[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Jun 5 21:14:24 BST 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5f766dc3 by security tracker role at 2025-06-05T20:14:17+00:00
automatic NOT-FOR-US entries update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3,33 +3,33 @@ CVE-2025-5745 (The strncmp implementation optimized for the Power10 processor in
 CVE-2025-5702 (The strcmp implementation optimized for the Power10 processor in the G ...)
 	TODO: check
 CVE-2025-5701 (The HyperComments plugin for WordPress is vulnerable to unauthorized m ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-5693 (A vulnerability was found in PHPGurukul Human Metapneumovirus Testing  ...)
-	TODO: check
+	NOT-FOR-US: PHPGurukul
 CVE-2025-5685 (A vulnerability, which was classified as critical, was found in Tenda  ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2025-5680 (A vulnerability classified as critical was found in Shenzhen Dashi Ton ...)
 	TODO: check
 CVE-2025-5679 (A vulnerability classified as critical has been found in Shenzhen Dash ...)
 	TODO: check
 CVE-2025-5677 (A vulnerability was found in Campcodes Online Recruitment Management S ...)
-	TODO: check
+	NOT-FOR-US: Campcodes
 CVE-2025-5676 (A vulnerability was found in Campcodes Online Recruitment Management S ...)
-	TODO: check
+	NOT-FOR-US: Campcodes
 CVE-2025-5675 (A vulnerability was found in Campcodes Online Teacher Record Managemen ...)
-	TODO: check
+	NOT-FOR-US: Campcodes
 CVE-2025-5674 (A vulnerability was found in code-projects Patient Record Management S ...)
-	TODO: check
+	NOT-FOR-US: code-projects
 CVE-2025-5672 (A vulnerability has been found in TOTOLINK N302R Plus up to 3.4.0-B202 ...)
 	TODO: check
 CVE-2025-5671 (A vulnerability, which was classified as critical, was found in TOTOLI ...)
 	TODO: check
 CVE-2025-5670 (A vulnerability, which was classified as critical, has been found in P ...)
-	TODO: check
+	NOT-FOR-US: PHPGurukul
 CVE-2025-5669 (A vulnerability classified as critical was found in PHPGurukul Medical ...)
-	TODO: check
+	NOT-FOR-US: PHPGurukul
 CVE-2025-5668 (A vulnerability classified as critical has been found in PHPGurukul Me ...)
-	TODO: check
+	NOT-FOR-US: PHPGurukul
 CVE-2025-5667 (A vulnerability was found in FreeFloat FTP Server 1.0. It has been rat ...)
 	TODO: check
 CVE-2025-5666 (A vulnerability was found in FreeFloat FTP Server 1.0. It has been dec ...)
@@ -39,41 +39,41 @@ CVE-2025-5665 (A vulnerability was found in FreeFloat FTP Server 1.0. It has bee
 CVE-2025-5664 (A vulnerability was found in FreeFloat FTP Server 1.0 and classified a ...)
 	TODO: check
 CVE-2025-5663 (A vulnerability has been found in PHPGurukul Auto Taxi Stand Managemen ...)
-	TODO: check
+	NOT-FOR-US: PHPGurukul
 CVE-2025-5661 (A vulnerability, which was classified as problematic, was found in cod ...)
-	TODO: check
+	NOT-FOR-US: code-projects
 CVE-2025-5660 (A vulnerability, which was classified as critical, has been found in P ...)
-	TODO: check
+	NOT-FOR-US: PHPGurukul
 CVE-2025-5659 (A vulnerability classified as critical was found in PHPGurukul Complai ...)
-	TODO: check
+	NOT-FOR-US: PHPGurukul
 CVE-2025-5658 (A vulnerability classified as critical has been found in PHPGurukul Co ...)
-	TODO: check
+	NOT-FOR-US: PHPGurukul
 CVE-2025-5657 (A vulnerability was found in PHPGurukul Complaint Management System 2. ...)
-	TODO: check
+	NOT-FOR-US: PHPGurukul
 CVE-2025-5656 (A vulnerability was found in PHPGurukul Complaint Management System 2. ...)
-	TODO: check
+	NOT-FOR-US: PHPGurukul
 CVE-2025-5655 (A vulnerability was found in PHPGurukul Complaint Management System 2. ...)
-	TODO: check
+	NOT-FOR-US: PHPGurukul
 CVE-2025-5654 (A vulnerability was found in PHPGurukul Complaint Management System 2. ...)
-	TODO: check
+	NOT-FOR-US: PHPGurukul
 CVE-2025-5653 (A vulnerability has been found in PHPGurukul Complaint Management Syst ...)
-	TODO: check
+	NOT-FOR-US: PHPGurukul
 CVE-2025-5652 (A vulnerability, which was classified as critical, was found in PHPGur ...)
-	TODO: check
+	NOT-FOR-US: PHPGurukul
 CVE-2025-5651 (A vulnerability, which was classified as problematic, has been found i ...)
-	TODO: check
+	NOT-FOR-US: code-projects
 CVE-2025-5650 (A vulnerability classified as critical was found in 1000projects Onlin ...)
 	TODO: check
 CVE-2025-5649 (A vulnerability classified as critical has been found in SourceCodeste ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester
 CVE-2025-5648 (A vulnerability was found in Radare2 5.9.9. It has been classified as  ...)
 	TODO: check
 CVE-2025-5647 (A vulnerability was found in Radare2 5.9.9 and classified as problemat ...)
 	TODO: check
 CVE-2025-5382 (Improper access control in users MFA feature in Devolutions Server 202 ...)
-	TODO: check
+	NOT-FOR-US: Devolutions
 CVE-2025-5341 (The Forminator Forms \u2013 Contact Form, Payment Form & Custom Form B ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-4568 (Improper neutralization of input provided by an unauthorized user into ...)
 	TODO: check
 CVE-2025-49009 (Para is a multitenant backend server/framework for object persistence  ...)
@@ -83,23 +83,23 @@ CVE-2025-48493 (The Yii 2 Redis extension provides the redis key-value store sup
 CVE-2025-47827 (In IGEL OS before 11, Secure Boot can be bypassed because the igel-fla ...)
 	TODO: check
 CVE-2025-46258 (Missing Authorization vulnerability in BdThemes Element Pack Pro allow ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin or theme
 CVE-2025-46257 (Cross-Site Request Forgery (CSRF) vulnerability in BdThemes Element Pa ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin or theme
 CVE-2025-43026 (A potential security vulnerability has been identified in the HP Suppo ...)
-	TODO: check
+	NOT-FOR-US: HP
 CVE-2025-3768 (Improper access control in Tor network blocking feature in Devolutions ...)
-	TODO: check
+	NOT-FOR-US: Devolutions
 CVE-2025-30084 (A stored XSS vulnerability in RSMail! component 1.19.20 - 1.22.26 for  ...)
-	TODO: check
+	NOT-FOR-US: Joomla
 CVE-2025-27754 (A stored XSS vulnerability in RSBlog! component 1.11.6 - 1.14.4 for Jo ...)
-	TODO: check
+	NOT-FOR-US: Joomla
 CVE-2025-27753 (A SQLi vulnerability in RSMediaGallery component 1.7.4 - 2.1.6 for Joo ...)
-	TODO: check
+	NOT-FOR-US: Joomla
 CVE-2025-27445 (A path traversal vulnerability in RSFirewall component 2.9.7 - 3.1.5 f ...)
-	TODO: check
+	NOT-FOR-US: Joomla
 CVE-2025-0691 (Improper access control in permissions component in Devolutions Server ...)
-	TODO: check
+	NOT-FOR-US: Devolutions
 CVE-2025-22874
 	- golang-1.24 <unfixed>
 	- golang-1.23 <unfixed>



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5f766dc3ae75f480fa86578d3428adbf42f01139

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5f766dc3ae75f480fa86578d3428adbf42f01139
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250605/5726e7cc/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list