[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Jul 9 09:12:18 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
06aca036 by security tracker role at 2025-07-09T08:12:11+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,205 @@
+CVE-2025-7378 (Improper Input Validation vulnerability allows injecting arbitrary v ...)
+ TODO: check
+CVE-2025-7220 (A vulnerability was found in Campcodes Payroll Management System 1.0. ...)
+ TODO: check
+CVE-2025-7219 (A vulnerability was found in Campcodes Payroll Management System 1.0. ...)
+ TODO: check
+CVE-2025-7218 (A vulnerability was found in Campcodes Payroll Management System 1.0 a ...)
+ TODO: check
+CVE-2025-7217 (A vulnerability has been found in Campcodes Payroll Management System ...)
+ TODO: check
+CVE-2025-7216 (A vulnerability, which was classified as critical, was found in lty628 ...)
+ TODO: check
+CVE-2025-7215 (A vulnerability, which was classified as problematic, has been found i ...)
+ TODO: check
+CVE-2025-7214 (A vulnerability classified as problematic was found in FNKvision FNK-G ...)
+ TODO: check
+CVE-2025-7213 (A vulnerability classified as critical has been found in FNKvision FNK ...)
+ TODO: check
+CVE-2025-7212 (A vulnerability was found in itsourcecode Insurance Management System ...)
+ TODO: check
+CVE-2025-7211 (A vulnerability was found in code-projects LifeStyle Store 1.0. It has ...)
+ TODO: check
+CVE-2025-7210 (A vulnerability was found in code-projects/Fabian Ros Library Manageme ...)
+ TODO: check
+CVE-2025-7209 (A vulnerability has been found in 9fans plan9port up to 9da5b44 and cl ...)
+ TODO: check
+CVE-2025-7208 (A vulnerability was found in 9fans plan9port up to 9da5b44. It has bee ...)
+ TODO: check
+CVE-2025-7207 (A vulnerability, which was classified as problematic, was found in mru ...)
+ TODO: check
+CVE-2025-7206 (A vulnerability, which was classified as critical, has been found in D ...)
+ TODO: check
+CVE-2025-7200 (A vulnerability, which was classified as critical, was found in krishn ...)
+ TODO: check
+CVE-2025-7199 (A vulnerability, which was classified as critical, has been found in c ...)
+ TODO: check
+CVE-2025-7198 (A vulnerability classified as critical was found in code-projects Jonn ...)
+ TODO: check
+CVE-2025-7197 (A vulnerability classified as critical has been found in code-projects ...)
+ TODO: check
+CVE-2025-7196 (A vulnerability was found in code-projects Jonnys Liquor 1.0. It has b ...)
+ TODO: check
+CVE-2025-7194 (A vulnerability was found in D-Link DI-500WF 17.04.10A1T. It has been ...)
+ TODO: check
+CVE-2025-7059 (The Simple Featured Image plugin for WordPress is vulnerable to Stored ...)
+ TODO: check
+CVE-2025-7031 (Missing Authentication for Critical Function vulnerability in Drupal C ...)
+ TODO: check
+CVE-2025-7030 (Privilege Defined With Unsafe Actions vulnerability in Drupal Two-fact ...)
+ TODO: check
+CVE-2025-6759 (Local Privilege escalation allows a low-privileged user to gain SYSTEM ...)
+ TODO: check
+CVE-2025-6742 (The SureForms \u2013 Drag and Drop Form Builder for WordPress plugin f ...)
+ TODO: check
+CVE-2025-6691 (The SureForms \u2013 Drag and Drop Form Builder for WordPress plugin f ...)
+ TODO: check
+CVE-2025-5678 (The Gutenberg Blocks with AI by Kadence WP \u2013 Page Builder Feature ...)
+ TODO: check
+CVE-2025-53688
+ REJECTED
+CVE-2025-53687
+ REJECTED
+CVE-2025-53686
+ REJECTED
+CVE-2025-53685
+ REJECTED
+CVE-2025-53684
+ REJECTED
+CVE-2025-53683
+ REJECTED
+CVE-2025-53682
+ REJECTED
+CVE-2025-53547 (Helm is a package manager for Charts for Kubernetes. Prior to 3.18.4, ...)
+ TODO: check
+CVE-2025-4855 (The Support Board plugin for WordPress is vulnerable to unauthorized a ...)
+ TODO: check
+CVE-2025-4828 (The Support Board plugin for WordPress is vulnerable to arbitrary file ...)
+ TODO: check
+CVE-2025-4606 (The Sala - Startup & SaaS WordPress Theme theme for WordPress is vulne ...)
+ TODO: check
+CVE-2025-49551 (ColdFusion versions 2025.2, 2023.14, 2021.20 and earlier are affected ...)
+ TODO: check
+CVE-2025-49547 (Adobe Experience Manager versions 11.4 and earlier are affected by a s ...)
+ TODO: check
+CVE-2025-49546 (ColdFusion versions 2025.2, 2023.14, 2021.20 and earlier are affected ...)
+ TODO: check
+CVE-2025-49545 (ColdFusion versions 2025.2, 2023.14, 2021.20 and earlier are affected ...)
+ TODO: check
+CVE-2025-49544 (ColdFusion versions 2025.2, 2023.14, 2021.20 and earlier are affected ...)
+ TODO: check
+CVE-2025-49543 (ColdFusion versions 2025.2, 2023.14, 2021.20 and earlier are affected ...)
+ TODO: check
+CVE-2025-49542 (ColdFusion versions 2025.2, 2023.14, 2021.20 and earlier are affected ...)
+ TODO: check
+CVE-2025-49541 (ColdFusion versions 2025.2, 2023.14, 2021.20 and earlier are affected ...)
+ TODO: check
+CVE-2025-49540 (ColdFusion versions 2025.2, 2023.14, 2021.20 and earlier are affected ...)
+ TODO: check
+CVE-2025-49539 (ColdFusion versions 2025.2, 2023.14, 2021.20 and earlier are affected ...)
+ TODO: check
+CVE-2025-49538 (ColdFusion versions 2025.2, 2023.14, 2021.20 and earlier are affected ...)
+ TODO: check
+CVE-2025-49537 (ColdFusion versions 2025.2, 2023.14, 2021.20 and earlier are affected ...)
+ TODO: check
+CVE-2025-49536 (ColdFusion versions 2025.2, 2023.14, 2021.20 and earlier are affected ...)
+ TODO: check
+CVE-2025-49535 (ColdFusion versions 2025.2, 2023.14, 2021.20 and earlier are affected ...)
+ TODO: check
+CVE-2025-49534 (Adobe Experience Manager versions 11.4 and earlier are affected by a s ...)
+ TODO: check
+CVE-2025-49533 (Adobe Experience Manager (MS) versions 6.5.23.0 and earlier are affect ...)
+ TODO: check
+CVE-2025-49532 (Illustrator versions 28.7.6, 29.5.1 and earlier are affected by an Int ...)
+ TODO: check
+CVE-2025-49531 (Illustrator versions 28.7.6, 29.5.1 and earlier are affected by an Int ...)
+ TODO: check
+CVE-2025-49530 (Illustrator versions 28.7.6, 29.5.1 and earlier are affected by an out ...)
+ TODO: check
+CVE-2025-49529 (Illustrator versions 28.7.6, 29.5.1 and earlier are affected by an Acc ...)
+ TODO: check
+CVE-2025-49528 (Illustrator versions 28.7.6, 29.5.1 and earlier are affected by a Stac ...)
+ TODO: check
+CVE-2025-49527 (Illustrator versions 28.7.6, 29.5.1 and earlier are affected by a Stac ...)
+ TODO: check
+CVE-2025-49526 (Illustrator versions 28.7.6, 29.5.1 and earlier are affected by an out ...)
+ TODO: check
+CVE-2025-49525 (Illustrator versions 28.7.6, 29.5.1 and earlier are affected by an out ...)
+ TODO: check
+CVE-2025-49524 (Illustrator versions 28.7.6, 29.5.1 and earlier are affected by a NULL ...)
+ TODO: check
+CVE-2025-47136 (InDesign Desktop versions 19.5.3 and earlier are affected by an Intege ...)
+ TODO: check
+CVE-2025-47134 (InDesign Desktop versions 19.5.3 and earlier are affected by a Heap-ba ...)
+ TODO: check
+CVE-2025-47133 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a ...)
+ TODO: check
+CVE-2025-47132 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a ...)
+ TODO: check
+CVE-2025-47131 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a ...)
+ TODO: check
+CVE-2025-47130 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a ...)
+ TODO: check
+CVE-2025-47129 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a ...)
+ TODO: check
+CVE-2025-47128 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a ...)
+ TODO: check
+CVE-2025-47127 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a ...)
+ TODO: check
+CVE-2025-47126 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a ...)
+ TODO: check
+CVE-2025-47125 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a ...)
+ TODO: check
+CVE-2025-47124 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a ...)
+ TODO: check
+CVE-2025-47123 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a ...)
+ TODO: check
+CVE-2025-47122 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a ...)
+ TODO: check
+CVE-2025-47121 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a ...)
+ TODO: check
+CVE-2025-47120 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a ...)
+ TODO: check
+CVE-2025-47119 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a ...)
+ TODO: check
+CVE-2025-47103 (InDesign Desktop versions 19.5.3 and earlier are affected by a Heap-ba ...)
+ TODO: check
+CVE-2025-47099 (InCopy versions 20.3, 19.5.3 and earlier are affected by a Heap-based ...)
+ TODO: check
+CVE-2025-47098 (InCopy versions 20.3, 19.5.3 and earlier are affected by an Access of ...)
+ TODO: check
+CVE-2025-47097 (InCopy versions 20.3, 19.5.3 and earlier are affected by an Integer Un ...)
+ TODO: check
+CVE-2025-43594 (InDesign Desktop versions 19.5.3 and earlier are affected by an out-of ...)
+ TODO: check
+CVE-2025-43592 (InDesign Desktop versions 19.5.3 and earlier are affected by an Access ...)
+ TODO: check
+CVE-2025-43591 (InDesign Desktop versions 19.5.3 and earlier are affected by a Heap-ba ...)
+ TODO: check
+CVE-2025-43584 (Substance3D - Viewer versions 0.22 and earlier are affected by an out- ...)
+ TODO: check
+CVE-2025-43583 (Substance3D - Viewer versions 0.22 and earlier are affected by a NULL ...)
+ TODO: check
+CVE-2025-43582 (Substance3D - Viewer versions 0.22 and earlier are affected by a Heap- ...)
+ TODO: check
+CVE-2025-3780 (The WCFM \u2013 Frontend Manager for WooCommerce along with Bookings S ...)
+ TODO: check
+CVE-2025-34085 (An unrestricted file upload vulnerability in the WordPress Simple File ...)
+ TODO: check
+CVE-2025-34084 (An unauthenticated information disclosure vulnerability exists in the ...)
+ TODO: check
+CVE-2025-34083 (An unrestricted file upload vulnerability exists in the WordPress AIT ...)
+ TODO: check
+CVE-2025-34077 (An authentication bypass vulnerability exists in the WordPress Pie Reg ...)
+ TODO: check
+CVE-2025-30313 (Illustrator versions 28.7.6, 29.5.1 and earlier are affected by an out ...)
+ TODO: check
+CVE-2025-27203 (Adobe Connect versions 24.0 and earlier are affected by a Deserializat ...)
+ TODO: check
+CVE-2025-27165 (Substance3D - Stager versions 3.1.2 and earlier are affected by an out ...)
+ TODO: check
+CVE-2024-56468 (IBM InfoSphere Data Replication VSAM for z/OS Remote Source 11.4 could ...)
+ TODO: check
CVE-2025-4674
- golang-1.24 <unfixed>
- golang-1.23 <unfixed>
@@ -962,7 +1164,7 @@ CVE-2025-53525 (WeGIA is a web manager for charitable institutions. A Reflected
NOT-FOR-US: WeGIA
CVE-2025-53499 (Missing Authorization vulnerability in Wikimedia Foundation Mediawiki ...)
NOT-FOR-US: MediaWiki extension AbuseFilter
-CVE-2025-53498 (: Insufficient Logging vulnerability in Wikimedia Foundation Mediawiki ...)
+CVE-2025-53498 (Insufficient Logging vulnerability in Wikimedia Foundation Mediawiki - ...)
NOT-FOR-US: MediaWiki extension AbuseFilter
CVE-2025-53497 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
NOT-FOR-US: MediaWiki extension RelatedArticles
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/06aca036fc5c23f26ee12bb1d5a405f850a8cf98
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/06aca036fc5c23f26ee12bb1d5a405f850a8cf98
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250709/22a04bcd/attachment.htm>
More information about the debian-security-tracker-commits
mailing list