[Git][security-tracker-team/security-tracker][master] Process some NFUs

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
7ce8a399 by Salvatore Bonaccorso at 2025-03-15T09:36:53+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,7 +1,7 @@
 CVE-2025-30066 (tj-actions changed-files through 45.0.7 allows remote attackers to dis ...)
 	TODO: check
 CVE-2025-2325 (The WP Test Email plugin for WordPress is vulnerable to Stored Cross-S ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-2320 (A vulnerability has been found in 274056675 springboot-openai-chatgpt  ...)
 	TODO: check
 CVE-2025-2310 (A vulnerability was found in HDF5 1.14.6 and classified as critical. T ...)
@@ -13,37 +13,37 @@ CVE-2025-2308 (A vulnerability, which was classified as critical, was found in H
 CVE-2025-2295 (EDK2 contains a vulnerability in BIOS where a user may cause an Intege ...)
 	TODO: check
 CVE-2025-2267 (The WP01 plugin for WordPress is vulnerable to Arbitrary File Download ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-2164 (The pixelstats plugin for WordPress is vulnerable to Reflected Cross-S ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-2163 (The Zoorum Comments plugin for WordPress is vulnerable to Cross-Site R ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-2157 (A flaw was found in Foreman/Red Hat Satellite. Improper file permissio ...)
 	TODO: check
 CVE-2025-1773 (The Traveler theme for WordPress is vulnerable to Reflected Cross-Site ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-1771 (The Traveler theme for WordPress is vulnerable to Local File Inclusion ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-1670 (The School Management System \u2013 WPSchoolPress plugin for WordPress ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-1669 (The School Management System \u2013 WPSchoolPress plugin for WordPress ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-1668 (The School Management System \u2013 WPSchoolPress plugin for WordPress ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-1667 (The School Management System \u2013 WPSchoolPress plugin for WordPress ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-1657 (The Directory Listings WordPress plugin \u2013 uListing plugin for Wor ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-1653 (The Directory Listings WordPress plugin \u2013 uListing plugin for Wor ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-13847 (The Portfolio and Projects plugin for WordPress is vulnerable to Store ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-13497 (The WordPress form builder plugin for contact forms, surveys and quizz ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-12336 (The WC Affiliate \u2013 A Complete WooCommerce Affiliate Plugin plugin ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2019-25222 (The Thumbnail carousel slider plugin for WordPress is vulnerable to SQ ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-2304 (A Privilege Escalation through a Mass Assignment exists in Camaleon CM ...)
 	NOT-FOR-US: Camaleon CMS
 CVE-2025-2268 (The HP LaserJet MFP M232-M237 Printer Series may be vulnerable to a de ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7ce8a399e5f0585ca19fc2d32fd2783ed463e068

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7ce8a399e5f0585ca19fc2d32fd2783ed463e068
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250315/3b7c647f/attachment.htm>