[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Dec 30 08:41:03 GMT 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1ef193b4 by Salvatore Bonaccorso at 2025-12-30T09:38:17+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -26,7 +26,7 @@ CVE-2025-68499 (Improper Neutralization of Input During Web Page Generation ('Cr
 CVE-2025-68498 (Missing Authorization vulnerability in Crocoblock JetTabs allows Explo ...)
 	NOT-FOR-US: WordPress plugin or theme
 CVE-2025-68120 (To prevent unexpected untrusted code execution, the Visual Studio Code ...)
-	TODO: check
+	NOT-FOR-US: vscode-go
 CVE-2025-68040 (Insertion of Sensitive Information Into Sent Data vulnerability in weD ...)
 	NOT-FOR-US: WordPress plugin or theme
 CVE-2025-68036 (Missing Authorization vulnerability in Emraan Cheema CubeWP allows Acc ...)
@@ -40,7 +40,7 @@ CVE-2025-23469 (Improper Neutralization of Input During Web Page Generation ('Cr
 CVE-2025-23458 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
 	NOT-FOR-US: WordPress plugin or theme
 CVE-2025-15355 (ISOinsight developed by NetVision Information has a Reflected Cross-si ...)
-	TODO: check
+	NOT-FOR-US: NetVision Information
 CVE-2025-15284 (Improper Input Validation vulnerability in qs (parse modules) allows H ...)
 	TODO: check
 CVE-2025-15233 (A security flaw has been discovered in Tenda M3 1.0.0.13(4903). This i ...)
@@ -54,13 +54,13 @@ CVE-2025-15230 (A vulnerability was found in Tenda M3 1.0.0.13(4903). Affected b
 CVE-2025-15229 (A vulnerability has been found in Tenda CH22 up to 1.0.0.1. Affected b ...)
 	NOT-FOR-US: Tenda
 CVE-2025-15222 (A vulnerability has been found in Dromara Sa-Token up to 1.44.0. This  ...)
-	TODO: check
+	NOT-FOR-US: Dromara Sa-Token
 CVE-2025-15221 (A flaw has been found in SohuTV CacheCloud up to 3.2.0. This vulnerabi ...)
-	TODO: check
+	NOT-FOR-US: SohuTV CacheCloud
 CVE-2025-15220 (A vulnerability was detected in SohuTV CacheCloud up to 3.2.0. This af ...)
-	TODO: check
+	NOT-FOR-US: SohuTV CacheCloud
 CVE-2025-15219 (A security vulnerability has been detected in SohuTV CacheCloud up to  ...)
-	TODO: check
+	NOT-FOR-US: SohuTV CacheCloud
 CVE-2025-15218 (A weakness has been identified in Tenda AC10U 15.03.06.48/15.03.06.49. ...)
 	NOT-FOR-US: Tenda
 CVE-2025-15217 (A security flaw has been discovered in Tenda AC23 16.03.07.52. Affecte ...)
@@ -90,19 +90,19 @@ CVE-2025-15206 (A flaw has been found in Campcodes Supplier Management System 1.
 CVE-2025-15205 (A vulnerability was identified in code-projects Student File Managemen ...)
 	NOT-FOR-US: code-projects
 CVE-2025-15204 (A vulnerability was determined in SohuTV CacheCloud up to 3.2.0. Affec ...)
-	TODO: check
+	NOT-FOR-US: SohuTV CacheCloud
 CVE-2025-15203 (A vulnerability was found in SohuTV CacheCloud up to 3.2.0. This impac ...)
-	TODO: check
+	NOT-FOR-US: SohuTV CacheCloud
 CVE-2025-14313 (The Advance WP Query Search Filter WordPress plugin through 1.0.10 doe ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2025-14312 (The Advance WP Query Search Filter WordPress plugin through 1.0.10 doe ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2024-27480 (givanz VvvebJs 1.7.2 is vulnerable to Insecure File Upload.)
-	TODO: check
+	NOT-FOR-US: givanz VvvebJs
 CVE-2024-25183 (givanz VvvebJs 1.7.2 is vulnerable to Directory Traversal via scan.php ...)
-	TODO: check
+	NOT-FOR-US: givanz VvvebJs
 CVE-2024-25182 (givanz VvvebJs 1.7.2 suffers from a File Upload vulnerability via save ...)
-	TODO: check
+	NOT-FOR-US: givanz VvvebJs
 CVE-2023-41656 (Missing Authorization vulnerability in wpdive Better Elementor Addons  ...)
 	NOT-FOR-US: WordPress plugin or theme
 CVE-2023-32238 (Vulnerability in CodexThemes TheGem (Elementor), CodexThemes TheGem (W ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1ef193b4dc78a9aed66b70ab8985ac016bfd738e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1ef193b4dc78a9aed66b70ab8985ac016bfd738e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251230/4cc0067b/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list