[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update

Wed Jul 16 09:13:18 BST 2025


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
018ed7b1 by security tracker role at 2025-07-16T08:13:11+00:00
automatic NOT-FOR-US entries update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,19 +1,19 @@
 CVE-2025-7673 (A buffer overflow vulnerability in the URL parser of the zhttpd web se ...)
-	TODO: check
+	NOT-FOR-US: Zyxel
 CVE-2025-7359 (The Counter live visitors for WooCommerce plugin for WordPress is vuln ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-6981 (An incorrect authorization vulnerability allowed unauthorized read acc ...)
-	TODO: check
+	NOT-FOR-US: Github Enterprise Server
 CVE-2025-6977 (The ProfileGrid \u2013 User Profiles, Groups and Communities plugin fo ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-6747 (The Avada (Fusion) Builder plugin for WordPress is vulnerable to Store ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-6043 (The Malcure Malware Scanner \u2014 #1 Toolset for WordPress Malware Re ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-5845 (The Affiliate Reviews plugin for WordPress is vulnerable to Stored Cro ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-5843 (The Brandfolder plugin for WordPress is vulnerable to Stored Cross-Sit ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-53958
 	REJECTED
 CVE-2025-53957
@@ -59,9 +59,9 @@ CVE-2025-49833 (GPT-SoVITS-WebUI is a voice conversion and text-to-speech webUI.
 CVE-2025-49831 (An attacker of Secrets Manager, Self-Hosted installations that route t ...)
 	TODO: check
 CVE-2025-2800 (The WP Event Manager \u2013 Events Calendar, Registrations, Sell Ticke ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-2799 (The WP Event Manager \u2013 Events Calendar, Registrations, Sell Ticke ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-53906 (Vim is an open source, command line text editor. Prior to version 9.1. ...)
 	- vim <unfixed>
 	NOTE: https://www.openwall.com/lists/oss-security/2025/07/15/2



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/018ed7b11fafc77d1c5c2b3867b0bcfd95f22b9a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/018ed7b11fafc77d1c5c2b3867b0bcfd95f22b9a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250716/7a020d25/attachment.htm>
