[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Sep 2 09:12:20 BST 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e4f7ef53 by security tracker role at 2024-09-02T08:11:56+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,69 @@
+CVE-2024-8370 (A vulnerability classified as problematic was found in Grocy up to 4.2 ...)
+	TODO: check
+CVE-2024-8365 (Vault Community Edition and Vault Enterprise experienced a regression  ...)
+	TODO: check
+CVE-2024-7871 (SQL Injection in online dictionary function of Easytest Online Test Pl ...)
+	TODO: check
+CVE-2024-7692 (The Flaming Forms WordPress plugin through 1.0.1 does not sanitise and ...)
+	TODO: check
+CVE-2024-7691 (The Flaming Forms WordPress plugin through 1.0.1 does not sanitise and ...)
+	TODO: check
+CVE-2024-7690 (The DN Popup WordPress plugin through 1.2.2 does not have CSRF check i ...)
+	TODO: check
+CVE-2024-7354 (The Ninja Forms  WordPress plugin before 3.8.11 does not escape an URL ...)
+	TODO: check
+CVE-2024-45528 (CodeAstro MembershipM-PHP (aka Membership Management System in PHP) 1. ...)
+	TODO: check
+CVE-2024-45527 (REDCap 14.7.0 allows HTML injection via the project title of a New Pro ...)
+	TODO: check
+CVE-2024-45522 (Linen before cd37c3e does not verify that the domain is linen.dev or w ...)
+	TODO: check
+CVE-2024-45509 (In MISP through 2.4.196, app/Controller/BookmarksController.php does n ...)
+	TODO: check
+CVE-2024-45508 (HTMLDOC before 1.9.19 has an out-of-bounds write in parse_paragraph in ...)
+	TODO: check
+CVE-2024-45270 (WordPress plugin "Carousel Slider" provided by Sayful Islam contains a ...)
+	TODO: check
+CVE-2024-45269 (WordPress plugin "Carousel Slider" provided by Sayful Islam contains a ...)
+	TODO: check
+CVE-2024-43776 (SQL Injection in mock exam function of Easytest Online Test Platform v ...)
+	TODO: check
+CVE-2024-43775 (SQL Injection in search course titles function of Easytest Online Test ...)
+	TODO: check
+CVE-2024-43774 (SQL Injection in download personal learning course function of Easytes ...)
+	TODO: check
+CVE-2024-43773 (SQL Injection in download class learning course function of Easytest O ...)
+	TODO: check
+CVE-2024-43772 (SQL Injection in download student learning course function of Easytest ...)
+	TODO: check
+CVE-2024-41160 (in OpenHarmony v4.1.0 and prior versions allow a local attacker cause  ...)
+	TODO: check
+CVE-2024-41157 (in OpenHarmony v4.1.0 and prior versions allow a local attacker cause  ...)
+	TODO: check
+CVE-2024-39816 (in OpenHarmony v4.1.0 and prior versions allow a local attacker arbitr ...)
+	TODO: check
+CVE-2024-39775 (in OpenHarmony v4.1.0 and prior versions allow a remote attacker cause ...)
+	TODO: check
+CVE-2024-39612 (in OpenHarmony v4.0.0 and prior versions allow a local attacker cause  ...)
+	TODO: check
+CVE-2024-38386 (in OpenHarmony v4.1.0 and prior versions allow a local attacker arbitr ...)
+	TODO: check
+CVE-2024-38382 (in OpenHarmony v4.0.0 and prior versions allow a local attacker cause  ...)
+	TODO: check
+CVE-2024-28044 (in OpenHarmony v4.1.0 and prior versions allow a local attacker cause  ...)
+	TODO: check
+CVE-2024-20089 (In wlan, there is a possible denial of service due to incorrect error  ...)
+	TODO: check
+CVE-2024-20088 (In keyinstall, there is a possible out of bounds read due to a missing ...)
+	TODO: check
+CVE-2024-20087 (In vdec, there is a possible out of bounds write due to a missing boun ...)
+	TODO: check
+CVE-2024-20086 (In vdec, there is a possible out of bounds write due to a missing boun ...)
+	TODO: check
+CVE-2024-20085 (In power, there is a possible out of bounds read due to a missing boun ...)
+	TODO: check
+CVE-2024-20084 (In power, there is a possible out of bounds read due to a missing boun ...)
+	TODO: check
 CVE-2024-5053 (The Contact Form Plugin by Fluent Forms for Quiz, Survey, and Drag & D ...)
 	TODO: check
 CVE-2024-8368 (A vulnerability was found in code-projects Hospital Management System  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e4f7ef53cad38ea3805de4f0bd487bf52d9e8db2

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e4f7ef53cad38ea3805de4f0bd487bf52d9e8db2
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240902/5a4ecd6d/attachment.htm>

More information about the debian-security-tracker-commits mailing list