[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Apr 4 21:12:54 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
a33146cd by security tracker role at 2025-04-04T20:12:46+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,359 @@
+CVE-2025-3267 (A vulnerability, which was classified as critical, was found in qinguo ...)
+ TODO: check
+CVE-2025-3266 (A vulnerability, which was classified as critical, has been found in q ...)
+ TODO: check
+CVE-2025-3265 (A vulnerability classified as critical was found in PHPGurukul e-Diary ...)
+ TODO: check
+CVE-2025-3259 (A vulnerability, which was classified as critical, has been found in T ...)
+ TODO: check
+CVE-2025-3258 (A vulnerability classified as critical was found in PHPGurukul Old Age ...)
+ TODO: check
+CVE-2025-3257 (A vulnerability classified as problematic has been found in xujiangfei ...)
+ TODO: check
+CVE-2025-3256 (A vulnerability was found in xujiangfei admintwo 1.0. It has been rate ...)
+ TODO: check
+CVE-2025-3255 (A vulnerability was found in xujiangfei admintwo 1.0. It has been decl ...)
+ TODO: check
+CVE-2025-3254 (A vulnerability was found in xujiangfei admintwo 1.0. It has been clas ...)
+ TODO: check
+CVE-2025-3253 (A vulnerability was found in xujiangfei admintwo 1.0 and classified as ...)
+ TODO: check
+CVE-2025-3252 (A vulnerability has been found in xujiangfei admintwo 1.0 and classifi ...)
+ TODO: check
+CVE-2025-3251 (A vulnerability, which was classified as problematic, was found in xuj ...)
+ TODO: check
+CVE-2025-3250 (A vulnerability, which was classified as problematic, has been found i ...)
+ TODO: check
+CVE-2025-3249 (A vulnerability classified as critical was found in TOTOLINK A6000R 1. ...)
+ TODO: check
+CVE-2025-3245 (A vulnerability was found in itsourcecode Library Management System 1. ...)
+ TODO: check
+CVE-2025-3244 (A vulnerability was found in SourceCodester Web-based Pharmacy Product ...)
+ TODO: check
+CVE-2025-3243 (A vulnerability was found in code-projects Patient Record Management S ...)
+ TODO: check
+CVE-2025-3242 (A vulnerability has been found in PHPGurukul e-Diary Management System ...)
+ TODO: check
+CVE-2025-3241 (A vulnerability, which was classified as problematic, was found in zha ...)
+ TODO: check
+CVE-2025-3240 (A vulnerability, which was classified as critical, has been found in P ...)
+ TODO: check
+CVE-2025-3239 (A vulnerability classified as critical was found in PHPGurukul Online ...)
+ TODO: check
+CVE-2025-3238 (A vulnerability classified as critical has been found in PHPGurukul On ...)
+ TODO: check
+CVE-2025-3237 (A vulnerability was found in Tenda FH1202 1.2.0.14(408). It has been r ...)
+ TODO: check
+CVE-2025-3236 (A vulnerability was found in Tenda FH1202 1.2.0.14(408). It has been d ...)
+ TODO: check
+CVE-2025-3235 (A vulnerability was found in PHPGurukul Old Age Home Management System ...)
+ TODO: check
+CVE-2025-3231 (A vulnerability was found in PHPGurukul Zoo Management System 2.1. It ...)
+ TODO: check
+CVE-2025-3229 (A vulnerability was found in PHPGurukul Restaurant Table Booking Syste ...)
+ TODO: check
+CVE-2025-3189 (Stored Cross-Site Scripting (XSS) in DoWISP in versions prior to 1.16. ...)
+ TODO: check
+CVE-2025-32280 (Cross-Site Request Forgery (CSRF) vulnerability in weDevs WP Project M ...)
+ TODO: check
+CVE-2025-32278 (Cross-Site Request Forgery (CSRF) vulnerability in wprio Table Block b ...)
+ TODO: check
+CVE-2025-32277 (Missing Authorization vulnerability in Ateeq Rafeeq RepairBuddy allows ...)
+ TODO: check
+CVE-2025-32276 (Cross-Site Request Forgery (CSRF) vulnerability in Qu\xfd L\xea 91 Adm ...)
+ TODO: check
+CVE-2025-32274 (Cross-Site Request Forgery (CSRF) vulnerability in axew3 WP w3all phpB ...)
+ TODO: check
+CVE-2025-32273 (Cross-Site Request Forgery (CSRF) vulnerability in freetobook Freetobo ...)
+ TODO: check
+CVE-2025-32272 (Cross-Site Request Forgery (CSRF) vulnerability in PickPlugins Wishlis ...)
+ TODO: check
+CVE-2025-32271 (Cross-Site Request Forgery (CSRF) vulnerability in ablancodev Woocomme ...)
+ TODO: check
+CVE-2025-32270 (Cross-Site Request Forgery (CSRF) vulnerability in Broadstreet Broadst ...)
+ TODO: check
+CVE-2025-32269 (Cross-Site Request Forgery (CSRF) vulnerability in CRM Perks WP Zendes ...)
+ TODO: check
+CVE-2025-32268 (Cross-Site Request Forgery (CSRF) vulnerability in www.15.to QR Code T ...)
+ TODO: check
+CVE-2025-32267 (Cross-Site Request Forgery (CSRF) vulnerability in wpzinc Post to Soci ...)
+ TODO: check
+CVE-2025-32266 (Cross-Site Request Forgery (CSRF) vulnerability in wp-buy 404 Image Re ...)
+ TODO: check
+CVE-2025-32265 (Cross-Site Request Forgery (CSRF) vulnerability in Hossni Mubarak JobW ...)
+ TODO: check
+CVE-2025-32264 (Cross-Site Request Forgery (CSRF) vulnerability in Saiful Islam UltraA ...)
+ TODO: check
+CVE-2025-32263 (Cross-Site Request Forgery (CSRF) vulnerability in BeRocket Sequential ...)
+ TODO: check
+CVE-2025-32262 (Cross-Site Request Forgery (CSRF) vulnerability in Robert D Payne RDP ...)
+ TODO: check
+CVE-2025-32261 (Cross-Site Request Forgery (CSRF) vulnerability in Kuppuraj Advanced A ...)
+ TODO: check
+CVE-2025-32258 (Missing Authorization vulnerability in InfoGiants Simple Website Logo ...)
+ TODO: check
+CVE-2025-32257 (Exposure of Sensitive System Information Due to Uncleared Debug Inform ...)
+ TODO: check
+CVE-2025-32256 (Missing Authorization vulnerability in devsoftbaltic SurveyJS allows A ...)
+ TODO: check
+CVE-2025-32255 (Exposure of Sensitive System Information to an Unauthorized Control Sp ...)
+ TODO: check
+CVE-2025-32254 (Missing Authorization vulnerability in Iqonic Design WPBookit allows A ...)
+ TODO: check
+CVE-2025-32253 (Missing Authorization vulnerability in ComMotion Course Booking System ...)
+ TODO: check
+CVE-2025-32252 (Missing Authorization vulnerability in blackandwhitedigital WP Genealo ...)
+ TODO: check
+CVE-2025-32251 (Exposure of Sensitive System Information to an Unauthorized Control Sp ...)
+ TODO: check
+CVE-2025-32250 (Cross-Site Request Forgery (CSRF) vulnerability in rollbar Rollbar all ...)
+ TODO: check
+CVE-2025-32249 (Cross-Site Request Forgery (CSRF) vulnerability in designinvento Direc ...)
+ TODO: check
+CVE-2025-32248 (Cross-Site Request Forgery (CSRF) vulnerability in SwiftXR SwiftXR (3D ...)
+ TODO: check
+CVE-2025-32247 (Cross-Site Request Forgery (CSRF) vulnerability in ABCdatos AI Content ...)
+ TODO: check
+CVE-2025-32246 (Missing Authorization vulnerability in Tim Nguyen 1-Click Backup & ...)
+ TODO: check
+CVE-2025-32241 (Cross-Site Request Forgery (CSRF) vulnerability in CleverReach\xae Off ...)
+ TODO: check
+CVE-2025-32239 (Missing Authorization vulnerability in Joao Romao Social Share Buttons ...)
+ TODO: check
+CVE-2025-32238 (Generation of Error Message Containing Sensitive Information vulnerabi ...)
+ TODO: check
+CVE-2025-32237 (Missing Authorization vulnerability in Stylemix MasterStudy LMS allows ...)
+ TODO: check
+CVE-2025-32235 (Missing Authorization vulnerability in sonaar MP3 Audio Player for Mus ...)
+ TODO: check
+CVE-2025-32234 (Missing Authorization vulnerability in aleswebs AdMail \u2013 Multilin ...)
+ TODO: check
+CVE-2025-32233 (Missing Authorization vulnerability in WP Chill Revive.so \u2013 Bulk ...)
+ TODO: check
+CVE-2025-32232 (Missing Authorization vulnerability in ERA404 StaffList allows Exploit ...)
+ TODO: check
+CVE-2025-32231 (Missing Authorization vulnerability in Bookingor Bookingor allows Expl ...)
+ TODO: check
+CVE-2025-32229 (Missing Authorization vulnerability in Bowo Variable Inspector allows ...)
+ TODO: check
+CVE-2025-32226 (Missing Authorization vulnerability in Anzar Ahmed Display product var ...)
+ TODO: check
+CVE-2025-32225 (Missing Authorization vulnerability in WP Event Manager WP Event Manag ...)
+ TODO: check
+CVE-2025-32224 (Missing Authorization vulnerability in shivammani Privyr CRM allows Ex ...)
+ TODO: check
+CVE-2025-32220 (Missing Authorization vulnerability in Dimitri Grassi Salon booking sy ...)
+ TODO: check
+CVE-2025-32219 (Missing Authorization vulnerability in Syntactics, Inc. eaSYNC allows ...)
+ TODO: check
+CVE-2025-32218 (Missing Authorization vulnerability in RealMag777 TableOn \u2013 WordP ...)
+ TODO: check
+CVE-2025-32217 (Missing Authorization vulnerability in WP Messiah Ai Image Alt Text Ge ...)
+ TODO: check
+CVE-2025-32207 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-32204 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
+ TODO: check
+CVE-2025-32203 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
+ TODO: check
+CVE-2025-32201 (Missing Authorization vulnerability in Xpro Xpro Theme Builder allows ...)
+ TODO: check
+CVE-2025-32200 (Improper Neutralization of Script-Related HTML Tags in a Web Page (Bas ...)
+ TODO: check
+CVE-2025-32197 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-32196 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-32195 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-32194 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-32193 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-32192 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-32191 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-32190 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-32189 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-32188 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-32187 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-32186 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-32185 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-32184 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-32183 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-32182 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-32181 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-32179 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-32178 (Missing Authorization vulnerability in 6Storage 6Storage Rentals allow ...)
+ TODO: check
+CVE-2025-32177 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-32176 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-32175 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-32174 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-32173 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-32172 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-32171 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-32170 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-32169 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-32168 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-32167 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-32166 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-32165 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-32163 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-32162 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-32161 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-32159 (Improper Control of Filename for Include/Require Statement in PHP Prog ...)
+ TODO: check
+CVE-2025-32157 (Improper Control of Filename for Include/Require Statement in PHP Prog ...)
+ TODO: check
+CVE-2025-32156 (Improper Control of Filename for Include/Require Statement in PHP Prog ...)
+ TODO: check
+CVE-2025-32155 (Improper Control of Filename for Include/Require Statement in PHP Prog ...)
+ TODO: check
+CVE-2025-32154 (Improper Control of Filename for Include/Require Statement in PHP Prog ...)
+ TODO: check
+CVE-2025-32153 (Improper Control of Filename for Include/Require Statement in PHP Prog ...)
+ TODO: check
+CVE-2025-32152 (Improper Control of Filename for Include/Require Statement in PHP Prog ...)
+ TODO: check
+CVE-2025-32151 (Improper Control of Filename for Include/Require Statement in PHP Prog ...)
+ TODO: check
+CVE-2025-32150 (Improper Control of Filename for Include/Require Statement in PHP Prog ...)
+ TODO: check
+CVE-2025-32149 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
+ TODO: check
+CVE-2025-32148 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
+ TODO: check
+CVE-2025-32147 (Missing Authorization vulnerability in coothemes Easy WP Optimizer all ...)
+ TODO: check
+CVE-2025-32146 (Improper Control of Filename for Include/Require Statement in PHP Prog ...)
+ TODO: check
+CVE-2025-32142 (Improper Control of Filename for Include/Require Statement in PHP Prog ...)
+ TODO: check
+CVE-2025-32141 (Improper Control of Filename for Include/Require Statement in PHP Prog ...)
+ TODO: check
+CVE-2025-32138 (Improper Restriction of XML External Entity Reference vulnerability in ...)
+ TODO: check
+CVE-2025-32137 (Relative Path Traversal vulnerability in Cristi\xe1n L\xe1vaque s2Memb ...)
+ TODO: check
+CVE-2025-32136 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-32135 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-32134 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-32133 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-32132 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-32131 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-32130 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-32129 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-32127 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
+ TODO: check
+CVE-2025-32126 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
+ TODO: check
+CVE-2025-32125 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
+ TODO: check
+CVE-2025-32124 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
+ TODO: check
+CVE-2025-32122 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
+ TODO: check
+CVE-2025-32121 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
+ TODO: check
+CVE-2025-32120 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
+ TODO: check
+CVE-2025-32118 (Unrestricted Upload of File with Dangerous Type vulnerability in Niteo ...)
+ TODO: check
+CVE-2025-32113 (Cross-Site Request Forgery (CSRF) vulnerability in Renzo Tejada Libro ...)
+ TODO: check
+CVE-2025-32112 (Cross-Site Request Forgery (CSRF) vulnerability in OTWthemes Sidebar M ...)
+ TODO: check
+CVE-2025-31480 (aiven-extras is a PostgreSQL extension. This is a privilege escalation ...)
+ TODO: check
+CVE-2025-31421 (Insertion of Sensitive Information into Externally-Accessible File or ...)
+ TODO: check
+CVE-2025-31420 (Incorrect Privilege Assignment vulnerability in Tomdever wpForo Forum ...)
+ TODO: check
+CVE-2025-31418 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-31416 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-31407 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-31405 (Improper Control of Filename for Include/Require Statement in PHP Prog ...)
+ TODO: check
+CVE-2025-31403 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
+ TODO: check
+CVE-2025-31389 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-31384 (Improper Neutralization of Script-Related HTML Tags in a Web Page (Bas ...)
+ TODO: check
+CVE-2025-31381 (Missing Authorization vulnerability in shiptrack Booking Calendar and ...)
+ TODO: check
+CVE-2025-31130 (gitoxide is an implementation of git written in Rust. Before 0.42.0, g ...)
+ TODO: check
+CVE-2025-2798 (The Woffice CRM theme for WordPress is vulnerable to Authentication By ...)
+ TODO: check
+CVE-2025-2245 (A server-side request forgery (SSRF) vulnerability exists in the Bitde ...)
+ TODO: check
+CVE-2025-2244 (A vulnerability in thesendMailFromRemoteSourcemethod in Emails.php as ...)
+ TODO: check
+CVE-2025-2243 (A server-side request forgery (SSRF) vulnerability in Bitdefender Grav ...)
+ TODO: check
+CVE-2025-29477 (An issue in fluent-bit v.3.7.2 allows a local attacker to cause a deni ...)
+ TODO: check
+CVE-2025-29476 (Buffer Overflow vulnerability in compress_chunk_fuzzer with oss-fuzz o ...)
+ TODO: check
+CVE-2025-28146 (Edimax AC1200 Wave 2 Dual-Band Gigabit Router BR-6478AC V3 1.0.15 was ...)
+ TODO: check
+CVE-2025-27520 (BentoML is a Python library for building online serving systems optimi ...)
+ TODO: check
+CVE-2025-25178 (Software installed and run as a non-privileged user may conduct improp ...)
+ TODO: check
+CVE-2025-22285 (Missing Authorization vulnerability in Eniture Technology Pallet Packa ...)
+ TODO: check
+CVE-2025-22282 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-22281 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
+ TODO: check
+CVE-2025-1865 (The kernel driver, accessible to low-privileged users, exposes a funct ...)
+ TODO: check
+CVE-2025-0468 (Software installed and run as a non-privileged user may conduct improp ...)
+ TODO: check
+CVE-2024-51800 (Incorrect Privilege Assignment vulnerability in Favethemes Homey allow ...)
+ TODO: check
CVE-2025-3220 (A vulnerability was found in PHPGurukul e-Diary Management System 1.0. ...)
NOT-FOR-US: PHPGurukul
CVE-2025-3219 (A vulnerability was found in CodeCanyon Perfex CRM 3.2.1. It has been ...)
@@ -2992,7 +3348,7 @@ CVE-2025-2861 (SaTECH BCU in its firmware version 2.1.3 uses the HTTP protocol.
NOT-FOR-US: SaTECH BCU
CVE-2025-2860 (SaTECH BCU in its firmware version 2.1.3, allows an authenticated atta ...)
NOT-FOR-US: SaTECH BCU
-CVE-2025-2859 (An attacker with access to the network where the vulnerable device is ...)
+CVE-2025-2859 (An attacker with networkaccess,could capture traffic and obtain user c ...)
NOT-FOR-US: saTECH BCU
CVE-2025-2858 (Privilege escalation vulnerability in the saTECH BCU firmware version ...)
NOT-FOR-US: saTECH BCU
@@ -4236,7 +4592,8 @@ CVE-2025-30164 (Icinga Web 2 is an open source monitoring web interface, framewo
NOTE: https://github.com/Icinga/icingaweb2/security/advisories/GHSA-8r73-6686-wv8q
CVE-2025-30073 (An issue was discovered in OPC cardsystems Webapp Aufwertung 2.1.0. Th ...)
NOT-FOR-US: OPC cardsystems Webapp Aufwertung
-CVE-2025-2825 (CrushFTP versions 10.0.0 through 10.8.3 and 11.0.0 through 11.3.0 are ...)
+CVE-2025-2825
+ REJECTED
NOT-FOR-US: CrushFTP
CVE-2025-2820 (An authenticated attacker can compromise the availability of the devic ...)
NOT-FOR-US: Bizerba
@@ -7418,7 +7775,7 @@ CVE-2024-11284 (The WP JobHunt plugin for WordPress is vulnerable to privilege e
NOT-FOR-US: WordPress plugin
CVE-2024-11283 (The WP JobHunt plugin for WordPress is vulnerable to authentication by ...)
NOT-FOR-US: WordPress plugin
-CVE-2024-11235
+CVE-2024-11235 (In PHP versions 8.3.* before 8.3.19 and 8.4.* before 8.4.5, a code seq ...)
- php8.4 8.4.5-1
NOTE: https://github.com/php/php-src/security/advisories/GHSA-rwp7-7vc6-8477
CVE-2025-1861 (In PHP from 8.1.* before 8.1.32, from 8.2.* before 8.2.28, from 8.3.* ...)
@@ -18107,7 +18464,8 @@ CVE-2025-21700 (In the Linux kernel, the following vulnerability has been resolv
NOTE: https://git.kernel.org/linus/bc50835e83f60f56e9bec2b392fb5544f250fb6f (6.14-rc1)
CVE-2024-3303 (An issue was discovered in GitLab EE affecting all versions starting f ...)
- gitlab <not-affected> (Specific to EE)
-CVE-2025-0998 (Out of bounds memory access in V8 in Google Chrome prior to 133.0.6943 ...)
+CVE-2025-0998
+ REJECTED
{DSA-5866-1}
- chromium 133.0.6943.98-1
[bullseye] - chromium <end-of-life> (see #1061268)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a33146cdea58d2bf5e84067fbbad853375f1747e
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a33146cdea58d2bf5e84067fbbad853375f1747e
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250404/bd85fa5f/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list