[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update

Tue Aug 5 09:13:08 BST 2025


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
6515f438 by security tracker role at 2025-08-05T08:12:59+00:00
automatic NOT-FOR-US entries update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -45,23 +45,23 @@ CVE-2025-8526 (A vulnerability was found in Exrick xboot up to 3.3.4. It has bee
 CVE-2025-8525 (A vulnerability was found in Exrick xboot up to 3.3.4. It has been cla ...)
 	TODO: check
 CVE-2025-8315 (The WP Easy Contact plugin for WordPress is vulnerable to Stored Cross ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-8313 (The Campus Directory plugin for WordPress is vulnerable to Stored Cros ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-8295 (The Employee Directory plugin for WordPress is vulnerable to Stored Cr ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-8294 (The Download Counter plugin for WordPress is vulnerable to Stored Cros ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-7844 (Exporting a TPM based RSA key larger than 2048 bits from the TPM could ...)
 	TODO: check
 CVE-2025-7050 (The Use-your-Drive | Google Drive plugin for WordPress plugin for Word ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-6207 (The WP Import Export Lite plugin for WordPress is vulnerable to arbitr ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-5061 (The WP Import Export Lite plugin for WordPress is vulnerable to arbitr ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-54982 (An improper verification of cryptographic signature in Zscaler's SAML  ...)
-	TODO: check
+	NOT-FOR-US: Zscaler
 CVE-2025-54980
 	REJECTED
 CVE-2025-54979
@@ -111,7 +111,7 @@ CVE-2025-54119 (ADOdb is a PHP database class library that provides abstractions
 CVE-2025-53544 (Trilium Notes is an open-source, cross-platform hierarchical note taki ...)
 	TODO: check
 CVE-2025-53417 (DIAView (v4.2.0 and prior) - Directory Traversal Information Disclosur ...)
-	TODO: check
+	NOT-FOR-US: Delta Electronics
 CVE-2025-52892 (EspoCRM is a web application with a frontend designed as a single-page ...)
 	TODO: check
 CVE-2025-51726 (CyberGhostVPNSetup.exe (Windows installer) is signed using the weak cr ...)
@@ -123,9 +123,9 @@ CVE-2025-50754 (Unisite CMS version 5.0 contains a stored Cross-Site Scripting (
 CVE-2025-50341 (A Boolean-based SQL injection vulnerability was discovered in Axelor 5 ...)
 	TODO: check
 CVE-2025-4604 (The vulnerable code can bypass the Captcha check in Liferay Portal 7.4 ...)
-	TODO: check
+	NOT-FOR-US: Liferay
 CVE-2025-4599 (The fragment preview functionality in Liferay Portal 7.4.3.61 through  ...)
-	TODO: check
+	NOT-FOR-US: Liferay
 CVE-2025-46093 (LiquidFiles before 4.1.2 supports FTP SITE CHMOD for mode 6777 (setuid ...)
 	TODO: check
 CVE-2025-27212 (An Improper Input Validation in certain UniFi Access devices could all ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6515f4388f6a6ca77d33a528338cf3f92b70661a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6515f4388f6a6ca77d33a528338cf3f92b70661a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250805/d41f96b6/attachment.htm>
