[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sat Apr 26 09:13:28 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
ca85d3eb by security tracker role at 2025-04-26T08:13:21+00:00
automatic NOT-FOR-US entries update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,13 +1,13 @@
CVE-2025-46333 (z2d is a pure Zig 2D graphics library. In version 0.6.0, when writing ...)
TODO: check
CVE-2025-3915 (The Aeropage Sync for Airtable plugin for WordPress is vulnerable to u ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-3914 (The Aeropage Sync for Airtable plugin for WordPress is vulnerable to a ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-3906 (The Integra\xe7\xe3o entre Eduzz e Woocommerce plugin for WordPress is ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-3491 (The Add custom page template plugin for WordPress is vulnerable to PHP ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-32986 (NETSCOUT nGeniusONE before 6.4.0 b2350 has a Sensitive File Accessible ...)
TODO: check
CVE-2025-32985 (NETSCOUT nGeniusONE before 6.4.0 b2350 has Hardcoded Credentials that ...)
@@ -25,7 +25,7 @@ CVE-2025-32980 (NETSCOUT nGeniusONE before 6.4.0 b2350 has a Weak Sudo Configura
CVE-2025-32979 (NETSCOUT nGeniusONE before 6.4.0 b2350 allows Arbitrary File Creation ...)
TODO: check
CVE-2025-2907 (The Order Delivery Date WordPress plugin before 12.3.1 does not have a ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-2851 (A vulnerability classified as critical has been found in GL.iNet GL-A1 ...)
TODO: check
CVE-2025-2850 (A vulnerability was found in GL.iNet GL-A1300 Slate Plus, GL-AR300M16 ...)
@@ -33,13 +33,13 @@ CVE-2025-2850 (A vulnerability was found in GL.iNet GL-A1300 Slate Plus, GL-AR30
CVE-2025-2811 (A vulnerability was found in GL.iNet GL-A1300 Slate Plus, GL-AR300M16 ...)
TODO: check
CVE-2025-2801 (The The Create custom forms for WordPress with a smart form plugin for ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-2105 (The Jupiter X Core plugin for WordPress is vulnerable to PHP Object In ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-1458 (The Element Pack Addons for Elementor \u2013 Free Templates and Widget ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-13808 (The Xpro Elementor Addons - Pro plugin for WordPress is vulnerable to ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46618 (In JetBrains TeamCity before 2025.03.1 stored XSS was possible on Data ...)
NOT-FOR-US: JetBrains
CVE-2025-46535 (Missing Authorization vulnerability in AlphaEfficiencyTeam Custom Logi ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ca85d3ebc00e39eb9f7427cbf09858c3cb9ce38e
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ca85d3ebc00e39eb9f7427cbf09858c3cb9ce38e
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250426/0a6fe1a1/attachment.htm>
More information about the debian-security-tracker-commits
mailing list