[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sat Oct 5 21:12:20 BST 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
b69ba8e3 by security tracker role at 2024-10-05T20:12:13+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,143 @@
+CVE-2024-9536 (A vulnerability was found in ESAFENET CDG V5. It has been rated as cri ...)
+ TODO: check
+CVE-2024-9535 (A vulnerability was found in D-Link DIR-605L 2.13B01 BETA. It has been ...)
+ TODO: check
+CVE-2024-9534 (A vulnerability was found in D-Link DIR-605L 2.13B01 BETA. It has been ...)
+ TODO: check
+CVE-2024-9533 (A vulnerability was found in D-Link DIR-605L 2.13B01 BETA and classifi ...)
+ TODO: check
+CVE-2024-9417 (The Hash Form \u2013 Drag & Drop Form Builder plugin for WordPress is ...)
+ TODO: check
+CVE-2024-9314 (The Rank Math SEO \u2013 AI SEO Tools to Dominate SEO Rankings plugin ...)
+ TODO: check
+CVE-2024-9161 (The Rank Math SEO \u2013 AI SEO Tools to Dominate SEO Rankings plugin ...)
+ TODO: check
+CVE-2024-9146 (Improper Limitation of a Pathname to a Restricted Directory ('Path Tra ...)
+ TODO: check
+CVE-2024-47647 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47646 (URL Redirection to Untrusted Site ('Open Redirect') vulnerability in P ...)
+ TODO: check
+CVE-2024-47644 (Cross-Site Request Forgery (CSRF) vulnerability in Copyscape / Indigo ...)
+ TODO: check
+CVE-2024-47643 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47642 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47639 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47638 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47635 (Cross-Site Request Forgery (CSRF) vulnerability in TinyPNG.This issue ...)
+ TODO: check
+CVE-2024-47633 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47632 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47631 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47630 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47629 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47628 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47627 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47626 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47625 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47624 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47623 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47622 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47621 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47395 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47394 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47393 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47392 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47391 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47390 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47389 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47388 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47387 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47386 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47385 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47384 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47383 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47382 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47381 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47380 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47379 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47378 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47377 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47376 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47375 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47374 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47373 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47372 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47371 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47370 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47369 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+ TODO: check
+CVE-2024-47324 (Improper Limitation of a Pathname to a Restricted Directory ('Path Tra ...)
+ TODO: check
+CVE-2024-47323 (Improper Limitation of a Pathname to a Restricted Directory ('Path Tra ...)
+ TODO: check
+CVE-2024-47319 (Unrestricted Upload of File with Dangerous Type vulnerability in Bit A ...)
+ TODO: check
+CVE-2024-47316 (Authorization Bypass Through User-Controlled Key vulnerability in Salo ...)
+ TODO: check
+CVE-2024-47309 (Improper Limitation of a Pathname to a Restricted Directory ('Path Tra ...)
+ TODO: check
+CVE-2024-44034 (Improper Limitation of a Pathname to a Restricted Directory ('Path Tra ...)
+ TODO: check
+CVE-2024-44023 (Improper Limitation of a Pathname to a Restricted Directory ('Path Tra ...)
+ TODO: check
+CVE-2024-44018 (Improper Limitation of a Pathname to a Restricted Directory ('Path Tra ...)
+ TODO: check
+CVE-2024-44016 (Improper Limitation of a Pathname to a Restricted Directory ('Path Tra ...)
+ TODO: check
+CVE-2024-44015 (Improper Limitation of a Pathname to a Restricted Directory ('Path Tra ...)
+ TODO: check
+CVE-2024-44014 (Improper Limitation of a Pathname to a Restricted Directory ('Path Tra ...)
+ TODO: check
+CVE-2024-44013 (Improper Limitation of a Pathname to a Restricted Directory ('Path Tra ...)
+ TODO: check
+CVE-2024-44012 (Improper Limitation of a Pathname to a Restricted Directory ('Path Tra ...)
+ TODO: check
+CVE-2024-44011 (Improper Limitation of a Pathname to a Restricted Directory ('Path Tra ...)
+ TODO: check
CVE-2024-9532 (A vulnerability has been found in D-Link DIR-605L 2.13B01 BETA and cla ...)
NOT-FOR-US: D-Link
CVE-2024-9528 (The Contact Form Plugin by Fluent Forms for Quiz, Survey, and Drag & D ...)
@@ -11,6 +151,7 @@ CVE-2024-8743 (The Bit File Manager \u2013 100% Free & Open Source File Manager
CVE-2024-8486 (The Shortcodes and extra features for Phlox theme plugin for WordPress ...)
NOT-FOR-US: WordPress plugin
CVE-2024-47913 (An issue was discovered in the AbuseFilter extension for MediaWiki bef ...)
+ {DSA-5785-1}
- mediawiki 1:1.39.10-1
[bullseye] - mediawiki <not-affected> (AbuseFilter extension bundled since 1.38)
NOTE: https://phabricator.wikimedia.org/T372998
@@ -271,6 +412,7 @@ CVE-2024-45871 (Bandisoft BandiView 7.05 is Incorrect Access Control via sub_0x2
CVE-2024-45870 (Bandisoft BandiView 7.05 is vulnerable to Incorrect Access Control in ...)
NOT-FOR-US: Bandisoft BandiView
CVE-2024-42415 (An integer overflow vulnerability exists in the Compound Document Bina ...)
+ {DSA-5786-1}
- libgsf <unfixed> (bug #1084056)
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2024-2069
NOTE: https://gitlab.gnome.org/GNOME/libgsf/-/issues/34
@@ -314,6 +456,7 @@ CVE-2024-41163 (A directory traversal vulnerability exists in the archive downlo
CVE-2024-39755 (A privilege escalation vulnerability exists in the Veertu Anka Build 1 ...)
NOT-FOR-US: Veertu Anka
CVE-2024-36474 (An integer overflow vulnerability exists in the Compound Document Bina ...)
+ {DSA-5786-1}
- libgsf <unfixed> (bug #1084056)
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2024-2068
NOTE: https://gitlab.gnome.org/GNOME/libgsf/-/issues/34
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b69ba8e30a6cb8fac27061b7dbb5d5c6c594ea5f
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b69ba8e30a6cb8fac27061b7dbb5d5c6c594ea5f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241005/0e1e278d/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list