[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
782c1095 by security tracker role at 2025-07-10T08:13:45+00:00
automatic NOT-FOR-US entries update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,21 +1,21 @@
 CVE-2025-7387 (The Lana Downloads Manager plugin for WordPress is vulnerable to Store ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-6976 (The Events Manager \u2013 Calendar, Bookings, Tickets, and more! plugi ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-6975 (The Events Manager \u2013 Calendar, Bookings, Tickets, and more! plugi ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-6970 (The Events Manager \u2013 Calendar, Bookings, Tickets, and more! plugi ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-6377 (A remote code execution security issue exists in the Rockwell Automati ...)
-	TODO: check
+	NOT-FOR-US: Rockwell Automation
 CVE-2025-6376 (A remote code execution security issue exists in the Rockwell Automati ...)
-	TODO: check
+	NOT-FOR-US: Rockwell Automation
 CVE-2025-6236 (The Hostel WordPress plugin before 1.1.5.9 does not sanitise and escap ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-6234 (The Hostel WordPress plugin before 1.1.5.8 does not sanitise and escap ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-5807 (The Gwolle Guestbook plugin for WordPress is vulnerable to Stored Cros ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-53753
 	REJECTED
 CVE-2025-53752
@@ -35,11 +35,11 @@ CVE-2025-53746
 CVE-2025-53624 (The Docusaurus gists plugin adds a page to your Docusaurus instance, d ...)
 	TODO: check
 CVE-2025-4406 (The wpForo Forum plugin for WordPress is vulnerable to Stored Cross-Si ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-46406 (A Privilege Context Switching Error (CWE-270) in the Command Center Se ...)
-	TODO: check
+	NOT-FOR-US: Gallagher
 CVE-2025-44003 (Missing Release of Resource after Effective Lifetime (CWE-772) in the  ...)
-	TODO: check
+	NOT-FOR-US: Gallagher
 CVE-2025-38319 (In the Linux kernel, the following vulnerability has been resolved:  d ...)
 	TODO: check
 CVE-2025-38318 (In the Linux kernel, the following vulnerability has been resolved:  p ...)
@@ -151,15 +151,15 @@ CVE-2025-38266 (In the Linux kernel, the following vulnerability has been resolv
 CVE-2025-38265 (In the Linux kernel, the following vulnerability has been resolved:  s ...)
 	TODO: check
 CVE-2025-35983 (Improper Certificate Validation (CWE-295) in the Controller 7000 OneLi ...)
-	TODO: check
+	NOT-FOR-US: Gallagher
 CVE-2025-0646
 	REJECTED
 CVE-2025-0141 (An incorrect privilege assignment vulnerability in the Palo Alto Netwo ...)
-	TODO: check
+	NOT-FOR-US: Palo Alto Networks
 CVE-2025-0140 (An incorrect privilege assignment vulnerability in the Palo Alto Netwo ...)
-	TODO: check
+	NOT-FOR-US: Palo Alto Networks
 CVE-2025-0139 (An incorrect privilege assignment vulnerability in Palo Alto Networks  ...)
-	TODO: check
+	NOT-FOR-US: Palo Alto Networks
 CVE-2024-10391
 	REJECTED
 CVE-2023-50458 (In Dradis before 4.11.0, the Output Console shows a job queue that may ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/782c1095aed4942276936728c7420a73346bc0cd

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/782c1095aed4942276936728c7420a73346bc0cd
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250710/23e8b338/attachment.htm>