[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Oct 11 09:12:12 BST 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f1332726 by security tracker role at 2024-10-11T08:12:06+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,83 @@
+CVE-2024-9822 (The Pedalo Connector plugin for WordPress is vulnerable to authenticat ...)
+	TODO: check
+CVE-2024-9818 (A vulnerability classified as critical has been found in SourceCodeste ...)
+	TODO: check
+CVE-2024-9817 (A vulnerability was found in code-projects Blood Bank System 1.0. It h ...)
+	TODO: check
+CVE-2024-9816 (A vulnerability was found in Codezips Tourist Management System 1.0 an ...)
+	TODO: check
+CVE-2024-9815 (A vulnerability has been found in Codezips Tourist Management System 1 ...)
+	TODO: check
+CVE-2024-9814 (A vulnerability, which was classified as critical, was found in Codezi ...)
+	TODO: check
+CVE-2024-9813 (A vulnerability, which was classified as critical, has been found in C ...)
+	TODO: check
+CVE-2024-9812 (A vulnerability classified as critical was found in code-projects Crud ...)
+	TODO: check
+CVE-2024-9811 (A vulnerability classified as critical has been found in code-projects ...)
+	TODO: check
+CVE-2024-9707 (The Hunk Companion plugin for WordPress is vulnerable to unauthorized  ...)
+	TODO: check
+CVE-2024-9616 (The BlockMeister \u2013 Block Pattern Builder plugin for WordPress is  ...)
+	TODO: check
+CVE-2024-9611 (The Increase upload file size & Maximum Execution Time limit plugin fo ...)
+	TODO: check
+CVE-2024-9610 (The Language Switcher plugin for WordPress is vulnerable to Reflected  ...)
+	TODO: check
+CVE-2024-9587 (The Linkz.ai plugin for WordPress is vulnerable to unauthorized modifi ...)
+	TODO: check
+CVE-2024-9586 (The Linkz.ai plugin for WordPress is vulnerable to unauthorized modifi ...)
+	TODO: check
+CVE-2024-9543 (The PowerPress Podcasting plugin by Blubrry plugin for WordPress is vu ...)
+	TODO: check
+CVE-2024-9507 (The Contact Form by Bit Form: Multi Step Form, Calculation Contact For ...)
+	TODO: check
+CVE-2024-9487 (An improper verification of cryptographic signature vulnerability was  ...)
+	TODO: check
+CVE-2024-9436 (The PublishPress Revisions: Duplicate Posts, Submit, Approve and Sched ...)
+	TODO: check
+CVE-2024-9346 (The Embed videos and respect privacy plugin for WordPress is vulnerabl ...)
+	TODO: check
+CVE-2024-9234 (The GutenKit \u2013 Page Builder Blocks, Patterns, and Templates for G ...)
+	TODO: check
+CVE-2024-9232 (The Download Plugins and Themes in ZIP from Dashboard plugin for WordP ...)
+	TODO: check
+CVE-2024-9221 (The Tainacan plugin for WordPress is vulnerable to Reflected Cross-Sit ...)
+	TODO: check
+CVE-2024-9211 (The FULL \u2013 Cliente plugin for WordPress is vulnerable to Reflecte ...)
+	TODO: check
+CVE-2024-9180 (A privileged Vault operator with write permissions to the root namespa ...)
+	TODO: check
+CVE-2024-9051 (The WP Ultimate Post Grid plugin for WordPress is vulnerable to Stored ...)
+	TODO: check
+CVE-2024-48987 (Snipe-IT before 7.0.10 allows remote code execution (associated with c ...)
+	TODO: check
+CVE-2024-47872 (Gradio is an open-source Python package designed for quick prototyping ...)
+	TODO: check
+CVE-2024-47871 (Gradio is an open-source Python package designed for quick prototyping ...)
+	TODO: check
+CVE-2024-47870 (Gradio is an open-source Python package designed for quick prototyping ...)
+	TODO: check
+CVE-2024-47869 (Gradio is an open-source Python package designed for quick prototyping ...)
+	TODO: check
+CVE-2024-47868 (Gradio is an open-source Python package designed for quick prototyping ...)
+	TODO: check
+CVE-2024-47867 (Gradio is an open-source Python package designed for quick prototyping ...)
+	TODO: check
+CVE-2024-47168 (Gradio is an open-source Python package designed for quick prototyping ...)
+	TODO: check
+CVE-2024-47167 (Gradio is an open-source Python package designed for quick prototyping ...)
+	TODO: check
+CVE-2024-47166 (Gradio is an open-source Python package designed for quick prototyping ...)
+	TODO: check
+CVE-2024-47165 (Gradio is an open-source Python package designed for quick prototyping ...)
+	TODO: check
+CVE-2024-47164 (Gradio is an open-source Python package designed for quick prototyping ...)
+	TODO: check
+CVE-2024-47084 (Gradio is an open-source Python package designed for quick prototyping ...)
+	TODO: check
+CVE-2024-21534 (Versions of the package jsonpath-plus before 10.0.0 are vulnerable to  ...)
+	TODO: check
 CVE-2024-9810 (A vulnerability was found in SourceCodester Record Management System 1 ...)
 	NOT-FOR-US: SourceCodester
 CVE-2024-9809 (A vulnerability was found in SourceCodester Online Eyewear Shop 1.0. I ...)
@@ -287,7 +367,7 @@ CVE-2024-48933 (A cross-site scripting (XSS) vulnerability in LemonLDAP::NG befo
 	- lemonldap-ng <unfixed>
 	NOTE: https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/issues/3232
 CVE-2024-9680 (An attacker was able to achieve code execution in the content process  ...)
-	{DSA-5788-1}
+	{DSA-5788-1 DLA-3914-1}
 	- firefox 131.0.2-1
 	- firefox-esr 128.3.1esr-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-51/



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f13327262e587eee7b3bd5d2ff4174659c3b0140

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f13327262e587eee7b3bd5d2ff4174659c3b0140
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241011/259b4395/attachment.htm>

More information about the debian-security-tracker-commits mailing list