[Git][security-tracker-team/security-tracker][master] automatic update

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d7d6d355 by security tracker role at 2025-08-02T20:12:38+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,31 @@
+CVE-2025-8488 (The Ultimate Addons for Elementor (Formerly Elementor Header & Footer  ...)
+	TODO: check
+CVE-2025-8471 (A vulnerability, which was classified as critical, has been found in p ...)
+	TODO: check
+CVE-2025-8470 (A vulnerability classified as critical was found in SourceCodester Onl ...)
+	TODO: check
+CVE-2025-8469 (A vulnerability classified as critical has been found in SourceCodeste ...)
+	TODO: check
+CVE-2025-8468 (A vulnerability was found in code-projects Wazifa System 1.0. It has b ...)
+	TODO: check
+CVE-2025-8467 (A vulnerability was found in code-projects Wazifa System 1.0. It has b ...)
+	TODO: check
+CVE-2025-8466 (A vulnerability was found in code-projects Online Farm System 1.0. It  ...)
+	TODO: check
+CVE-2025-8400 (The Image Gallery plugin for WordPress is vulnerable to Reflected Cros ...)
+	TODO: check
+CVE-2025-8399 (The Mmm Unity Loader plugin for WordPress is vulnerable to Stored Cros ...)
+	TODO: check
+CVE-2025-8391 (The Magic Edge \u2013 Lite plugin for WordPress is vulnerable to Store ...)
+	TODO: check
+CVE-2025-7710 (The Brave Conversion Engine (PRO) plugin for WordPress is vulnerable t ...)
+	TODO: check
+CVE-2025-7500 (The Ocean Social Sharing plugin for WordPress is vulnerable to Stored  ...)
+	TODO: check
+CVE-2025-6832 (The All in One Time Clock Lite \u2013 Tracking Employee Time Has Never ...)
+	TODO: check
+CVE-2025-6722 (The BitFire Security \u2013 Firewall, WAF, Bot/Spam Blocker, Login Sec ...)
+	TODO: check
 CVE-2025-8317 (The Custom Word Cloud plugin for WordPress is vulnerable to Stored Cro ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2025-8212 (The Medical Addon for Elementor plugin for WordPress is vulnerable to  ...)
@@ -1342,7 +1370,8 @@ CVE-2025-38468 (In the Linux kernel, the following vulnerability has been resolv
 	NOTE: https://git.kernel.org/linus/0e1d5d9b5c5966e2e42e298670808590db5ed628 (6.16-rc7)
 CVE-2025-8267 (Versions of the package ssrfcheck before 1.2.0 are vulnerable to Serve ...)
 	NOT-FOR-US: ssrfcheck
-CVE-2025-8263 (A vulnerability was found in prettier up to 3.6.2. It has been declare ...)
+CVE-2025-8263
+	REJECTED
 	- node-prettier <itp> (bug #879665)
 CVE-2025-8262 (A vulnerability was found in yarnpkg Yarn up to 1.22.22. It has been c ...)
 	- node-yarnpkg <unfixed>



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d7d6d3550b4ca79f46cffb5c11dad566e8106ec2

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d7d6d3550b4ca79f46cffb5c11dad566e8106ec2
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250802/e1a389d6/attachment-0001.htm>