[Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Mon Oct 21 10:06:17 BST 2024
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
12ff6789 by Moritz Muehlenhoff at 2024-10-21T11:05:53+02:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,107 +1,107 @@
CVE-2024-8625 (The TS Poll WordPress plugin before 2.4.0 does not sanitize and escap ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-49215 (An issue was discovered in Sangoma Asterisk through 18.20.0, 19.x and ...)
TODO: check
CVE-2024-43689 (Stack-based buffer overflow vulnerability exists in WAB-I1750-PS and W ...)
- TODO: check
+ NOT-FOR-US: ELECOM
CVE-2024-10202 (Administrative Management System from Wellchoose has an OS Command Inj ...)
- TODO: check
+ NOT-FOR-US: Wellchoose Administrative Management System
CVE-2024-10201 (Administrative Management System from Wellchoose does not properly val ...)
- TODO: check
+ NOT-FOR-US: Wellchoose Administrative Management System
CVE-2024-10200 (Administrative Management System from Wellchoose has a Path Traversal ...)
- TODO: check
+ NOT-FOR-US: Wellchoose Administrative Management System
CVE-2024-10199 (A vulnerability was found in code-projects Pharmacy Management System ...)
- TODO: check
+ NOT-FOR-US: code-projects Pharmacy Management System
CVE-2024-10198 (A vulnerability was found in code-projects Pharmacy Management System ...)
- TODO: check
+ NOT-FOR-US: code-projects Pharmacy Management System
CVE-2024-10197 (A vulnerability was found in code-projects Pharmacy Management System ...)
- TODO: check
+ NOT-FOR-US: code-projects Pharmacy Management System
CVE-2024-10196 (A vulnerability was found in code-projects Pharmacy Management System ...)
- TODO: check
+ NOT-FOR-US: code-projects Pharmacy Management System
CVE-2024-49629 (Cross-Site Request Forgery (CSRF) vulnerability in Fahad Mahmood Endle ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-49628 (Cross-Site Request Forgery (CSRF) vulnerability in WhileTrue Most And ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-49627 (Cross-Site Request Forgery (CSRF) vulnerability in Noor Alam WordPress ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-49625 (Deserialization of Untrusted Data vulnerability in Brandon Clark SiteB ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-49624 (Deserialization of Untrusted Data vulnerability in Smartdevth Advanced ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-49623 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-49622 (Cross-Site Request Forgery (CSRF) vulnerability in Apa Apa Banner Slid ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-49621 (Cross-Site Request Forgery (CSRF) vulnerability in Apa APA Register Ne ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-49620 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-49619 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-49618 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-49617 (Cross-Site Request Forgery (CSRF) vulnerability in Bhaskar Dhote Back ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-49616 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-49615 (Cross-Site Request Forgery (CSRF) vulnerability in Henrique Rodrigues ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-49614 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-49613 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-49612 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-49610 (Unrestricted Upload of File with Dangerous Type vulnerability in Jack ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-49609 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-49608 (: Incorrect Privilege Assignment vulnerability in Gerry Ntabuhashe GER ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-49607 (Unrestricted Upload of File with Dangerous Type vulnerability in Redwa ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-49605 (Cross-Site Request Forgery (CSRF) vulnerability in Avchat.Net AVChat V ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-49335 (Cross-Site Request Forgery (CSRF) vulnerability in Edush Maxim GoogleD ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-49332 (Deserialization of Untrusted Data vulnerability in Giveaway Boost allo ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-49331 (Unrestricted Upload of File with Dangerous Type vulnerability in Myria ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-49330 (Unrestricted Upload of File with Dangerous Type vulnerability in brx8r ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-49329 (Unrestricted Upload of File with Dangerous Type vulnerability in Vivek ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-49327 (Unrestricted Upload of File with Dangerous Type vulnerability in Asep ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-49326 (Unrestricted Upload of File with Dangerous Type vulnerability in Vasil ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-49325 (Subscriber Broken Access Control in Photo Gallery Builder <= 3.0 versi ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-49324 (Unrestricted Upload of File with Dangerous Type vulnerability in Sovra ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-49306 (Cross-Site Request Forgery (CSRF) vulnerability in WP-buy WP Content C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-49290 (Cross-Site Request Forgery (CSRF) vulnerability in Gora Tech LLC Cooke ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-49275 (Cross-Site Request Forgery (CSRF) vulnerability in Martin Gibson IdeaP ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-49274 (Cross-Site Request Forgery (CSRF) vulnerability in Infomaniak Staff VO ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-49272 (Cross-Site Request Forgery (CSRF) vulnerability in WPWeb Social Auto P ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-49250 (Cross-Site Request Forgery (CSRF) vulnerability in Michael Tran Table ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-47634 (Cross-Site Request Forgery (CSRF) vulnerability in Streamline.Lv CartB ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-47325 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-44061 (Improper Neutralization of Script-Related HTML Tags in a Web Page (Bas ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-44000 (Insufficiently Protected Credentials vulnerability in LiteSpeed Techno ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-10195 (A vulnerability was found in Tecno 4G Portable WiFi TR118 V008-2022083 ...)
- TODO: check
+ NOT-FOR-US: Tecno 4G Portable WiFi TR118
CVE-2024-XXXX [XSS Vulnerability in matrix.pl]
- dbeacon 0.4.0-3 (bug #1031542)
CVE-2024-49631 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/12ff67896d2545712f38f0c1b7006dc592cc1929
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/12ff67896d2545712f38f0c1b7006dc592cc1929
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241021/d66a67bb/attachment.htm>
More information about the debian-security-tracker-commits
mailing list