: check
+ NOT-FOR-US: Zephyr, different from src:zephyr
CVE-2024-47855 (util/JSONTokener.java in JSON-lib before 3.1.0 mishandles an unbalance ...)
TODO: check
CVE-2024-47854 (A vulnerability was discovered in Veritas Data Insight before 7.1. It ...)
- TODO: check
+ NOT-FOR-US: Veritas Data Insight
CVE-2024-47850 (CUPS cups-browsed before 2.5b1 will send an HTTP POST request to an ar ...)
TODO: check
CVE-2024-46658 (Syrotech SY-GOPON-8OLT-L3 v1.6.0_240629 was discovered to contain an a ...)
- TODO: check
+ NOT-FOR-US: Syrotech
CVE-2024-45367 (The web server for ONS-S8 - Spectra Aggregation Switch includes an inc ...)
- TODO: check
+ NOT-FOR-US: ONS-S8 - Spectra Aggregation Switch
CVE-2024-44207 (This issue was addressed with improved checks. This issue is fixed in ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2024-44204 (A logic issue was addressed with improved validation. This issue is fi ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2024-43699 (Delta Electronics DIAEnergie is vulnerable to an SQL injection in the ...)
- TODO: check
+ NOT-FOR-US: Delta Electronics
CVE-2024-42417 (Delta Electronics DIAEnergie is vulnerable to an SQL injection in the ...)
- TODO: check
+ NOT-FOR-US: Delta Electronics
CVE-2024-41925 (The web service for ONS-S8 - Spectra Aggregation Switch includes funct ...)
- TODO: check
+ NOT-FOR-US: ONS-S8 - Spectra Aggregation Switch
CVE-2024-9460 (A vulnerability was found in Codezips Online Shopping Portal 1.0. It h ...)
NOT-FOR-US: Codezips Online Shopping Portal
CVE-2024-9313 (Authd PAM module before version 0.3.5 can allow broker-managed users t ...)
- TODO: check
+ NOT-FOR-US: Authd
CVE-2024-9266 (URL Redirection to Untrusted Site ('Open Redirect') vulnerability in E ...)
TODO: check
CVE-2024-9100 (Zohocorp ManageEngine Analytics Plus versions before 5410 andZoho Anal ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8930421af064b02185ecd5db1057db891474c1c6
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8930421af064b02185ecd5db1057db891474c1c6
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241004/e4f67e54/attachment.htm>
More information about the debian-security-tracker-commits
mailing list