[Git][security-tracker-team/security-tracker][master] Add CVE-2025-59949/freshrss, itp'ed
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Dec 18 21:16:15 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
31889bc2 by Salvatore Bonaccorso at 2025-12-18T22:13:13+01:00
Add CVE-2025-59949/freshrss, itp'ed
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -108,7 +108,7 @@ CVE-2025-62961 (Missing Authorization vulnerability in Sparkle WP Sparkle FSE al
CVE-2025-62960 (Missing Authorization vulnerability in Sparkle WP Construction Light a ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-59949 (FreshRSS is a free, self-hostable RSS aggregator. Versions prior to 1. ...)
- TODO: check
+ - freshrss <itp> (bug #1032767)
CVE-2025-56157 (Default credentials in Dify thru 1.5.1. PostgreSQL username and passwo ...)
NOT-FOR-US: Dify
CVE-2025-40898 (A path traversal vulnerability was discovered in the Import Arc data a ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/31889bc24a3ba928b10c7c25f960462d486c50fd
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/31889bc24a3ba928b10c7c25f960462d486c50fd
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251218/6d4c6dca/attachment.htm>
More information about the debian-security-tracker-commits
mailing list