[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Apr 4 21:32:29 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
5cc83e4d by Salvatore Bonaccorso at 2025-04-04T22:32:07+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -3,11 +3,11 @@ CVE-2025-3267 (A vulnerability, which was classified as critical, was found in q
CVE-2025-3266 (A vulnerability, which was classified as critical, has been found in q ...)
TODO: check
CVE-2025-3265 (A vulnerability classified as critical was found in PHPGurukul e-Diary ...)
- TODO: check
+ NOT-FOR-US: PHPGurukul
CVE-2025-3259 (A vulnerability, which was classified as critical, has been found in T ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2025-3258 (A vulnerability classified as critical was found in PHPGurukul Old Age ...)
- TODO: check
+ NOT-FOR-US: PHPGurukul
CVE-2025-3257 (A vulnerability classified as problematic has been found in xujiangfei ...)
TODO: check
CVE-2025-3256 (A vulnerability was found in xujiangfei admintwo 1.0. It has been rate ...)
@@ -25,313 +25,313 @@ CVE-2025-3251 (A vulnerability, which was classified as problematic, was found i
CVE-2025-3250 (A vulnerability, which was classified as problematic, has been found i ...)
TODO: check
CVE-2025-3249 (A vulnerability classified as critical was found in TOTOLINK A6000R 1. ...)
- TODO: check
+ NOT-FOR-US: TOTOLINK
CVE-2025-3245 (A vulnerability was found in itsourcecode Library Management System 1. ...)
- TODO: check
+ NOT-FOR-US: itsourcecode System
CVE-2025-3244 (A vulnerability was found in SourceCodester Web-based Pharmacy Product ...)
- TODO: check
+ NOT-FOR-US: SourceCodester
CVE-2025-3243 (A vulnerability was found in code-projects Patient Record Management S ...)
- TODO: check
+ NOT-FOR-US: code-projects
CVE-2025-3242 (A vulnerability has been found in PHPGurukul e-Diary Management System ...)
- TODO: check
+ NOT-FOR-US: PHPGurukul
CVE-2025-3241 (A vulnerability, which was classified as problematic, was found in zha ...)
TODO: check
CVE-2025-3240 (A vulnerability, which was classified as critical, has been found in P ...)
- TODO: check
+ NOT-FOR-US: PHPGurukul
CVE-2025-3239 (A vulnerability classified as critical was found in PHPGurukul Online ...)
- TODO: check
+ NOT-FOR-US: PHPGurukul
CVE-2025-3238 (A vulnerability classified as critical has been found in PHPGurukul On ...)
- TODO: check
+ NOT-FOR-US: PHPGurukul
CVE-2025-3237 (A vulnerability was found in Tenda FH1202 1.2.0.14(408). It has been r ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2025-3236 (A vulnerability was found in Tenda FH1202 1.2.0.14(408). It has been d ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2025-3235 (A vulnerability was found in PHPGurukul Old Age Home Management System ...)
- TODO: check
+ NOT-FOR-US: PHPGurukul
CVE-2025-3231 (A vulnerability was found in PHPGurukul Zoo Management System 2.1. It ...)
- TODO: check
+ NOT-FOR-US: PHPGurukul
CVE-2025-3229 (A vulnerability was found in PHPGurukul Restaurant Table Booking Syste ...)
- TODO: check
+ NOT-FOR-US: PHPGurukul
CVE-2025-3189 (Stored Cross-Site Scripting (XSS) in DoWISP in versions prior to 1.16. ...)
TODO: check
CVE-2025-32280 (Cross-Site Request Forgery (CSRF) vulnerability in weDevs WP Project M ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32278 (Cross-Site Request Forgery (CSRF) vulnerability in wprio Table Block b ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32277 (Missing Authorization vulnerability in Ateeq Rafeeq RepairBuddy allows ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32276 (Cross-Site Request Forgery (CSRF) vulnerability in Qu\xfd L\xea 91 Adm ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32274 (Cross-Site Request Forgery (CSRF) vulnerability in axew3 WP w3all phpB ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32273 (Cross-Site Request Forgery (CSRF) vulnerability in freetobook Freetobo ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32272 (Cross-Site Request Forgery (CSRF) vulnerability in PickPlugins Wishlis ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32271 (Cross-Site Request Forgery (CSRF) vulnerability in ablancodev Woocomme ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32270 (Cross-Site Request Forgery (CSRF) vulnerability in Broadstreet Broadst ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32269 (Cross-Site Request Forgery (CSRF) vulnerability in CRM Perks WP Zendes ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32268 (Cross-Site Request Forgery (CSRF) vulnerability in www.15.to QR Code T ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32267 (Cross-Site Request Forgery (CSRF) vulnerability in wpzinc Post to Soci ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32266 (Cross-Site Request Forgery (CSRF) vulnerability in wp-buy 404 Image Re ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32265 (Cross-Site Request Forgery (CSRF) vulnerability in Hossni Mubarak JobW ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32264 (Cross-Site Request Forgery (CSRF) vulnerability in Saiful Islam UltraA ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32263 (Cross-Site Request Forgery (CSRF) vulnerability in BeRocket Sequential ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32262 (Cross-Site Request Forgery (CSRF) vulnerability in Robert D Payne RDP ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32261 (Cross-Site Request Forgery (CSRF) vulnerability in Kuppuraj Advanced A ...)
TODO: check
CVE-2025-32258 (Missing Authorization vulnerability in InfoGiants Simple Website Logo ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32257 (Exposure of Sensitive System Information Due to Uncleared Debug Inform ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32256 (Missing Authorization vulnerability in devsoftbaltic SurveyJS allows A ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32255 (Exposure of Sensitive System Information to an Unauthorized Control Sp ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32254 (Missing Authorization vulnerability in Iqonic Design WPBookit allows A ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32253 (Missing Authorization vulnerability in ComMotion Course Booking System ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32252 (Missing Authorization vulnerability in blackandwhitedigital WP Genealo ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32251 (Exposure of Sensitive System Information to an Unauthorized Control Sp ...)
TODO: check
CVE-2025-32250 (Cross-Site Request Forgery (CSRF) vulnerability in rollbar Rollbar all ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32249 (Cross-Site Request Forgery (CSRF) vulnerability in designinvento Direc ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32248 (Cross-Site Request Forgery (CSRF) vulnerability in SwiftXR SwiftXR (3D ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32247 (Cross-Site Request Forgery (CSRF) vulnerability in ABCdatos AI Content ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32246 (Missing Authorization vulnerability in Tim Nguyen 1-Click Backup & ...)
TODO: check
CVE-2025-32241 (Cross-Site Request Forgery (CSRF) vulnerability in CleverReach\xae Off ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32239 (Missing Authorization vulnerability in Joao Romao Social Share Buttons ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32238 (Generation of Error Message Containing Sensitive Information vulnerabi ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32237 (Missing Authorization vulnerability in Stylemix MasterStudy LMS allows ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32235 (Missing Authorization vulnerability in sonaar MP3 Audio Player for Mus ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32234 (Missing Authorization vulnerability in aleswebs AdMail \u2013 Multilin ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32233 (Missing Authorization vulnerability in WP Chill Revive.so \u2013 Bulk ...)
TODO: check
CVE-2025-32232 (Missing Authorization vulnerability in ERA404 StaffList allows Exploit ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32231 (Missing Authorization vulnerability in Bookingor Bookingor allows Expl ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32229 (Missing Authorization vulnerability in Bowo Variable Inspector allows ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32226 (Missing Authorization vulnerability in Anzar Ahmed Display product var ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32225 (Missing Authorization vulnerability in WP Event Manager WP Event Manag ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32224 (Missing Authorization vulnerability in shivammani Privyr CRM allows Ex ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32220 (Missing Authorization vulnerability in Dimitri Grassi Salon booking sy ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32219 (Missing Authorization vulnerability in Syntactics, Inc. eaSYNC allows ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32218 (Missing Authorization vulnerability in RealMag777 TableOn \u2013 WordP ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32217 (Missing Authorization vulnerability in WP Messiah Ai Image Alt Text Ge ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32207 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32204 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32203 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32201 (Missing Authorization vulnerability in Xpro Xpro Theme Builder allows ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32200 (Improper Neutralization of Script-Related HTML Tags in a Web Page (Bas ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32197 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32196 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32195 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32194 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32193 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32192 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32191 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32190 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32189 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32188 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32187 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32186 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32185 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32184 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32183 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32182 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32181 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32179 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32178 (Missing Authorization vulnerability in 6Storage 6Storage Rentals allow ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32177 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32176 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32175 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32174 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32173 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32172 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32171 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32170 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32169 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32168 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32167 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32166 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32165 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32163 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32162 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32161 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
TODO: check
CVE-2025-32159 (Improper Control of Filename for Include/Require Statement in PHP Prog ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32157 (Improper Control of Filename for Include/Require Statement in PHP Prog ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32156 (Improper Control of Filename for Include/Require Statement in PHP Prog ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32155 (Improper Control of Filename for Include/Require Statement in PHP Prog ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32154 (Improper Control of Filename for Include/Require Statement in PHP Prog ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32153 (Improper Control of Filename for Include/Require Statement in PHP Prog ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32152 (Improper Control of Filename for Include/Require Statement in PHP Prog ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32151 (Improper Control of Filename for Include/Require Statement in PHP Prog ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32150 (Improper Control of Filename for Include/Require Statement in PHP Prog ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32149 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32148 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32147 (Missing Authorization vulnerability in coothemes Easy WP Optimizer all ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32146 (Improper Control of Filename for Include/Require Statement in PHP Prog ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32142 (Improper Control of Filename for Include/Require Statement in PHP Prog ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32141 (Improper Control of Filename for Include/Require Statement in PHP Prog ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32138 (Improper Restriction of XML External Entity Reference vulnerability in ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32137 (Relative Path Traversal vulnerability in Cristi\xe1n L\xe1vaque s2Memb ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32136 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32135 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32134 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32133 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32132 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32131 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32130 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32129 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32127 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32126 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32125 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32124 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32122 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32121 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32120 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
TODO: check
CVE-2025-32118 (Unrestricted Upload of File with Dangerous Type vulnerability in Niteo ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32113 (Cross-Site Request Forgery (CSRF) vulnerability in Renzo Tejada Libro ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32112 (Cross-Site Request Forgery (CSRF) vulnerability in OTWthemes Sidebar M ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31480 (aiven-extras is a PostgreSQL extension. This is a privilege escalation ...)
TODO: check
CVE-2025-31421 (Insertion of Sensitive Information into Externally-Accessible File or ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31420 (Incorrect Privilege Assignment vulnerability in Tomdever wpForo Forum ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31418 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31416 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31407 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31405 (Improper Control of Filename for Include/Require Statement in PHP Prog ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31403 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31389 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31384 (Improper Neutralization of Script-Related HTML Tags in a Web Page (Bas ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31381 (Missing Authorization vulnerability in shiptrack Booking Calendar and ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31130 (gitoxide is an implementation of git written in Rust. Before 0.42.0, g ...)
TODO: check
CVE-2025-2798 (The Woffice CRM theme for WordPress is vulnerable to Authentication By ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-2245 (A server-side request forgery (SSRF) vulnerability exists in the Bitde ...)
- TODO: check
+ NOT-FOR-US: Bitdefender
CVE-2025-2244 (A vulnerability in thesendMailFromRemoteSourcemethod in Emails.php as ...)
- TODO: check
+ NOT-FOR-US: Bitdefender
CVE-2025-2243 (A server-side request forgery (SSRF) vulnerability in Bitdefender Grav ...)
- TODO: check
+ NOT-FOR-US: Bitdefender
CVE-2025-29477 (An issue in fluent-bit v.3.7.2 allows a local attacker to cause a deni ...)
TODO: check
CVE-2025-29476 (Buffer Overflow vulnerability in compress_chunk_fuzzer with oss-fuzz o ...)
@@ -341,19 +341,19 @@ CVE-2025-28146 (Edimax AC1200 Wave 2 Dual-Band Gigabit Router BR-6478AC V3 1.0.1
CVE-2025-27520 (BentoML is a Python library for building online serving systems optimi ...)
TODO: check
CVE-2025-25178 (Software installed and run as a non-privileged user may conduct improp ...)
- TODO: check
+ NOT-FOR-US: Imagination Technologies
CVE-2025-22285 (Missing Authorization vulnerability in Eniture Technology Pallet Packa ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-22282 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-22281 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-1865 (The kernel driver, accessible to low-privileged users, exposes a funct ...)
TODO: check
CVE-2025-0468 (Software installed and run as a non-privileged user may conduct improp ...)
- TODO: check
+ NOT-FOR-US: Imagination Technologies
CVE-2024-51800 (Incorrect Privilege Assignment vulnerability in Favethemes Homey allow ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-3220 (A vulnerability was found in PHPGurukul e-Diary Management System 1.0. ...)
NOT-FOR-US: PHPGurukul
CVE-2025-3219 (A vulnerability was found in CodeCanyon Perfex CRM 3.2.1. It has been ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5cc83e4d124d6f74ea1bf86dfe07b49cdba1e455
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5cc83e4d124d6f74ea1bf86dfe07b49cdba1e455
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250404/a20cb0fa/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list