[Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Jan 16 21:10:46 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
7a5fe92c by Salvatore Bonaccorso at 2025-01-16T22:08:22+01:00
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,189 +1,189 @@
CVE-2025-23783 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23767 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23749 (Cross-Site Request Forgery (CSRF) vulnerability in Mahdi Khaksar mybb ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23745 (Cross-Site Request Forgery (CSRF) vulnerability in Tussendoor internet ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23743 (Cross-Site Request Forgery (CSRF) vulnerability in Martijn Scheybeler ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23720 (Cross-Site Request Forgery (CSRF) vulnerability in Mozilla Web Push al ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23717 (Cross-Site Request Forgery (CSRF) vulnerability in ITMOOTI Theme My On ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23715 (Cross-Site Request Forgery (CSRF) vulnerability in RaymondDesign Post ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23713 (Cross-Site Request Forgery (CSRF) vulnerability in Artem Anikeev Hack ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23712 (Cross-Site Request Forgery (CSRF) vulnerability in Kapost Kapost allow ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23710 (Cross-Site Request Forgery (CSRF) vulnerability in Mayur Sojitra Flyin ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23708 (Cross-Site Request Forgery (CSRF) vulnerability in Dominic Fallows DF ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23703 (Cross-Site Request Forgery (CSRF) vulnerability in CS : ABS-Hosting.nl ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23702 (Cross-Site Request Forgery (CSRF) vulnerability in Schalk Burger Anony ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23699 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23698 (Cross-Site Request Forgery (CSRF) vulnerability in Iv\xe1n R. Delgado ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23694 (Cross-Site Request Forgery (CSRF) vulnerability in Shabbos Commerce Sh ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23693 (Cross-Site Request Forgery (CSRF) vulnerability in Stanis\u0142aw Skon ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23692 (Cross-Site Request Forgery (CSRF) vulnerability in Artem Anikeev Slide ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23691 (Cross-Site Request Forgery (CSRF) vulnerability in Braulio Aquino Garc ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23690 (Cross-Site Request Forgery (CSRF) vulnerability in ArtkanMedia Book a ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23689 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23677 (Cross-Site Request Forgery (CSRF) vulnerability in DSmidgy HTTP to HTT ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23675 (Cross-Site Request Forgery (CSRF) vulnerability in SandyIN Import User ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23673 (Cross-Site Request Forgery (CSRF) vulnerability in Don Kukral Email on ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23665 (Cross-Site Request Forgery (CSRF) vulnerability in Rapid Sort RSV GMap ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23664 (Cross-Site Request Forgery (CSRF) vulnerability in Real Seguro Viagem ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23662 (Cross-Site Request Forgery (CSRF) vulnerability in Ryan Sutana WP Pano ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23661 (Cross-Site Request Forgery (CSRF) vulnerability in Ryan Sutana NV Slid ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23660 (Cross-Site Request Forgery (CSRF) vulnerability in Walter Cerrudo MFPl ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23659 (Cross-Site Request Forgery (CSRF) vulnerability in Hernan Javier Hegyk ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23654 (Cross-Site Request Forgery (CSRF) vulnerability in Vin\xedcius Krolow ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23649 (Cross-Site Request Forgery (CSRF) vulnerability in Kreg Steppe Auphoni ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23644 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23642 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23641 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23640 (Cross-Site Request Forgery (CSRF) vulnerability in Nazmul Ahsan Rename ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23639 (Cross-Site Request Forgery (CSRF) vulnerability in Nazmul Ahsan MDC Yo ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23627 (Cross-Site Request Forgery (CSRF) vulnerability in Gordon French Comme ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23623 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23620 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23618 (Cross-Site Request Forgery (CSRF) vulnerability in Andrea Brandi Twitt ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23617 (Cross-Site Request Forgery (CSRF) vulnerability in Oliver Schaal Float ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23577 (Cross-Site Request Forgery (CSRF) vulnerability in Sourov Amin Word Fr ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23573 (Cross-Site Request Forgery (CSRF) vulnerability in Sam Burdge WP Backg ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23572 (Cross-Site Request Forgery (CSRF) vulnerability in Dave Konopka, Marti ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23569 (Cross-Site Request Forgery (CSRF) vulnerability in Kelvin Ng Shortcode ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23567 (Cross-Site Request Forgery (CSRF) vulnerability in Intuitive Design GD ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23566 (Cross-Site Request Forgery (CSRF) vulnerability in Syed Amir Hussain C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23560 (Cross-Site Request Forgery (CSRF) vulnerability in Elke Hinze, Plumeri ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23559 (Cross-Site Request Forgery (CSRF) vulnerability in Stepan Stepasyuk Me ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23558 (Cross-Site Request Forgery (CSRF) vulnerability in digfish Geotagged M ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23557 (Cross-Site Request Forgery (CSRF) vulnerability in Kathleen Malone Fin ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23547 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23537 (Cross-Site Request Forgery (CSRF) vulnerability in Oren hahiashvili ad ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23533 (Cross-Site Request Forgery (CSRF) vulnerability in Adrian Moreno WP Ly ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23532 (Cross-Site Request Forgery (CSRF) vulnerability in Regios MyAnime Widg ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23530 (Cross-Site Request Forgery (CSRF) vulnerability in Yonatan Reinberg of ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23528 (Incorrect Privilege Assignment vulnerability in Wouter Dijkstra DD Rol ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23514 (Missing Authorization vulnerability in Sanjaysolutions Loginplus allow ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23513 (Cross-Site Request Forgery (CSRF) vulnerability in Joshua Wieczorek Bi ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23511 (Cross-Site Request Forgery (CSRF) vulnerability in Viktoria Rei Bauer ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23510 (Cross-Site Request Forgery (CSRF) vulnerability in Zaantar WordPress L ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23508 (Cross-Site Request Forgery (CSRF) vulnerability in EdesaC Extra Option ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23501 (Cross-Site Request Forgery (CSRF) vulnerability in SpruceJoy Cookie Co ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23499 (Cross-Site Request Forgery (CSRF) vulnerability in Pascal Casier Board ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23497 (Cross-Site Request Forgery (CSRF) vulnerability in Albdesign Simple Pr ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23483 (Cross-Site Request Forgery (CSRF) vulnerability in Niklas Olsson Unive ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23476 (Cross-Site Request Forgery (CSRF) vulnerability in isnowfy my-related- ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23471 (Cross-Site Request Forgery (CSRF) vulnerability in Andy Chapman ECT Ad ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23470 (Cross-Site Request Forgery (CSRF) vulnerability in X Villamuera Visit ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23467 (Cross-Site Request Forgery (CSRF) vulnerability in Vimal Ghorecha RSS ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23463 (Cross-Site Request Forgery (CSRF) vulnerability in Mukesh Dak MD Custo ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23456 (Cross-Site Request Forgery (CSRF) vulnerability in Somethinkodd.com De ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23455 (Cross-Site Request Forgery (CSRF) vulnerability in mastersoftwaresolut ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23453 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23452 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23445 (Cross-Site Request Forgery (CSRF) vulnerability in Scott Swezey Easy T ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23444 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23442 (Cross-Site Request Forgery (CSRF) vulnerability in matias s Shockingly ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23438 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23436 (Cross-Site Request Forgery (CSRF) vulnerability in Capa Wp-Scribd-List ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23435 (Cross-Site Request Forgery (CSRF) vulnerability in David Marcucci Pass ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23434 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23432 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23430 (Cross-Site Request Forgery (CSRF) vulnerability in Oren Yomtov Mass Cu ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23429 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23426 (Cross-Site Request Forgery (CSRF) vulnerability in Wizcrew Technologie ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23424 (Cross-Site Request Forgery (CSRF) vulnerability in Brian Novotny \u201 ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-23423 (Missing Authorization vulnerability in Smackcoders SendGrid for WordPr ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-20630 (Mattermost Mobile versions <=2.22.0 fail to properly handle posts with ...)
- TODO: check
+ NOT-FOR-US: Mattermost Mobile
CVE-2025-20621 (Mattermost versions 10.2.x <= 10.2.0, 9.11.x <= 9.11.5, 10.0.x <= 10.0 ...)
TODO: check
CVE-2025-20072 (Mattermost Mobile versions <= 2.22.0 fail to properly validate the sty ...)
- TODO: check
+ NOT-FOR-US: Mattermost Mobile
CVE-2025-0518 (Unchecked Return Value, Out-of-bounds Read vulnerability in FFmpeg all ...)
TODO: check
CVE-2025-0473 (Vulnerability in the PMB platform that allows an attacker to persist t ...)
@@ -259,7 +259,7 @@ CVE-2024-48885 (A improper limitation of a pathname to a restricted directory ('
CVE-2024-45331 (A incorrect privilege assignment in Fortinet FortiAnalyzer versions 7. ...)
TODO: check
CVE-2024-41746 (IBM CICS TX Advanced 10.1, 11.1, and Standard 11.1 is vulnerable to st ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2024-37181 (Time-of-check time-of-use race condition in some Intel(R) Neural Compr ...)
TODO: check
CVE-2024-36403 (Matrix Media Repo (MMR) is a highly configurable multi-homeserver medi ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7a5fe92cf8822e3466b6e9dca930767fb70b079b
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7a5fe92cf8822e3466b6e9dca930767fb70b079b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250116/19040197/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list