[Git][security-tracker-team/security-tracker][master] Process some NFUs

Wed Mar 19 08:33:09 GMT 2025


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a00216cb by Salvatore Bonaccorso at 2025-03-19T09:32:47+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -7,9 +7,9 @@ CVE-2025-30234 (SmartOS, as used in Triton Data Center and other products, has s
 CVE-2025-30140 (An issue was discovered on G-Net Dashcam BB GONX devices. A Public Dom ...)
 	TODO: check
 CVE-2025-2290 (The LifterLMS \u2013 WP LMS for eLearning, Online Courses, & Quizzes p ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-1232 (The Site Reviews WordPress plugin before 7.2.5 does not properly sanit ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-57151 (SQL Injection vulnerability in rainrocka xinhu v.2.6.5 and before allo ...)
 	TODO: check
 CVE-2024-50631 (Improper neutralization of special elements used in an SQL command ('S ...)
@@ -19,15 +19,15 @@ CVE-2024-50630 (Missing authentication for critical function vulnerability in th
 CVE-2024-50629 (Improper encoding or escaping of output vulnerability in the webapi co ...)
 	TODO: check
 CVE-2024-13412 (The CozyStay theme for WordPress is vulnerable to unauthorized modific ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-13410 (The CozyStay and TinySalt plugins for WordPress are vulnerable to PHP  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-12922 (The Altair theme for WordPress is vulnerable to unauthorized modificat ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-12563 (The s2Member Pro plugin for WordPress is vulnerable to Local File Incl ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-12295 (The BoomBox Theme Extensions plugin for WordPress is vulnerable to pri ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-11131 (A vulnerability regarding out-of-bounds read is found in the video int ...)
 	TODO: check
 CVE-2024-10445 (Improper certificate validation vulnerability in the update functional ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a00216cb0c30259ad4d4449845d52522a65f6df3

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a00216cb0c30259ad4d4449845d52522a65f6df3
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250319/aec36f41/attachment-0001.htm>
