[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Aug 15 09:12:46 BST 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
4c1156af by security tracker role at 2025-08-15T08:12:38+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,107 @@
+CVE-2025-9022 (A vulnerability was identified in SourceCodester Online Bank Managemen ...)
+	TODO: check
+CVE-2025-9021 (A vulnerability was determined in SourceCodester Online Bank Managemen ...)
+	TODO: check
+CVE-2025-9020 (A vulnerability was found in PX4 PX4-Autopilot up to 1.15.4. This issu ...)
+	TODO: check
+CVE-2025-9019 (A vulnerability has been found in tcpreplay 4.5.1. This vulnerability  ...)
+	TODO: check
+CVE-2025-9017 (A vulnerability has been found in PHPGurukul Zoo Management System 2.1 ...)
+	TODO: check
+CVE-2025-9016 (A vulnerability was identified in Mechrevo Control Center GX V2 5.56.5 ...)
+	TODO: check
+CVE-2025-9013 (A vulnerability has been found in PHPGurukul Online Shopping Portal Pr ...)
+	TODO: check
+CVE-2025-9012 (A vulnerability was identified in PHPGurukul Online Shopping Portal Pr ...)
+	TODO: check
+CVE-2025-9011 (A vulnerability was determined in PHPGurukul Online Shopping Portal Pr ...)
+	TODO: check
+CVE-2025-9010 (A vulnerability was found in itsourcecode Online Tour and Travel Manag ...)
+	TODO: check
+CVE-2025-9009 (A vulnerability has been found in itsourcecode Online Tour and Travel  ...)
+	TODO: check
+CVE-2025-9008 (A vulnerability was identified in itsourcecode Online Tour and Travel  ...)
+	TODO: check
+CVE-2025-9007 (A vulnerability has been found in Tenda CH22 1.0.0.1. Affected by this ...)
+	TODO: check
+CVE-2025-9006 (A vulnerability was identified in Tenda CH22 1.0.0.1. Affected by this ...)
+	TODO: check
+CVE-2025-9005 (A vulnerability was determined in mtons mblog up to 3.5.0. Affected is ...)
+	TODO: check
+CVE-2025-9004 (A vulnerability was found in mtons mblog up to 3.5.0. This issue affec ...)
+	TODO: check
+CVE-2025-9003 (A vulnerability has been found in D-Link DIR-818LW 1.04. This vulnerab ...)
+	TODO: check
+CVE-2025-9002 (A vulnerability was identified in Surbowl dormitory-management-php 1.0 ...)
+	TODO: check
+CVE-2025-9001 (A vulnerability was determined in LemonOS up to nightly-2024-07-12 on  ...)
+	TODO: check
+CVE-2025-9000 (A vulnerability was found in Mechrevo Control Center GX V2 5.56.51.48. ...)
+	TODO: check
+CVE-2025-8993 (A vulnerability was found in itsourcecode Online Tour and Travel Manag ...)
+	TODO: check
+CVE-2025-8992 (A vulnerability has been found in mtons mblog up to 3.5.0. Affected by ...)
+	TODO: check
+CVE-2025-8991 (A vulnerability was identified in linlinjava litemall up to 1.8.0. Aff ...)
+	TODO: check
+CVE-2025-8990 (A vulnerability was determined in code-projects Online Medicine Guide  ...)
+	TODO: check
+CVE-2025-8989 (A vulnerability was found in SourceCodester COVID 19 Testing Managemen ...)
+	TODO: check
+CVE-2025-8988 (A vulnerability has been found in SourceCodester COVID 19 Testing Mana ...)
+	TODO: check
+CVE-2025-8987 (A vulnerability was identified in SourceCodester COVID 19 Testing Mana ...)
+	TODO: check
+CVE-2025-8986 (A vulnerability was determined in SourceCodester COVID 19 Testing Mana ...)
+	TODO: check
+CVE-2025-8985 (A vulnerability was found in SourceCodester COVID 19 Testing Managemen ...)
+	TODO: check
+CVE-2025-8984 (A vulnerability has been found in itsourcecode Online Tour and Travel  ...)
+	TODO: check
+CVE-2025-8983 (A vulnerability was identified in itsourcecode Online Tour and Travel  ...)
+	TODO: check
+CVE-2025-8982 (A vulnerability was determined in itsourcecode Online Tour and Travel  ...)
+	TODO: check
+CVE-2025-8867 (The Graphina - Elementor Charts and Graphs plugin for WordPress is vul ...)
+	TODO: check
+CVE-2025-8680 (The B Slider- Gutenberg Slider Block for WP plugin for WordPress is vu ...)
+	TODO: check
+CVE-2025-8676 (The B Slider- Gutenberg Slider Block for WP plugin for WordPress is vu ...)
+	TODO: check
+CVE-2025-8604 (The WP Table Builder \u2013 WordPress Table Plugin plugin for WordPres ...)
+	TODO: check
+CVE-2025-8451 (The Essential Addons for Elementor \u2013 Popular Elementor Templates  ...)
+	TODO: check
+CVE-2025-8342 (The WooCommerce OTP Login With Phone Number, OTP Verification plugin f ...)
+	TODO: check
+CVE-2025-8013 (The Quttera Web Malware Scanner plugin for WordPress is vulnerable to  ...)
+	TODO: check
+CVE-2025-6679 (The Bit Form builder plugin for WordPress is vulnerable to arbitrary f ...)
+	TODO: check
+CVE-2025-6025 (The Order Tip for WooCommerce plugin for WordPress is vulnerable to Un ...)
+	TODO: check
+CVE-2025-55726
+	REJECTED
+CVE-2025-55725
+	REJECTED
+CVE-2025-55724
+	REJECTED
+CVE-2025-55723
+	REJECTED
+CVE-2025-55722
+	REJECTED
+CVE-2025-55721
+	REJECTED
+CVE-2025-55720
+	REJECTED
+CVE-2025-55719
+	REJECTED
+CVE-2025-55718
+	REJECTED
+CVE-2025-31987 (HCL Connections Docs may mishandle validation of certain uploaded docu ...)
+	TODO: check
+CVE-2025-31961 (HCL Connections contains a broken access control vulnerability that ma ...)
+	TODO: check
 CVE-2025-9043 (The service executable path in Seagate Toolkit on Versions prior to 2. ...)
 	NOT-FOR-US: Seagate
 CVE-2025-9042 (A security issue exists due to improper handling of CIP Class 32\u2019 ...)
@@ -371064,19 +371168,19 @@ CVE-2021-27925 (An issue was discovered in Couchbase Server 6.5.x and 6.6.x thro
 	NOT-FOR-US: Couchbase Server
 CVE-2021-27924 (An issue was discovered in Couchbase Server 6.x through 6.6.1. The Cou ...)
 	NOT-FOR-US: Couchbase Server
-CVE-2021-27923 (Pillow before 8.1.1 allows attackers to cause a denial of service (mem ...)
+CVE-2021-27923 (Pillow before 8.1.2 allows attackers to cause a denial of service (mem ...)
 	- pillow 8.1.2-1
 	[buster] - pillow 5.4.1-2+deb10u3
 	[stretch] - pillow <ignored> (Minor issue, risk of regression, _decompression_bomb_check only warned, see CVE-2019-16865)
 	NOTE: https://pillow.readthedocs.io/en/stable/releasenotes/8.1.2.html
 	NOTE: https://github.com/python-pillow/Pillow/commit/756fff33128a0b643d10518a26ad04b726dd8973
-CVE-2021-27922 (Pillow before 8.1.1 allows attackers to cause a denial of service (mem ...)
+CVE-2021-27922 (Pillow before 8.1.2 allows attackers to cause a denial of service (mem ...)
 	- pillow 8.1.2-1
 	[buster] - pillow 5.4.1-2+deb10u3
 	[stretch] - pillow <ignored> (Minor issue, risk of regression, _decompression_bomb_check only warned, see CVE-2019-16865)
 	NOTE: https://pillow.readthedocs.io/en/stable/releasenotes/8.1.2.html
 	NOTE: https://github.com/python-pillow/Pillow/commit/756fff33128a0b643d10518a26ad04b726dd8973
-CVE-2021-27921 (Pillow before 8.1.1 allows attackers to cause a denial of service (mem ...)
+CVE-2021-27921 (Pillow before 8.1.2 allows attackers to cause a denial of service (mem ...)
 	- pillow 8.1.2-1
 	[buster] - pillow 5.4.1-2+deb10u3
 	[stretch] - pillow <not-affected> (Vulnerable code introduced later)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4c1156af76771a9cdf941aa7a852c35608ed71a1

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4c1156af76771a9cdf941aa7a852c35608ed71a1
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250815/1a34ba36/attachment.htm>

More information about the debian-security-tracker-commits mailing list