[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat Mar 8 08:19:25 GMT 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
834280b7 by Salvatore Bonaccorso at 2025-03-08T09:19:03+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,13 +1,13 @@
 CVE-2025-2097 (A vulnerability, which was classified as critical, has been found in T ...)
-	TODO: check
+	NOT-FOR-US: TOTOLINK
 CVE-2025-2096 (A vulnerability classified as critical was found in TOTOLINK EX1800T 9 ...)
-	TODO: check
+	NOT-FOR-US: TOTOLINK
 CVE-2025-2095 (A vulnerability classified as critical has been found in TOTOLINK EX18 ...)
-	TODO: check
+	NOT-FOR-US: TOTOLINK
 CVE-2025-2094 (A vulnerability was found in TOTOLINK EX1800T 9.1.0cu.2112_B20220316.  ...)
-	TODO: check
+	NOT-FOR-US: TOTOLINK
 CVE-2025-2093 (A vulnerability was found in PHPGurukul Online Library Management Syst ...)
-	TODO: check
+	NOT-FOR-US: PHPGurukul
 CVE-2025-27839 (operations/attestation/AttestationTask.kt in the Tangem SDK before 5.1 ...)
 	TODO: check
 CVE-2025-27826 (An XSS issue was discovered in the Bootstrap Lite theme before 1.x-1.4 ...)
@@ -21,39 +21,39 @@ CVE-2025-27823 (An issue was discovered in the Mail Disguise module before 1.x-1
 CVE-2025-27822 (An issue was discovered in the Masquerade module before 1.x-1.0.1 for  ...)
 	TODO: check
 CVE-2025-1504 (The Post Lockdown plugin for WordPress is vulnerable to Information Ex ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-1481 (The Shortcode Cleaner Lite plugin for WordPress is vulnerable to unaut ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-1261 (The HT Mega \u2013 Absolute Addons For Elementor plugin for WordPress  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-42733 (An issue in Docmosis Tornado v.2.9.7 and before allows a remote attack ...)
 	TODO: check
 CVE-2024-13908 (The SMTP by BestWebSoft plugin for WordPress is vulnerable to arbitrar ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-13895 (The The Code Snippets CPT plugin for WordPress is vulnerable to arbitr ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-13890 (The Allow PHP Execute plugin for WordPress is vulnerable to PHP Code I ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-13844 (The Post SMTP plugin for WordPress is vulnerable to generic SQL Inject ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-13835 (The Post Meta Data Manager plugin for WordPress is vulnerable to multi ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-13826 (The Email Keep WordPress plugin through 1.1 does not have CSRF check i ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-13825 (The Email Keep WordPress plugin through 1.1 does not sanitise and esca ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-13774 (The Wishlist for WooCommerce: Multi Wishlists Per Customer plugin for  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-13640 (The Print Invoice & Delivery Notes for WooCommerce plugin for WordPres ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-12460 (The Years Since \u2013 Timeless Texts plugin for WordPress is vulnerab ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-12119 (The FooGallery \u2013 Responsive Photo Gallery, Image Viewer, Justifie ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-12114 (The FooGallery \u2013 Responsive Photo Gallery, Image Viewer, Justifie ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-11087 (The miniOrange Social Login and Register (Discord, Google, Twitter, Li ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-2090 (A vulnerability was found in PHPGurukul Pre-School Enrollment System 1 ...)
 	NOT-FOR-US: PHPGurukul
 CVE-2025-2089 (A vulnerability has been found in StarSea99 starsea-mall 1.0/2.X and c ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/834280b7f71d37e76ee41ed6706bff1eb7dc33a4

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/834280b7f71d37e76ee41ed6706bff1eb7dc33a4
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250308/55221d2f/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list