[Git][security-tracker-team/security-tracker][master] automatic update

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a1ef5a65 by security tracker role at 2025-04-26T08:12:22+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,45 @@
+CVE-2025-46333 (z2d is a pure Zig 2D graphics library. In version 0.6.0, when writing  ...)
+	TODO: check
+CVE-2025-3915 (The Aeropage Sync for Airtable plugin for WordPress is vulnerable to u ...)
+	TODO: check
+CVE-2025-3914 (The Aeropage Sync for Airtable plugin for WordPress is vulnerable to a ...)
+	TODO: check
+CVE-2025-3906 (The Integra\xe7\xe3o entre Eduzz e Woocommerce plugin for WordPress is ...)
+	TODO: check
+CVE-2025-3491 (The Add custom page template plugin for WordPress is vulnerable to PHP ...)
+	TODO: check
+CVE-2025-32986 (NETSCOUT nGeniusONE before 6.4.0 b2350 has a Sensitive File Accessible ...)
+	TODO: check
+CVE-2025-32985 (NETSCOUT nGeniusONE before 6.4.0 b2350 has Hardcoded Credentials that  ...)
+	TODO: check
+CVE-2025-32984 (NETSCOUT nGeniusONE before 6.4.0 b2350 allows Stored Cross-Site Script ...)
+	TODO: check
+CVE-2025-32983 (NETSCOUT nGeniusONE before 6.4.0 b2350 allows Technical Information Di ...)
+	TODO: check
+CVE-2025-32982 (NETSCOUT nGeniusONE before 6.4.0 b2350 has a Broken Authorization Sche ...)
+	TODO: check
+CVE-2025-32981 (NETSCOUT nGeniusONE before 6.4.0 b2350 allows local users to leverage  ...)
+	TODO: check
+CVE-2025-32980 (NETSCOUT nGeniusONE before 6.4.0 b2350 has a Weak Sudo Configuration.)
+	TODO: check
+CVE-2025-32979 (NETSCOUT nGeniusONE before 6.4.0 b2350 allows Arbitrary File Creation  ...)
+	TODO: check
+CVE-2025-2907 (The Order Delivery Date WordPress plugin before 12.3.1 does not have a ...)
+	TODO: check
+CVE-2025-2851 (A vulnerability classified as critical has been found in GL.iNet GL-A1 ...)
+	TODO: check
+CVE-2025-2850 (A vulnerability was found in GL.iNet GL-A1300 Slate Plus, GL-AR300M16  ...)
+	TODO: check
+CVE-2025-2811 (A vulnerability was found in GL.iNet GL-A1300 Slate Plus, GL-AR300M16  ...)
+	TODO: check
+CVE-2025-2801 (The The Create custom forms for WordPress with a smart form plugin for ...)
+	TODO: check
+CVE-2025-2105 (The Jupiter X Core plugin for WordPress is vulnerable to PHP Object In ...)
+	TODO: check
+CVE-2025-1458 (The Element Pack Addons for Elementor \u2013 Free Templates and Widget ...)
+	TODO: check
+CVE-2024-13808 (The Xpro Elementor Addons - Pro plugin for WordPress is vulnerable to  ...)
+	TODO: check
 CVE-2025-46618 (In JetBrains TeamCity before 2025.03.1 stored XSS was possible on Data ...)
 	NOT-FOR-US: JetBrains
 CVE-2025-46535 (Missing Authorization vulnerability in AlphaEfficiencyTeam Custom Logi ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a1ef5a651d7ade870860ae8faae8af6a3c5df0cd

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a1ef5a651d7ade870860ae8faae8af6a3c5df0cd
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250426/73779901/attachment.htm>