[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat Dec 13 20:13:51 GMT 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b4c58f3a by security tracker role at 2025-12-13T20:13:42+00:00
automatic NOT-FOR-US entries update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,15 +1,15 @@
 CVE-2025-9856 (The Popup Builder \u2013 Create highly converting, mobile friendly mar ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-8780 (The Livemesh SiteOrigin Widgets plugin for WordPress is vulnerable to  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-8687 (The Enter Addons plugin for WordPress is vulnerable to Stored Cross-Si ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-8199 (The MarqueeAddons plugin for WordPress is vulnerable to Stored Cross-S ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-8195 (The JetWidgets For Elementor plugin for WordPress is vulnerable to Sto ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-7960 (The King Addons for Elementor plugin for WordPress is vulnerable to St ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-36754 (The authentication mechanism on web interface is not properly implemen ...)
 	TODO: check
 CVE-2025-36753 (The SWD debug interface on the Growatt ShineLan-X communication dongle ...)
@@ -25,19 +25,19 @@ CVE-2025-36748 (ShineLan-X containsa stored cross site scripting (XSS) vulnerabi
 CVE-2025-36747 (ShineLan-X containsa set of credentials for an FTP server was found wi ...)
 	TODO: check
 CVE-2025-14637 (A weakness has been identified in itsourcecode Online Pet Shop Managem ...)
-	TODO: check
+	NOT-FOR-US: itsourcecode System
 CVE-2025-14636 (A security flaw has been discovered in Tenda AX9 22.03.01.46. This aff ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2025-14623 (A weakness has been identified in code-projects Student File Managemen ...)
-	TODO: check
+	NOT-FOR-US: code-projects
 CVE-2025-14622 (A security flaw has been discovered in code-projects Student File Mana ...)
-	TODO: check
+	NOT-FOR-US: code-projects
 CVE-2025-14621 (A vulnerability was identified in code-projects Student File Managemen ...)
-	TODO: check
+	NOT-FOR-US: code-projects
 CVE-2025-14620 (A vulnerability was determined in code-projects Student File Managemen ...)
-	TODO: check
+	NOT-FOR-US: code-projects
 CVE-2025-14619 (A vulnerability was found in code-projects Student File Management Sys ...)
-	TODO: check
+	NOT-FOR-US: code-projects
 CVE-2025-14617 (A vulnerability has been found in Jehovahs Witnesses JW Library App up ...)
 	TODO: check
 CVE-2025-14607 (A vulnerability was detected in OFFIS DCMTK up to 3.6.9. Affected by t ...)
@@ -45,17 +45,17 @@ CVE-2025-14607 (A vulnerability was detected in OFFIS DCMTK up to 3.6.9. Affecte
 CVE-2025-14606 (A security vulnerability has been detected in tiny-rdm Tiny RDM up to  ...)
 	TODO: check
 CVE-2025-14590 (A security vulnerability has been detected in code-projects Prison Man ...)
-	TODO: check
+	NOT-FOR-US: code-projects
 CVE-2025-14589 (A weakness has been identified in code-projects Prison Management Syst ...)
-	TODO: check
+	NOT-FOR-US: code-projects
 CVE-2025-14588 (A security flaw has been discovered in itsourcecode Student Management ...)
-	TODO: check
+	NOT-FOR-US: itsourcecode System
 CVE-2025-14587 (A vulnerability was identified in itsourcecode Online Pet Shop Managem ...)
-	TODO: check
+	NOT-FOR-US: itsourcecode System
 CVE-2025-14542 (The vulnerability arises when a client fetches a tools\u2019 JSON spec ...)
 	TODO: check
 CVE-2025-0969 (The Brizy \u2013 Page Builder plugin for WordPress is vulnerable to Se ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-9873 (The a3 Lazy Load plugin for WordPress is vulnerable to Stored Cross-Si ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2025-9488 (The Redux Framework plugin for WordPress is vulnerable to Stored Cross ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b4c58f3a4f34337a79f1956acd5b370201f26a84

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b4c58f3a4f34337a79f1956acd5b370201f26a84
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251213/57f8b227/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list