[Git][security-tracker-team/security-tracker][master] NFUs

[Moritz Muehlenhoff (@jmm)]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2bd207b6 by Moritz Muehlenhoff at 2025-03-07T23:14:54+01:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -51,33 +51,33 @@ CVE-2024-9658 (The School Management System for Wordpress plugin for WordPress i
 CVE-2024-9458 (The Reservit Hotel WordPress plugin before 3.0 does not sanitise and e ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2024-53700 (A command injection vulnerability has been reported to affect QHora. I ...)
-	TODO: check
+	NOT-FOR-US: QNAP
 CVE-2024-53699 (An out-of-bounds write vulnerability has been reported to affect sever ...)
-	TODO: check
+	NOT-FOR-US: QNAP
 CVE-2024-53698 (A double free vulnerability has been reported to affect several QNAP o ...)
-	TODO: check
+	NOT-FOR-US: QNAP
 CVE-2024-53697 (An out-of-bounds write vulnerability has been reported to affect sever ...)
-	TODO: check
+	NOT-FOR-US: QNAP
 CVE-2024-53696 (A server-side request forgery (SSRF) vulnerability has been reported t ...)
-	TODO: check
+	NOT-FOR-US: QNAP
 CVE-2024-53695 (A buffer overflow vulnerability has been reported to affect HBS 3 Hybr ...)
-	TODO: check
+	NOT-FOR-US: QNAP
 CVE-2024-53694 (A time-of-check time-of-use (TOCTOU) race condition vulnerability has  ...)
-	TODO: check
+	NOT-FOR-US: QNAP
 CVE-2024-53693 (An improper neutralization of CRLF sequences ('CRLF Injection') vulner ...)
-	TODO: check
+	NOT-FOR-US: QNAP
 CVE-2024-53692 (A command injection vulnerability has been reported to affect several  ...)
-	TODO: check
+	NOT-FOR-US: QNAP
 CVE-2024-50405 (An improper neutralization of CRLF sequences ('CRLF Injection') vulner ...)
-	TODO: check
+	NOT-FOR-US: QNAP
 CVE-2024-50394 (An improper certificate validation vulnerability has been reported to  ...)
-	TODO: check
+	NOT-FOR-US: QNAP
 CVE-2024-50390 (A command injection vulnerability has been reported to affect QHora. I ...)
-	TODO: check
+	NOT-FOR-US: QNAP
 CVE-2024-48864 (A files or directories accessible to external parties vulnerability ha ...)
-	TODO: check
+	NOT-FOR-US: QNAP
 CVE-2024-38638 (An out-of-bounds write vulnerability has been reported to affect sever ...)
-	TODO: check
+	NOT-FOR-US: QNAP
 CVE-2024-13904 (The Platform.ly for WooCommerce plugin for WordPress is vulnerable to  ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2024-13857 (The WPGet API \u2013 Connect to any external REST API plugin for WordP ...)
@@ -95,7 +95,7 @@ CVE-2024-13552 (The SupportCandy \u2013 Helpdesk & Customer Support Ticket Syste
 CVE-2024-13431 (The Appointment Booking Calendar \u2014 Simply Schedule Appointments B ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2024-13086 (An exposure of sensitive information vulnerability has been reported t ...)
-	TODO: check
+	NOT-FOR-US: QNAP
 CVE-2024-12975 (A buffer overread can occur in the CPC application when operating in f ...)
 	TODO: check
 CVE-2024-12876 (The Golo - City Travel Guide WordPress Theme theme for WordPress is vu ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2bd207b6a6db16c32d17b7eee564114b97eafbee

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2bd207b6a6db16c32d17b7eee564114b97eafbee
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250307/04bc0c94/attachment.htm>