[Git][security-tracker-team/security-tracker][master] Add two pgadmin4 issues, itp'ed

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
c02a3d39 by Salvatore Bonaccorso at 2025-04-04T15:35:41+02:00
Add two pgadmin4 issues, itp'ed

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -345,9 +345,9 @@ CVE-2025-30596 (Improper Limitation of a Pathname to a Restricted Directory ('Pa
 CVE-2025-30406 (Gladinet CentreStack through 16.1.10296.56315 (fixed in 16.4.10315.563 ...)
 	NOT-FOR-US: Gladinet CentreStack
 CVE-2025-2946 (pgAdmin <= 9.1 is affected by a security vulnerability with Cross-Site ...)
-	TODO: check
+	- pgadmin4 <itp> (bug #834129)
 CVE-2025-2945 (Remote Code Execution security vulnerability in pgAdmin 4  (Query Tool ...)
-	TODO: check
+	- pgadmin4 <itp> (bug #834129)
 CVE-2025-2299 (The LuckyWP Table of Contents plugin for WordPress is vulnerable to Cr ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2025-29987 (Dell PowerProtect Data Domain with Data Domain Operating System (DD OS ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c02a3d39f92a966a7c968fa7cbd71693fd3a0b3d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c02a3d39f92a966a7c968fa7cbd71693fd3a0b3d
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250404/23847532/attachment.htm>