[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Jul 15 09:13:25 BST 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
4d4395dd by security tracker role at 2025-07-15T08:13:16+00:00
automatic NOT-FOR-US entries update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,19 +1,19 @@
 CVE-2025-7672 (The improper default setting in JiranSoft CrossEditor4 on Windows, Lin ...)
 	TODO: check
 CVE-2025-7367 (The Strong Testimonials plugin for WordPress is vulnerable to Stored C ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-7360 (The HT Contact Form Widget For Elementor Page Builder & Gutenberg Bloc ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-7341 (The HT Contact Form Widget For Elementor Page Builder & Gutenberg Bloc ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-7340 (The HT Contact Form Widget For Elementor Page Builder & Gutenberg Bloc ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-6265 (A path traversal vulnerability in the file_upload-cgi CGI program of Z ...)
-	TODO: check
+	NOT-FOR-US: Zyxel
 CVE-2025-5394 (The Alone \u2013 Charity Multipurpose Non-profit WordPress Theme theme ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-5393 (The Alone \u2013 Charity Multipurpose Non-profit WordPress Theme theme ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-53891 (The timelineofficial/Time-Line- repository contains the source code fo ...)
 	TODO: check
 CVE-2025-53890 (pyload is an open-source Download Manager written in pure Python. An u ...)
@@ -29,9 +29,9 @@ CVE-2025-53885 (Directus is a real-time API and App dashboard for managing SQL d
 CVE-2025-53839 (DRACOON is a file sharing service, and the DRACOON Branding Service al ...)
 	TODO: check
 CVE-2025-53836 (XWiki Rendering is a generic rendering system that converts textual in ...)
-	TODO: check
+	NOT-FOR-US: XWiki
 CVE-2025-53835 (XWiki Rendering is a generic rendering system that converts textual in ...)
-	TODO: check
+	NOT-FOR-US: XWiki
 CVE-2025-53834 (Caido is a web security auditing toolkit. A reflected cross-site scrip ...)
 	TODO: check
 CVE-2025-53833 (LaRecipe is an application that allows users to create documentation w ...)
@@ -39,15 +39,15 @@ CVE-2025-53833 (LaRecipe is an application that allows users to create documenta
 CVE-2025-53825 (Dokploy is a free, self-hostable Platform as a Service (PaaS). Prior t ...)
 	TODO: check
 CVE-2025-53824 (WeGIA is an open source web manager with a focus on the Portuguese lan ...)
-	TODO: check
+	NOT-FOR-US: WeGIA
 CVE-2025-53823 (WeGIA is an open source web manager with a focus on the Portuguese lan ...)
-	TODO: check
+	NOT-FOR-US: WeGIA
 CVE-2025-53822 (WeGIA is an open source web manager with a focus on the Portuguese lan ...)
-	TODO: check
+	NOT-FOR-US: WeGIA
 CVE-2025-53821 (WeGIA is an open source web manager with a focus on the Portuguese lan ...)
-	TODO: check
+	NOT-FOR-US: WeGIA
 CVE-2025-53820 (WeGIA is an open source web manager with a focus on the Portuguese lan ...)
-	TODO: check
+	NOT-FOR-US: WeGIA
 CVE-2025-53819 (Nix is a package manager for Linux and other Unix systems. Builds with ...)
 	TODO: check
 CVE-2025-53818 (GitHub Kanban MCP Server is a Model Context Protocol (MCP) server for  ...)
@@ -4633,7 +4633,7 @@ CVE-2025-6081 (Insufficiently Protected Credentials in LDAP in Konica Minoltabiz
 CVE-2025-5967 (A stored cross-site scripting vulnerability in ENS HX 10.0.4 allows a  ...)
 	NOT-FOR-US: Trellix
 CVE-2025-53416 (Delta Electronics DTN SoftProject File Parsing Deserialization of Untr ...)
-	TODO: check
+	NOT-FOR-US: Delta Electronics
 CVE-2025-53415 (Delta Electronics DTM SoftProject File Parsing Deserialization of Untr ...)
 	NOT-FOR-US: Delta Electronics
 CVE-2025-53096 (Sunshine is a self-hosted game stream host for Moonlight. Prior to ver ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4d4395ddfcf2b3f55a4f337b4dfd3d336fa3b5c3

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4d4395ddfcf2b3f55a4f337b4dfd3d336fa3b5c3
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250715/3eeb759c/attachment.htm>

More information about the debian-security-tracker-commits mailing list