[Git][security-tracker-team/security-tracker][master] Process some more NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat Feb 22 20:22:55 GMT 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3ae86e13 by Salvatore Bonaccorso at 2025-02-22T21:22:32+01:00
Process some more NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,29 +1,29 @@
 CVE-2025-27012 (Cross-Site Request Forgery (CSRF) vulnerability in a1post A1POST.BG Sh ...)
-	TODO: check
+	NOT-FOR-US: a1post A1POST.BG
 CVE-2025-26973 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-26776 (Unrestricted Upload of File with Dangerous Type vulnerability in NotFo ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-26774 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-26764 (Missing Authorization vulnerability in enituretechnology Distance Base ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-26763 (Deserialization of Untrusted Data vulnerability in MetaSlider Responsi ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-26760 (Improper Control of Filename for Include/Require Statement in PHP Prog ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-26757 (Improper Control of Filename for Include/Require Statement in PHP Prog ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-26756 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-26750 (Missing Authorization vulnerability in appsbd Vitepos allows Exploitin ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-1557 (A vulnerability, which was classified as problematic, was found in OFC ...)
-	TODO: check
+	NOT-FOR-US: OFCMS
 CVE-2025-1556 (A vulnerability, which was classified as problematic, has been found i ...)
-	TODO: check
+	NOT-FOR-US: CicadasCMS
 CVE-2025-1553 (A vulnerability was found in pankajindevops scale up to 3633544a00245d ...)
-	TODO: check
+	NOT-FOR-US: pankajindevops
 CVE-2025-1361 (The IP2Location Country Blocker plugin for WordPress is vulnerable to  ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2025-0957 (The SMTP for Amazon SES \u2013 YaySMTP plugin for WordPress is vulnera ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3ae86e134ab990dc34d29195dd0bb1fd6a690a30

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3ae86e134ab990dc34d29195dd0bb1fd6a690a30
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250222/bae20a43/attachment.htm>

More information about the debian-security-tracker-commits mailing list