[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Dec 29 08:12:57 GMT 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ee52ed6b by security tracker role at 2025-12-29T08:12:48+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,77 @@
+CVE-2025-52691 (Successful exploitation of the vulnerability could allow an unauthenti ...)
+	TODO: check
+CVE-2025-15228 (BPMFlowWebkit developed by WELLTEND TECHNOLOGY has a Arbitrary File Up ...)
+	TODO: check
+CVE-2025-15227 (BPMFlowWebkit developed by WELLTEND TECHNOLOGY has a Arbitrary File Re ...)
+	TODO: check
+CVE-2025-15226 (WMPro developed by Sunnet has a Arbitrary File Upload vulnerability, a ...)
+	TODO: check
+CVE-2025-15225 (WMPro developed by Sunnet has an Arbitrary File Read vulnerability, al ...)
+	TODO: check
+CVE-2025-15179 (A vulnerability was determined in Tenda WH450 1.0.0.18. Impacted is an ...)
+	TODO: check
+CVE-2025-15178 (A vulnerability was found in Tenda WH450 1.0.0.18. This issue affects  ...)
+	TODO: check
+CVE-2025-15177 (A vulnerability has been found in Tenda WH450 1.0.0.18. This vulnerabi ...)
+	TODO: check
+CVE-2025-15176 (A flaw has been found in Open5GS up to 2.7.5. This affects the functio ...)
+	TODO: check
+CVE-2025-15175 (A vulnerability was detected in SohuTV CacheCloud up to 3.2.0. Affecte ...)
+	TODO: check
+CVE-2025-15174 (A security vulnerability has been detected in SohuTV CacheCloud up to  ...)
+	TODO: check
+CVE-2025-15173 (A weakness has been identified in SohuTV CacheCloud up to 3.2.0. Affec ...)
+	TODO: check
+CVE-2025-15172 (A security flaw has been discovered in SohuTV CacheCloud up to 3.2.0.  ...)
+	TODO: check
+CVE-2025-15171 (A vulnerability was identified in SohuTV CacheCloud up to 3.2.0. This  ...)
+	TODO: check
+CVE-2025-15170 (A security vulnerability has been detected in Advaya Softech GEMS ERP  ...)
+	TODO: check
+CVE-2025-15169 (A weakness has been identified in BiggiDroid Simple PHP CMS 1.0. Affec ...)
+	TODO: check
+CVE-2025-15168 (A vulnerability was identified in itsourcecode Student Management Syst ...)
+	TODO: check
+CVE-2025-15167 (A vulnerability was determined in itsourcecode Online Cake Ordering Sy ...)
+	TODO: check
+CVE-2025-15166 (A vulnerability was found in itsourcecode Online Cake Ordering System  ...)
+	TODO: check
+CVE-2025-15165 (A vulnerability has been found in itsourcecode Online Cake Ordering Sy ...)
+	TODO: check
+CVE-2025-15164 (A security flaw has been discovered in Tenda WH450 1.0.0.18. This affe ...)
+	TODO: check
+CVE-2025-15163 (A vulnerability was identified in Tenda WH450 1.0.0.18. Affected by th ...)
+	TODO: check
+CVE-2025-15162 (A vulnerability was determined in Tenda WH450 1.0.0.18. Affected by th ...)
+	TODO: check
+CVE-2025-15161 (A vulnerability was found in Tenda WH450 1.0.0.18. Affected is an unkn ...)
+	TODO: check
+CVE-2025-15160 (A vulnerability has been found in Tenda WH450 1.0.0.18. This impacts a ...)
+	TODO: check
+CVE-2025-15156 (A flaw has been found in omec-project UPF up to 2.1.3-dev. This affect ...)
+	TODO: check
+CVE-2025-15155 (A vulnerability was detected in floooh sokol up to 16cbcc864012898793c ...)
+	TODO: check
+CVE-2025-15154 (A security vulnerability has been detected in PbootCMS up to 3.2.12. T ...)
+	TODO: check
+CVE-2025-15153 (A weakness has been identified in PbootCMS up to 3.2.12. Impacted is a ...)
+	TODO: check
+CVE-2025-15070 (Exposure of Sensitive Information to an Unauthorized Actor, Missing Au ...)
+	TODO: check
+CVE-2025-15069 (Improper Authentication vulnerability in Gmission Web Fax allows Privi ...)
+	TODO: check
+CVE-2025-15068 (Missing Authorization vulnerability in Gmission Web Fax allows Privile ...)
+	TODO: check
+CVE-2025-15067 (Unrestricted Upload of File with Dangerous Type vulnerability in Innor ...)
+	TODO: check
+CVE-2025-15066 (Improper Limitation of a Pathname to a Restricted Directory ('Path Tra ...)
+	TODO: check
+CVE-2025-15065 (Exposure of Sensitive Information to an Unauthorized Actor, Missing En ...)
+	TODO: check
+CVE-2025-13958 (The YaMaps for WordPress Plugin WordPress plugin before 0.6.40 does no ...)
+	TODO: check
+CVE-2025-13417 (The Plugin Organizer WordPress plugin before 10.2.4 does not sanitize  ...)
+	TODO: check
 CVE-2025-14269
 	NOT-FOR-US: Headlamp
 CVE-2025-68973 (In GnuPG through 2.4.8, armor_filter in g10/armor.c has two increments ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ee52ed6b078b94e9fb68a990e3fb10a16e858ae3

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ee52ed6b078b94e9fb68a990e3fb10a16e858ae3
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251229/faabea53/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list