[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Jul 31 09:12:55 BST 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
93a1831b by security tracker role at 2025-07-31T08:12:48+00:00
automatic NOT-FOR-US entries update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,9 +1,9 @@
 CVE-2025-8373 (A vulnerability was found in code-projects Vehicle Management 1.0. It  ...)
 	TODO: check
 CVE-2025-8372 (A vulnerability was found in code-projects Exam Form Submission 1.0 an ...)
-	TODO: check
+	NOT-FOR-US: code-projects
 CVE-2025-8371 (A vulnerability has been found in code-projects Exam Form Submission 1 ...)
-	TODO: check
+	NOT-FOR-US: code-projects
 CVE-2025-8370 (A vulnerability, which was classified as problematic, was found in Por ...)
 	TODO: check
 CVE-2025-8369 (A vulnerability, which was classified as problematic, has been found i ...)
@@ -29,31 +29,31 @@ CVE-2025-8344 (A vulnerability classified as critical has been found in openvigl
 CVE-2025-8343 (A vulnerability was found in openviglet shio up to 0.3.8. It has been  ...)
 	TODO: check
 CVE-2025-8340 (A vulnerability was found in code-projects Intern Membership Managemen ...)
-	TODO: check
+	NOT-FOR-US: code-projects
 CVE-2025-8339 (A vulnerability was found in code-projects Intern Membership Managemen ...)
-	TODO: check
+	NOT-FOR-US: code-projects
 CVE-2025-8338 (A vulnerability was found in projectworlds Online Admission System 1.0 ...)
-	TODO: check
+	NOT-FOR-US: Project Worlds
 CVE-2025-8337 (A vulnerability, which was classified as problematic, has been found i ...)
-	TODO: check
+	NOT-FOR-US: code-projects
 CVE-2025-8336 (A vulnerability classified as critical was found in Campcodes Online R ...)
-	TODO: check
+	NOT-FOR-US: Campcodes
 CVE-2025-8335 (A vulnerability classified as problematic has been found in code-proje ...)
-	TODO: check
+	NOT-FOR-US: code-projects
 CVE-2025-8334 (A vulnerability was found in Campcodes Online Recruitment Management S ...)
-	TODO: check
+	NOT-FOR-US: Campcodes
 CVE-2025-8333 (A vulnerability was found in code-projects Online Farm System 1.0. It  ...)
-	TODO: check
+	NOT-FOR-US: code-projects
 CVE-2025-8332 (A vulnerability was found in code-projects Online Farm System 1.0. It  ...)
-	TODO: check
+	NOT-FOR-US: code-projects
 CVE-2025-7847 (The AI Engine plugin for WordPress is vulnerable to arbitrary file upl ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-7356
 	REJECTED
 CVE-2025-7205 (The GiveWP \u2013 Donation Plugin and Fundraising Platform plugin for  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-5720 (The Customer Reviews for WooCommerce plugin for WordPress is vulnerabl ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-54829
 	REJECTED
 CVE-2025-54828
@@ -77,15 +77,15 @@ CVE-2025-54586 (GitProxy is an application that stands between developers and a
 CVE-2025-54585 (GitProxy is an application that stands between developers and a Git re ...)
 	TODO: check
 CVE-2025-54085 (CVE-2025-54085 is a vulnerability in the management console of Absolut ...)
-	TODO: check
+	NOT-FOR-US: Absolute Software
 CVE-2025-53558 (ZXHN-F660T and ZXHN-F660A provided by ZTE Japan K.K. use a common cred ...)
 	TODO: check
 CVE-2025-49084 (CVE-2025-49084 is a vulnerability in the management console of Absolut ...)
-	TODO: check
+	NOT-FOR-US: Absolute Software
 CVE-2025-49083 (CVE-2025-49083 is a vulnerability in the management console of Absolut ...)
-	TODO: check
+	NOT-FOR-US: Absolute Software
 CVE-2025-49082 (CVE-2025-49082 is a vulnerability in the management console of Absolut ...)
-	TODO: check
+	NOT-FOR-US: Absolute Software
 CVE-2025-46359 (A path traversal issue exists in backup and restore feature of multipl ...)
 	TODO: check
 CVE-2025-41396 (A path traversal issue exists in file uploading feature of multiple ve ...)
@@ -95,9 +95,9 @@ CVE-2025-41391 (Stored cross-site scripting vulnerability exists in multiple ver
 CVE-2025-36563 (Reflected cross-site scripting vulnerability exists in multiple versio ...)
 	TODO: check
 CVE-2025-36040 (IBM Aspera Faspex 5.0.0 through 5.0.12.1 could allow an authenticated  ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2025-36039 (IBM Aspera Faspex 5.0.0 through 5.0.12.1 could allow an authenticated  ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2024-11478
 	REJECTED
 CVE-2023-41674



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/93a1831b8f0615b31f5fc51eba9f3d2144fa233c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/93a1831b8f0615b31f5fc51eba9f3d2144fa233c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250731/5b501dbc/attachment.htm>

More information about the debian-security-tracker-commits mailing list