[Git][security-tracker-team/security-tracker][master] automatic update

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5f0eac0e by security tracker role at 2025-01-25T08:11:54+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,75 @@
+CVE-2025-24361 (Nuxt is an open-source web development framework for Vue.js. Source co ...)
+	TODO: check
+CVE-2025-24360 (Nuxt is an open-source web development framework for Vue.js. Starting  ...)
+	TODO: check
+CVE-2025-21262 (Microsoft Edge (Chromium-based) Spoofing Vulnerability)
+	TODO: check
+CVE-2025-0710 (A vulnerability classified as problematic has been found in CampCodes  ...)
+	TODO: check
+CVE-2025-0709 (A vulnerability was found in Dcat-Admin 2.2.1-beta. It has been rated  ...)
+	TODO: check
+CVE-2025-0682 (The ThemeREX Addons plugin for WordPress is vulnerable to Local File I ...)
+	TODO: check
+CVE-2025-0357 (The WPBookit plugin for WordPress is vulnerable to arbitrary file uplo ...)
+	TODO: check
+CVE-2024-50698 (SunGrow WiNet-SV200.001.00.P027 and earlier versions is vulnerable to  ...)
+	TODO: check
+CVE-2024-50697 (In SunGrow WiNet-SV200.001.00.P027 and earlier versions, when decrypti ...)
+	TODO: check
+CVE-2024-50695 (SunGrow WiNet-SV200.001.00.P027 and earlier versions is vulnerable to  ...)
+	TODO: check
+CVE-2024-50694 (In SunGrow WiNet-SV200.001.00.P027 and earlier versions, when copying  ...)
+	TODO: check
+CVE-2024-50692 (SunGrow WiNet-SV200.001.00.P027 and earlier versions contains hardcode ...)
+	TODO: check
+CVE-2024-50690 (SunGrow WiNet-SV200.001.00.P027 and earlier versions contains a hardco ...)
+	TODO: check
+CVE-2024-13721 (The Plethora Plugins Tabs + Accordions plugin for WordPress is vulnera ...)
+	TODO: check
+CVE-2024-13709 (The Linear plugin for WordPress is vulnerable to Cross-Site Request Fo ...)
+	TODO: check
+CVE-2024-13599 (The LearnPress \u2013 WordPress LMS Plugin plugin for WordPress is vul ...)
+	TODO: check
+CVE-2024-13586 (The Masy Gallery plugin for WordPress is vulnerable to Stored Cross-Si ...)
+	TODO: check
+CVE-2024-13551 (The ABC Notation plugin for WordPress is vulnerable to Stored Cross-Si ...)
+	TODO: check
+CVE-2024-13550 (The ABC Notation plugin for WordPress is vulnerable to Path Traversal  ...)
+	TODO: check
+CVE-2024-13548 (The Power Ups for Elementor plugin for WordPress is vulnerable to Stor ...)
+	TODO: check
+CVE-2024-13467 (The WP Contact Form7 Email Spam Blocker plugin for WordPress is vulner ...)
+	TODO: check
+CVE-2024-13458 (The WordPress SEO Friendly Accordion FAQ with AI assisted content gene ...)
+	TODO: check
+CVE-2024-13441 (The Bilingual Linker plugin for WordPress is vulnerable to Stored Cros ...)
+	TODO: check
+CVE-2024-13370 (The Youzify \u2013 BuddyPress Community, User Profile, Social Network  ...)
+	TODO: check
+CVE-2024-13368 (The Youzify \u2013 BuddyPress Community, User Profile, Social Network  ...)
+	TODO: check
+CVE-2024-12885 (The Connections Business Directory plugin for WordPress is vulnerable  ...)
+	TODO: check
+CVE-2024-12826 (The GoHero Store Customizer for WooCommerce plugin for WordPress is vu ...)
+	TODO: check
+CVE-2024-12817 (The Etsy Importer plugin for WordPress is vulnerable to Stored Cross-S ...)
+	TODO: check
+CVE-2024-12816 (The NOTICE BOARD BY TOWKIR plugin for WordPress is vulnerable to Store ...)
+	TODO: check
+CVE-2024-12600 (The Custom Product Tabs Lite for WooCommerce plugin for WordPress is v ...)
+	TODO: check
+CVE-2024-12529 (The brodos.net Onlineshop Plugin plugin for WordPress is vulnerable to ...)
+	TODO: check
+CVE-2024-12512 (The Ask Me Anything (Anonymously) plugin for WordPress is vulnerable t ...)
+	TODO: check
+CVE-2024-12113 (The Youzify \u2013 BuddyPress Community, User Profile, Social Network  ...)
+	TODO: check
+CVE-2024-12076 (The Target Video Easy Publish plugin for WordPress is vulnerable to Cr ...)
+	TODO: check
+CVE-2024-11825 (The Broadstreet plugin for WordPress is vulnerable to Stored Cross-Sit ...)
+	TODO: check
+CVE-2024-10552 (The Flexmls\xae IDX Plugin plugin for WordPress is vulnerable to Store ...)
+	TODO: check
 CVE-2025-24756 (Cross-Site Request Forgery (CSRF) vulnerability in mgplugin Roi Calcul ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2025-24755 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
@@ -1408,7 +1480,7 @@ CVE-2023-37025 (A Null pointer dereference vulnerability in the Mobile Managemen
 	NOT-FOR-US: Magma
 CVE-2023-37024 (A reachable assertion in the Mobile Management Entity (MME) of Magma v ...)
 	NOT-FOR-US: Magma
-CVE-2025-0411 [7-Zip Mark-of-the-Web Bypass Vulnerability]
+CVE-2025-0411 (7-Zip Mark-of-the-Web Bypass Vulnerability. This vulnerability allows  ...)
 	- 7zip <not-affected> (Affects only 7-Zip on Windows handling Mark of the Web (MoTW) metadata)
 	- p7zip <not-affected> (Affects only 7-Zip on Windows handling Mark of the Web (MoTW) metadata)
 	NOTE: https://www.zerodayinitiative.com/advisories/ZDI-25-045/



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5f0eac0e97ea3678e1a17edb2e2f480755d9c03a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5f0eac0e97ea3678e1a17edb2e2f480755d9c03a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250125/afff8cef/attachment.htm>