[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sat Dec 13 22:57:38 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
848dfae1 by Salvatore Bonaccorso at 2025-12-13T23:57:09+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -11,19 +11,19 @@ CVE-2025-8195 (The JetWidgets For Elementor plugin for WordPress is vulnerable t
CVE-2025-7960 (The King Addons for Elementor plugin for WordPress is vulnerable to St ...)
NOT-FOR-US: WordPress plugin
CVE-2025-36754 (The authentication mechanism on web interface is not properly implemen ...)
- TODO: check
+ NOT-FOR-US: Growatt ShineLan-X
CVE-2025-36753 (The SWD debug interface on the Growatt ShineLan-X communication dongle ...)
- TODO: check
+ NOT-FOR-US: Growatt ShineLan-X
CVE-2025-36752 (Growatt ShineLan-X communication dongle has an undocumented backup acc ...)
- TODO: check
+ NOT-FOR-US: Growatt ShineLan-X
CVE-2025-36751 (Encryption is missing on the configuration interface for GrowattShineL ...)
- TODO: check
+ NOT-FOR-US: Growatt ShineLan-X
CVE-2025-36750 (ShineLan-X containsa stored cross site scripting (XSS) vulnerability i ...)
- TODO: check
+ NOT-FOR-US: Growatt ShineLan-X
CVE-2025-36748 (ShineLan-X containsa stored cross site scripting (XSS) vulnerability i ...)
- TODO: check
+ NOT-FOR-US: Growatt ShineLan-X
CVE-2025-36747 (ShineLan-X containsa set of credentials for an FTP server was found wi ...)
- TODO: check
+ NOT-FOR-US: Growatt ShineLan-X
CVE-2025-14637 (A weakness has been identified in itsourcecode Online Pet Shop Managem ...)
NOT-FOR-US: itsourcecode System
CVE-2025-14636 (A security flaw has been discovered in Tenda AX9 22.03.01.46. This aff ...)
@@ -39,11 +39,11 @@ CVE-2025-14620 (A vulnerability was determined in code-projects Student File Man
CVE-2025-14619 (A vulnerability was found in code-projects Student File Management Sys ...)
NOT-FOR-US: code-projects
CVE-2025-14617 (A vulnerability has been found in Jehovahs Witnesses JW Library App up ...)
- TODO: check
+ NOT-FOR-US: Jehovahs Witnesses JW Library App
CVE-2025-14607 (A vulnerability was detected in OFFIS DCMTK up to 3.6.9. Affected by t ...)
TODO: check
CVE-2025-14606 (A security vulnerability has been detected in tiny-rdm Tiny RDM up to ...)
- TODO: check
+ NOT-FOR-US: tiny-rdm Tiny RDM
CVE-2025-14590 (A security vulnerability has been detected in code-projects Prison Man ...)
NOT-FOR-US: code-projects
CVE-2025-14589 (A weakness has been identified in code-projects Prison Management Syst ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/848dfae1072f5c32d1ba36e4a11b90f5635367e4
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/848dfae1072f5c32d1ba36e4a11b90f5635367e4
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251213/dd3582f8/attachment.htm>
More information about the debian-security-tracker-commits
mailing list