[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Jul 9 09:13:11 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
6796bb0b by security tracker role at 2025-07-09T08:13:03+00:00
automatic NOT-FOR-US entries update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,13 +1,13 @@
CVE-2025-7378 (Improper Input Validation vulnerability allows injecting arbitrary v ...)
TODO: check
CVE-2025-7220 (A vulnerability was found in Campcodes Payroll Management System 1.0. ...)
- TODO: check
+ NOT-FOR-US: Campcodes
CVE-2025-7219 (A vulnerability was found in Campcodes Payroll Management System 1.0. ...)
- TODO: check
+ NOT-FOR-US: Campcodes
CVE-2025-7218 (A vulnerability was found in Campcodes Payroll Management System 1.0 a ...)
- TODO: check
+ NOT-FOR-US: Campcodes
CVE-2025-7217 (A vulnerability has been found in Campcodes Payroll Management System ...)
- TODO: check
+ NOT-FOR-US: Campcodes
CVE-2025-7216 (A vulnerability, which was classified as critical, was found in lty628 ...)
TODO: check
CVE-2025-7215 (A vulnerability, which was classified as problematic, has been found i ...)
@@ -17,9 +17,9 @@ CVE-2025-7214 (A vulnerability classified as problematic was found in FNKvision
CVE-2025-7213 (A vulnerability classified as critical has been found in FNKvision FNK ...)
TODO: check
CVE-2025-7212 (A vulnerability was found in itsourcecode Insurance Management System ...)
- TODO: check
+ NOT-FOR-US: itsourcecode System
CVE-2025-7211 (A vulnerability was found in code-projects LifeStyle Store 1.0. It has ...)
- TODO: check
+ NOT-FOR-US: code-projects
CVE-2025-7210 (A vulnerability was found in code-projects/Fabian Ros Library Manageme ...)
TODO: check
CVE-2025-7209 (A vulnerability has been found in 9fans plan9port up to 9da5b44 and cl ...)
@@ -29,11 +29,11 @@ CVE-2025-7208 (A vulnerability was found in 9fans plan9port up to 9da5b44. It ha
CVE-2025-7207 (A vulnerability, which was classified as problematic, was found in mru ...)
TODO: check
CVE-2025-7206 (A vulnerability, which was classified as critical, has been found in D ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2025-7200 (A vulnerability, which was classified as critical, was found in krishn ...)
TODO: check
CVE-2025-7199 (A vulnerability, which was classified as critical, has been found in c ...)
- TODO: check
+ NOT-FOR-US: code-projects
CVE-2025-7198 (A vulnerability classified as critical was found in code-projects Jonn ...)
TODO: check
CVE-2025-7197 (A vulnerability classified as critical has been found in code-projects ...)
@@ -41,21 +41,21 @@ CVE-2025-7197 (A vulnerability classified as critical has been found in code-pro
CVE-2025-7196 (A vulnerability was found in code-projects Jonnys Liquor 1.0. It has b ...)
TODO: check
CVE-2025-7194 (A vulnerability was found in D-Link DI-500WF 17.04.10A1T. It has been ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2025-7059 (The Simple Featured Image plugin for WordPress is vulnerable to Stored ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-7031 (Missing Authentication for Critical Function vulnerability in Drupal C ...)
- TODO: check
+ NOT-FOR-US: Drupal core and addons
CVE-2025-7030 (Privilege Defined With Unsafe Actions vulnerability in Drupal Two-fact ...)
- TODO: check
+ NOT-FOR-US: Drupal core and addons
CVE-2025-6759 (Local Privilege escalation allows a low-privileged user to gain SYSTEM ...)
- TODO: check
+ NOT-FOR-US: Citrix
CVE-2025-6742 (The SureForms \u2013 Drag and Drop Form Builder for WordPress plugin f ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-6691 (The SureForms \u2013 Drag and Drop Form Builder for WordPress plugin f ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-5678 (The Gutenberg Blocks with AI by Kadence WP \u2013 Page Builder Feature ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-53688
REJECTED
CVE-2025-53687
@@ -73,117 +73,117 @@ CVE-2025-53682
CVE-2025-53547 (Helm is a package manager for Charts for Kubernetes. Prior to 3.18.4, ...)
TODO: check
CVE-2025-4855 (The Support Board plugin for WordPress is vulnerable to unauthorized a ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-4828 (The Support Board plugin for WordPress is vulnerable to arbitrary file ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-4606 (The Sala - Startup & SaaS WordPress Theme theme for WordPress is vulne ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-49551 (ColdFusion versions 2025.2, 2023.14, 2021.20 and earlier are affected ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-49547 (Adobe Experience Manager versions 11.4 and earlier are affected by a s ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-49546 (ColdFusion versions 2025.2, 2023.14, 2021.20 and earlier are affected ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-49545 (ColdFusion versions 2025.2, 2023.14, 2021.20 and earlier are affected ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-49544 (ColdFusion versions 2025.2, 2023.14, 2021.20 and earlier are affected ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-49543 (ColdFusion versions 2025.2, 2023.14, 2021.20 and earlier are affected ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-49542 (ColdFusion versions 2025.2, 2023.14, 2021.20 and earlier are affected ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-49541 (ColdFusion versions 2025.2, 2023.14, 2021.20 and earlier are affected ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-49540 (ColdFusion versions 2025.2, 2023.14, 2021.20 and earlier are affected ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-49539 (ColdFusion versions 2025.2, 2023.14, 2021.20 and earlier are affected ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-49538 (ColdFusion versions 2025.2, 2023.14, 2021.20 and earlier are affected ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-49537 (ColdFusion versions 2025.2, 2023.14, 2021.20 and earlier are affected ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-49536 (ColdFusion versions 2025.2, 2023.14, 2021.20 and earlier are affected ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-49535 (ColdFusion versions 2025.2, 2023.14, 2021.20 and earlier are affected ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-49534 (Adobe Experience Manager versions 11.4 and earlier are affected by a s ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-49533 (Adobe Experience Manager (MS) versions 6.5.23.0 and earlier are affect ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-49532 (Illustrator versions 28.7.6, 29.5.1 and earlier are affected by an Int ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-49531 (Illustrator versions 28.7.6, 29.5.1 and earlier are affected by an Int ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-49530 (Illustrator versions 28.7.6, 29.5.1 and earlier are affected by an out ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-49529 (Illustrator versions 28.7.6, 29.5.1 and earlier are affected by an Acc ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-49528 (Illustrator versions 28.7.6, 29.5.1 and earlier are affected by a Stac ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-49527 (Illustrator versions 28.7.6, 29.5.1 and earlier are affected by a Stac ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-49526 (Illustrator versions 28.7.6, 29.5.1 and earlier are affected by an out ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-49525 (Illustrator versions 28.7.6, 29.5.1 and earlier are affected by an out ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-49524 (Illustrator versions 28.7.6, 29.5.1 and earlier are affected by a NULL ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-47136 (InDesign Desktop versions 19.5.3 and earlier are affected by an Intege ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-47134 (InDesign Desktop versions 19.5.3 and earlier are affected by a Heap-ba ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-47133 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-47132 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-47131 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-47130 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-47129 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-47128 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-47127 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-47126 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-47125 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-47124 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-47123 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-47122 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-47121 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-47120 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-47119 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-47103 (InDesign Desktop versions 19.5.3 and earlier are affected by a Heap-ba ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-47099 (InCopy versions 20.3, 19.5.3 and earlier are affected by a Heap-based ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-47098 (InCopy versions 20.3, 19.5.3 and earlier are affected by an Access of ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-47097 (InCopy versions 20.3, 19.5.3 and earlier are affected by an Integer Un ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-43594 (InDesign Desktop versions 19.5.3 and earlier are affected by an out-of ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-43592 (InDesign Desktop versions 19.5.3 and earlier are affected by an Access ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-43591 (InDesign Desktop versions 19.5.3 and earlier are affected by a Heap-ba ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-43584 (Substance3D - Viewer versions 0.22 and earlier are affected by an out- ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-43583 (Substance3D - Viewer versions 0.22 and earlier are affected by a NULL ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-43582 (Substance3D - Viewer versions 0.22 and earlier are affected by a Heap- ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-3780 (The WCFM \u2013 Frontend Manager for WooCommerce along with Bookings S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-34085 (An unrestricted file upload vulnerability in the WordPress Simple File ...)
TODO: check
CVE-2025-34084 (An unauthenticated information disclosure vulnerability exists in the ...)
@@ -193,13 +193,13 @@ CVE-2025-34083 (An unrestricted file upload vulnerability exists in the WordPres
CVE-2025-34077 (An authentication bypass vulnerability exists in the WordPress Pie Reg ...)
TODO: check
CVE-2025-30313 (Illustrator versions 28.7.6, 29.5.1 and earlier are affected by an out ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-27203 (Adobe Connect versions 24.0 and earlier are affected by a Deserializat ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2025-27165 (Substance3D - Stager versions 3.1.2 and earlier are affected by an out ...)
- TODO: check
+ NOT-FOR-US: Adobe
CVE-2024-56468 (IBM InfoSphere Data Replication VSAM for z/OS Remote Source 11.4 could ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2025-4674
- golang-1.24 <unfixed>
- golang-1.23 <unfixed>
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6796bb0bd39061224d7c094b23073603e2cb09e7
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6796bb0bd39061224d7c094b23073603e2cb09e7
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250709/5b4c6ad8/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list