[Git][security-tracker-team/security-tracker][master] automatic update

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
69defc97 by security tracker role at 2025-01-04T08:11:48+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,4 +1,56 @@
-CVE-2025-22376 [Default nonce for Net::OAuth package for perl is not cryptographically strong]
+CVE-2025-22390 (An issue was discovered in Optimizely EPiServer.CMS.Core before 12.32. ...)
+	TODO: check
+CVE-2025-22389 (An issue was discovered in Optimizely EPiServer.CMS.Core before 12.32. ...)
+	TODO: check
+CVE-2025-22388 (An issue was discovered in Optimizely EPiServer.CMS.Core before 12.22. ...)
+	TODO: check
+CVE-2025-22387 (An issue was discovered in Optimizely Configured Commerce before 5.2.2 ...)
+	TODO: check
+CVE-2025-22386 (An issue was discovered in Optimizely Configured Commerce before 5.2.2 ...)
+	TODO: check
+CVE-2025-22385 (An issue was discovered in Optimizely Configured Commerce before 5.2.2 ...)
+	TODO: check
+CVE-2025-22384 (An issue was discovered in Optimizely Configured Commerce before 5.2.2 ...)
+	TODO: check
+CVE-2025-22383 (An issue was discovered in Optimizely Configured Commerce before 5.2.2 ...)
+	TODO: check
+CVE-2025-0204 (A vulnerability was found in code-projects Online Shoe Store 1.0. It h ...)
+	TODO: check
+CVE-2025-0203 (A vulnerability was found in code-projects Student Management System 1 ...)
+	TODO: check
+CVE-2025-0202 (A vulnerability was found in TCS BaNCS 10. It has been classified as p ...)
+	TODO: check
+CVE-2025-0201 (A vulnerability was found in code-projects Point of Sales and Inventor ...)
+	TODO: check
+CVE-2025-0200 (A vulnerability has been found in code-projects Point of Sales and Inv ...)
+	TODO: check
+CVE-2025-0199 (A vulnerability, which was classified as critical, was found in code-p ...)
+	TODO: check
+CVE-2025-0198 (A vulnerability, which was classified as critical, has been found in c ...)
+	TODO: check
+CVE-2024-56332 (Next.js is a React framework for building full-stack web applications. ...)
+	TODO: check
+CVE-2024-55897 (IBM PowerHA SystemMirror for i 7.4 and 7.5   does not set the secure a ...)
+	TODO: check
+CVE-2024-55896 (IBM PowerHA SystemMirror for i 7.4 and 7.5 contains improper restricti ...)
+	TODO: check
+CVE-2024-13129 (A vulnerability was found in Roxy-WI up to 8.1.3. It has been declared ...)
+	TODO: check
+CVE-2024-12701 (The WP Smart Import : Import any XML File to WordPress plugin for Word ...)
+	TODO: check
+CVE-2024-12545 (The Scratch & Win \u2013 Giveaways and Contests. Boost subscribers, tr ...)
+	TODO: check
+CVE-2024-12237 (The Photo Gallery Slideshow & Masonry Tiled Gallery plugin for WordPre ...)
+	TODO: check
+CVE-2024-12047 (The WP Compress \u2013 Instant Performance & Speed Optimization plugin ...)
+	TODO: check
+CVE-2024-11974 (The Media Library Assistant plugin for WordPress is vulnerable to Refl ...)
+	TODO: check
+CVE-2024-11733 (The The WordPress Popular Posts plugin for WordPress is vulnerable to  ...)
+	TODO: check
+CVE-2024-10932 (The Backup Migration plugin for WordPress is vulnerable to PHP Object  ...)
+	TODO: check
+CVE-2025-22376 (In Net::OAuth::Client in the Net::OAuth package before 0.29 for Perl,  ...)
 	- libnet-oauth-perl <unfixed>
 	NOTE: Fixed by: https://github.com/keeth/Net-OAuth/commit/2aa25e04aadab247ae4063363fcee177161e1f42 (0.29)
 	NOTE: Followup (bugfix): https://github.com/keeth/Net-OAuth/commit/2276807dbdd5c0cee2d09679e084c7fdfb401704 (0.30)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/69defc9773f6f7d4bdf970df9f43bdaec6111cd0

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/69defc9773f6f7d4bdf970df9f43bdaec6111cd0
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250104/a8b68245/attachment.htm>