[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat Sep 21 21:12:38 BST 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
acbe42c4 by security tracker role at 2024-09-21T20:12:32+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,33 @@
+CVE-2024-9048 (A vulnerability was found in y_project RuoYi up to 4.7.9. It has been  ...)
+	TODO: check
+CVE-2024-8680 (The MC4WP: Mailchimp for WordPress plugin for WordPress is vulnerable  ...)
+	TODO: check
+CVE-2024-6787 (This vulnerability occurs when an attacker exploits a race condition b ...)
+	TODO: check
+CVE-2024-6786 (The vulnerability allows an attacker to craft MQTT messages that inclu ...)
+	TODO: check
+CVE-2024-6785 (The configuration file stores credentials in cleartext. An attacker wi ...)
+	TODO: check
+CVE-2024-46649 (eNMS up to 4.7.1 is vulnerable to Directory Traversal via download/fol ...)
+	TODO: check
+CVE-2024-46648 (eNMS 4.4.0 to 4.7.1 is vulnerable to Directory Traversal via scan_fold ...)
+	TODO: check
+CVE-2024-46647 (eNMS 4.4.0 to 4.7.1 is vulnerable to Directory Traversal via upload_fi ...)
+	TODO: check
+CVE-2024-46646 (eNMS up to 4.7.1 is vulnerable to Directory Traversal via /download/fi ...)
+	TODO: check
+CVE-2024-46645 (eNMS 4.0.0 is vulnerable to Directory Traversal via get_tree_files.)
+	TODO: check
+CVE-2024-46644 (eNMS 4.4.0 to 4.7.1 is vulnerable to Directory Traversal via edit_file ...)
+	TODO: check
+CVE-2024-46640 (SeaCMS 13.2 has a remote code execution vulnerability located in the f ...)
+	TODO: check
+CVE-2024-46103 (SEMCMS 4.8 is vulnerable to SQL Injection via SEMCMS_Main.php.)
+	TODO: check
+CVE-2024-46101 (GDidees CMS <= v3.9.1 has a file upload vulnerability.)
+	TODO: check
+CVE-2024-42323 (SnakeYaml Deser Load Malicious xml rce vulnerability in Apache HertzBe ...)
+	TODO: check
 CVE-2024-9043 (Secure Email Gateway from Cellopoint has Buffer Overflow Vulnerability ...)
 	NOT-FOR-US: Cellopoint Secure Email Gateway
 CVE-2024-9041 (A vulnerability has been found in SourceCodester Best House Rental Man ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/acbe42c41b844e54c499b08462fbb0fa11a520f9

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/acbe42c41b844e54c499b08462fbb0fa11a520f9
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240921/d53e1bcd/attachment.htm>

More information about the debian-security-tracker-commits mailing list