[Git][security-tracker-team/security-tracker][master] automatic update

Sat Oct 12 09:12:36 BST 2024


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
4259b807 by security tracker role at 2024-10-12T08:12:29+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,47 @@
+CVE-2024-9860 (The Bridge Core plugin for WordPress is vulnerable to unauthorized mod ...)
+	TODO: check
+CVE-2024-9824 (The ImagePress \u2013 Image Gallery plugin for WordPress is vulnerable ...)
+	TODO: check
+CVE-2024-9821 (The Bot for Telegram on WooCommerce plugin for WordPress is vulnerable ...)
+	TODO: check
+CVE-2024-9778 (The ImagePress \u2013 Image Gallery plugin for WordPress is vulnerable ...)
+	TODO: check
+CVE-2024-9776 (The ImagePress \u2013 Image Gallery plugin for WordPress is vulnerable ...)
+	TODO: check
+CVE-2024-9756 (The Order Attachments for WooCommerce plugin for WordPress is vulnerab ...)
+	TODO: check
+CVE-2024-9704 (The Social Sharing (by Danny) plugin for WordPress is vulnerable to St ...)
+	TODO: check
+CVE-2024-9670 (The 2D Tag Cloud plugin for WordPress is vulnerable to Reflected Cross ...)
+	TODO: check
+CVE-2024-9656 (The Mynx Page Builder plugin for WordPress is vulnerable to Stored Cro ...)
+	TODO: check
+CVE-2024-9592 (The Easy PayPal Gift Certificate plugin for WordPress is vulnerable to ...)
+	TODO: check
+CVE-2024-9187 (The Read more By Adam plugin for WordPress is vulnerable to unauthoriz ...)
+	TODO: check
+CVE-2024-9047 (The WordPress File Upload plugin for WordPress is vulnerable to Path T ...)
+	TODO: check
+CVE-2024-7489 (The Forms for Mailchimp by Optin Cat \u2013 Grow Your MailChimp List p ...)
+	TODO: check
+CVE-2024-48938 (Znuny before LTS 6.5.1 through 6.5.10 and 7.0.1 through 7.0.16 allows  ...)
+	TODO: check
+CVE-2024-48937 (Znuny before LTS 6.5.1 through 6.5.10 and 7.0.1 through 7.0.16 allows  ...)
+	TODO: check
+CVE-2024-48788 (An issue in YESCAM (com.yescom.YesCam.zwave) 1.0.2 allows a remote att ...)
+	TODO: check
+CVE-2024-48772 (An issue in C-CHIP (com.cchip.cchipamaota) v.1.2.8 allows a remote att ...)
+	TODO: check
+CVE-2024-46468 (A Server-Side Request Forgery (SSRF) vulnerability exists in the jpres ...)
+	TODO: check
+CVE-2024-45754 (An issue was discovered in the centreon-bi-server component in Centreo ...)
+	TODO: check
+CVE-2024-45184 (An issue was discovered in Samsung Mobile Processor, Wearable Processo ...)
+	TODO: check
+CVE-2024-35522 (Netgear EX3700 ' AC750 WiFi Range Extender Essentials Edition before 1 ...)
+	TODO: check
+CVE-2024-35517 (Netgear XR1000 v1.0.0.64 is vulnerable to command injection in usb_rem ...)
+	TODO: check
 CVE-2024-9869
 	REJECTED
 CVE-2024-9859 (Type confusion in WebAssembly in Google Chrome prior to 126.0.6478.126 ...)
@@ -416,7 +460,8 @@ CVE-2024-45115 (Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10
 	NOT-FOR-US: Adobe
 CVE-2024-44711
 	REJECTED
-CVE-2024-36051 (In btcd before 0.24.2, removeOpcodeByData mishandles the consensus rul ...)
+CVE-2024-36051
+	REJECTED
 	NOT-FOR-US: btcd
 CVE-2024-35202 (Bitcoin Core before 25.0 allows remote attackers to cause a denial of  ...)
 	- bitcoin <removed>



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4259b80726ae0250c0a6c8062e8d272c88e6d01e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4259b80726ae0250c0a6c8062e8d272c88e6d01e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241012/04147f2d/attachment.htm>
