[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Oct 28 20:18:16 GMT 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
4c889829 by Salvatore Bonaccorso at 2024-10-28T21:17:54+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,137 +1,137 @@
CVE-2024-9825 (The Chef Habitat builder-api on-prem-builder package with any version ...)
TODO: check
CVE-2024-9629 (The Contact Form 7 + Telegram plugin for WordPress is vulnerable to un ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-8013 (A bug in query analysis of certain complex self-referential $lookup su ...)
TODO: check
CVE-2024-6245 (Use of Default Credentials vulnerability in Maruti Suzuki SmartPlay on ...)
- TODO: check
+ NOT-FOR-US: Maruti Suzuki SmartPlay
CVE-2024-5532 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: OpenText
CVE-2024-50582 (In JetBrains YouTrack before 2024.3.47707 stored XSS was possible due ...)
- TODO: check
+ NOT-FOR-US: JetBrains YouTrack
CVE-2024-50581 (In JetBrains YouTrack before 2024.3.47707 improper HTML sanitization c ...)
- TODO: check
+ NOT-FOR-US: JetBrains YouTrack
CVE-2024-50580 (In JetBrains YouTrack before 2024.3.47707 multiple XSS were possible d ...)
- TODO: check
+ NOT-FOR-US: JetBrains YouTrack
CVE-2024-50579 (In JetBrains YouTrack before 2024.3.47707 reflected XSS due to insecur ...)
- TODO: check
+ NOT-FOR-US: JetBrains YouTrack
CVE-2024-50578 (In JetBrains YouTrack before 2024.3.47707 stored XSS was possible via ...)
- TODO: check
+ NOT-FOR-US: JetBrains YouTrack
CVE-2024-50577 (In JetBrains YouTrack before 2024.3.47707 stored XSS was possible via ...)
- TODO: check
+ NOT-FOR-US: JetBrains YouTrack
CVE-2024-50576 (In JetBrains YouTrack before 2024.3.47707 stored XSS was possible via ...)
- TODO: check
+ NOT-FOR-US: JetBrains YouTrack
CVE-2024-50575 (In JetBrains YouTrack before 2024.3.47707 reflected XSS was possible i ...)
- TODO: check
+ NOT-FOR-US: JetBrains YouTrack
CVE-2024-50574 (In JetBrains YouTrack before 2024.3.47707 potential ReDoS exploit was ...)
- TODO: check
+ NOT-FOR-US: JetBrains YouTrack
CVE-2024-50573 (In JetBrains Hub before 2024.3.47707 improper access control allowed u ...)
- TODO: check
+ NOT-FOR-US: JetBrains Hub
CVE-2024-50502 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50501 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50498 (Improper Control of Generation of Code ('Code Injection') vulnerabilit ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50497 (Improper Control of Filename for Include/Require Statement in PHP Prog ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50492 (Improper Control of Generation of Code ('Code Injection') vulnerabilit ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50491 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50489 (Authentication Bypass Using an Alternate Path or Channel vulnerability ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50488 (Authentication Bypass Using an Alternate Path or Channel vulnerability ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50487 (Authentication Bypass Using an Alternate Path or Channel vulnerability ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50486 (Authentication Bypass Using an Alternate Path or Channel vulnerability ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50483 (Authorization Bypass Through User-Controlled Key vulnerability in Meet ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50479 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50478 (Authentication Bypass by Primary Weakness vulnerability in Swoop 1-Cli ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50477 (Authentication Bypass Using an Alternate Path or Channel vulnerability ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50472 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50471 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50470 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50469 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50468 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50467 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50465 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50464 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50463 (URL Redirection to Untrusted Site ('Open Redirect') vulnerability in W ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50462 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50461 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50460 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50458 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50457 (: Improper Control of Filename for Include/Require Statement in PHP Pr ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50453 (Relative Path Traversal vulnerability in Webangon The Pack Elementor a ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50451 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50450 (Improper Control of Generation of Code ('Code Injection') vulnerabilit ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50449 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50448 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50447 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50446 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50445 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50443 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50442 (Improper Restriction of XML External Entity Reference vulnerability in ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50441 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50440 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50439 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50438 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50437 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50436 (Improper Control of Filename for Include/Require Statement in PHP Prog ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50435 (Improper Control of Filename for Include/Require Statement in PHP Prog ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50434 (Improper Control of Filename for Include/Require Statement in PHP Prog ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50433 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50432 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50431 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50429 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50416 (Deserialization of Untrusted Data vulnerability in WPClever WPC Shop a ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50408 (Deserialization of Untrusted Data vulnerability in Kiboko Labs Namaste ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-49771 (MPXJ is an open source library to read and write project plans from a ...)
TODO: check
CVE-2024-49761 (REXML is an XML toolkit for Ruby. The REXML gem before 3.3.9 has a ReD ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4c8898292e8947d5d68209925f3cbc2b9fe0b8a5
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4c8898292e8947d5d68209925f3cbc2b9fe0b8a5
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241028/02f27fea/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list