[Git][security-tracker-team/security-tracker][master] Add new set of gitlab issues

Thu Jul 24 11:33:02 BST 2025


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
44e5cd88 by Salvatore Bonaccorso at 2025-07-24T12:32:35+02:00
Add new set of gitlab issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -9,7 +9,7 @@ CVE-2025-7745 (: Buffer Over-read vulnerability in ABB AC500 V2.This issue affec
 CVE-2025-7437 (The Ebook Store plugin for WordPress is vulnerable to arbitrary file u ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2025-7001 (An issue has been discovered in GitLab CE/EE affecting all versions fr ...)
-	TODO: check
+	- gitlab <unfixed>
 CVE-2025-54377 (Roo Code is an AI-powered autonomous coding agent that lives in users' ...)
 	TODO: check
 CVE-2025-54371
@@ -21,7 +21,7 @@ CVE-2025-53942 (authentik is an open-source Identity Provider that emphasizes fl
 CVE-2025-53537 (LibHTP is a security-aware parser for the HTTP protocol and its relate ...)
 	TODO: check
 CVE-2025-4976 (An issue has been discovered in GitLab EE affecting all versions from  ...)
-	TODO: check
+	- gitlab <unfixed>
 CVE-2025-4968 (The WPBakery Page Builder for WordPress plugin for WordPress is vulner ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2025-4395 (Medtronic MyCareLink Patient Monitor has a built-in user account with  ...)
@@ -168,9 +168,9 @@ CVE-2025-50477 (A URL redirection in lbry-desktop v0.53.9 allows attackers to re
 CVE-2025-50127 (A SQLi vulnerability in DJ-Flyer component 1.0-3.2 for Joomla was disc ...)
 	NOT-FOR-US: Joomla
 CVE-2025-4700 (An issue has been discovered in GitLab CE/EE affecting all versions fr ...)
-	TODO: check
+	- gitlab <unfixed>
 CVE-2025-4439 (An issue has been discovered in GitLab CE/EE affecting all versions fr ...)
-	TODO: check
+	- gitlab <unfixed>
 CVE-2025-4411 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
 	NOT-FOR-US: Dataprom Informatics PACS-ACSS
 CVE-2025-4296 (URL Redirection to Untrusted Site ('Open Redirect') vulnerability in H ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/44e5cd88c32571db7a8f5081039df377f6a1db63

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/44e5cd88c32571db7a8f5081039df377f6a1db63
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250724/5908aa04/attachment.htm>
