[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat Apr 12 09:14:50 BST 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
6b7e9307 by Salvatore Bonaccorso at 2025-04-12T10:14:27+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,31 +1,31 @@
 CVE-2025-3418 (The WPC Admin Columns plugin for WordPress is vulnerable to privilege  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-3292 (The User Registration & Membership \u2013 Custom Registration Form, Lo ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-3282 (The User Registration & Membership \u2013 Custom Registration Form, Lo ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-3276 (The SKT Blocks \u2013 Gutenberg based Page Builder plugin for WordPres ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-32726 (Improper access control in Visual Studio Code allows an authorized att ...)
 	TODO: check
 CVE-2025-2881 (The Developer Toolbar plugin for WordPress is vulnerable to Sensitive  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-2871 (The WordPress Mega Menu \u2013 QuadMenu plugin for WordPress is vulner ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-2841 (The Cart66 Cloud plugin for WordPress is vulnerable to Sensitive Infor ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-2269 (The Photo Gallery by 10Web \u2013 Mobile-Friendly Image Gallery plugin ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-29834 (Out-of-bounds read in Microsoft Edge (Chromium-based) allows an unauth ...)
-	TODO: check
+	NOT-FOR-US: Microsoft
 CVE-2025-29803 (Uncontrolled search path element in Visual Studio Tools for Applicatio ...)
 	TODO: check
 CVE-2025-0129 (Prisma Access Browser: Inappropriate control behavior in Prisma Access ...)
-	TODO: check
+	NOT-FOR-US: Palo Alto Networks
 CVE-2024-13338 (The Clearfy Cache \u2013 WordPress optimization plugin, Minify HTML, C ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-13337 (The Clearfy Cache \u2013 WordPress optimization plugin, Minify HTML, C ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-3528
 	NOT-FOR-US: quay-app container for the Mirror Registry application (Red Hat)
 CVE-2025-3439 (The Everest Forms \u2013 Contact Form, Quiz, Survey, Newsletter & Paym ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6b7e9307d3b6ba0041e83209860d9bc5665b92f2

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6b7e9307d3b6ba0041e83209860d9bc5665b92f2
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250412/8daea7ed/attachment.htm>

More information about the debian-security-tracker-commits mailing list