[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat Jul 26 09:13:01 BST 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9ac8c06b by security tracker role at 2025-07-26T08:12:54+00:00
automatic NOT-FOR-US entries update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,45 +1,45 @@
 CVE-2025-8198 (The MinimogWP \u2013 The High Converting eCommerce WordPress Theme the ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-8181 (A vulnerability, which was classified as critical, was found in TOTOLI ...)
-	TODO: check
+	NOT-FOR-US: TOTOLINK
 CVE-2025-8180 (A vulnerability, which was classified as critical, has been found in T ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2025-8179 (A vulnerability classified as critical was found in PHPGurukul Local S ...)
-	TODO: check
+	NOT-FOR-US: PHPGurukul
 CVE-2025-8178 (A vulnerability classified as critical has been found in Tenda AC10 16 ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2025-8175 (A vulnerability was found in D-Link DI-8400 16.07.26A1. It has been cl ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2025-8174 (A vulnerability was found in code-projects Voting System 1.0 and class ...)
-	TODO: check
+	NOT-FOR-US: code-projects
 CVE-2025-8173 (A vulnerability has been found in 1000 Projects ABC Courier Management ...)
 	TODO: check
 CVE-2025-8172 (A vulnerability, which was classified as critical, was found in itsour ...)
-	TODO: check
+	NOT-FOR-US: itsourcecode System
 CVE-2025-8171 (A vulnerability, which was classified as critical, has been found in c ...)
-	TODO: check
+	NOT-FOR-US: code-projects
 CVE-2025-8170 (A vulnerability classified as critical was found in TOTOLINK T6 4.1.5c ...)
-	TODO: check
+	NOT-FOR-US: TOTOLINK
 CVE-2025-8169 (A vulnerability classified as critical has been found in D-Link DIR-51 ...)
-	TODO: check
+	NOT-FOR-US: D-Link
 CVE-2025-8103 (The WPeMatico RSS Feed Fetcher plugin for WordPress is vulnerable to C ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-8101 (Improperly Controlled Modification of Object Prototype Attributes ('Pr ...)
 	TODO: check
 CVE-2025-8097 (The WoodMart theme for WordPress is vulnerable to Improper Input Valid ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-7501 (The Wonder Slider Lite plugin for WordPress is vulnerable to Stored Cr ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-6991 (The kallyas theme for WordPress is vulnerable to Local File Inclusion  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-6989 (The Kallyas theme for WordPress is vulnerable to arbitrary folder dele ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-6987 (The Advanced iFrame plugin for WordPress is vulnerable to Stored Cross ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-6895 (The Melapress Login Security plugin for WordPress is vulnerable to Aut ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-5529 (The Educenter theme for WordPress is vulnerable to Stored Cross-Site S ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-54416 (tj-actions/branch-names is a Github actions repository that contains w ...)
 	TODO: check
 CVE-2025-54415 (dag-factory is a library for Apache Airflow\xae to construct DAGs decl ...)
@@ -51,7 +51,7 @@ CVE-2025-54413 (skops is a Python library which helps users share and ship their
 CVE-2025-54412 (skops is a Python library which helps users share and ship their sciki ...)
 	TODO: check
 CVE-2025-54385 (XWiki Platform is a generic wiki platform offering runtime services fo ...)
-	TODO: check
+	NOT-FOR-US: XWiki
 CVE-2025-54380 (Opencast is a free, open-source platform to support the management of  ...)
 	TODO: check
 CVE-2025-54378 (HAX CMS allows you to manage your microsite universe with PHP or NodeJ ...)
@@ -63,7 +63,7 @@ CVE-2025-50185 (DbGate is cross-platform database manager. In versions 6.6.0 and
 CVE-2025-50184 (DbGate is cross-platform database manager. In versions 6.4.3-premium-b ...)
 	TODO: check
 CVE-2024-13507 (The GeoDirectory \u2013 WP Business Directory Plugin and Classified Li ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-8177 (A vulnerability was found in LibTIFF up to 4.7.0. It has been rated as ...)
 	- tiff <unfixed> (unimportant)
 	NOTE: https://gitlab.com/libtiff/libtiff/-/issues/715



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9ac8c06b0eb8572a4e3c7922e9697bfb243b201c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9ac8c06b0eb8572a4e3c7922e9697bfb243b201c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250726/b4deb4d9/attachment.htm>

More information about the debian-security-tracker-commits mailing list