[Git][security-tracker-team/security-tracker][master] automatic update

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
56ef7229 by security tracker role at 2025-03-22T08:12:32+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,51 @@
+CVE-2025-30472 (Corosync through 3.1.9, if encryption is disabled or the attacker know ...)
+	TODO: check
+CVE-2025-30204 (golang-jwt is a Go implementation of JSON Web Tokens. Prior to  5.2.2  ...)
+	TODO: check
+CVE-2025-2610 (Improper neutralization of input during web page generation vulnerabil ...)
+	TODO: check
+CVE-2025-2609 (Improper neutralization of input during web page generation vulnerabil ...)
+	TODO: check
+CVE-2025-2608 (A vulnerability classified as critical has been found in PHPGurukul Ba ...)
+	TODO: check
+CVE-2025-2607 (A vulnerability was found in phplaozhang LzCMS-LaoZhangBoKeXiTong up t ...)
+	TODO: check
+CVE-2025-2606 (A vulnerability was found in SourceCodester Best Church Management Sof ...)
+	TODO: check
+CVE-2025-2604 (A vulnerability was found in SourceCodester Kortex Lite Advocate Offic ...)
+	TODO: check
+CVE-2025-2484 (The Multi Video Box plugin for WordPress is vulnerable to Reflected Cr ...)
+	TODO: check
+CVE-2025-2482 (The Gotcha | Gesture-based Captcha plugin for WordPress is vulnerable  ...)
+	TODO: check
+CVE-2025-2479 (The Easy Custom Admin Bar plugin for WordPress is vulnerable to Reflec ...)
+	TODO: check
+CVE-2025-2478 (The Code Clone plugin for WordPress is vulnerable to time-based SQL In ...)
+	TODO: check
+CVE-2025-2477 (The CryoKey plugin for WordPress is vulnerable to Reflected Cross-Site ...)
+	TODO: check
+CVE-2025-2303 (The Block Logic \u2013 Full Gutenberg Block Display Control plugin for ...)
+	TODO: check
+CVE-2025-26500 (: Uncontrolled Resource Consumption vulnerability in Wind River System ...)
+	TODO: check
+CVE-2025-1408 (The ProfileGrid \u2013 User Profiles, Groups and Communities plugin fo ...)
+	TODO: check
+CVE-2025-1311 (The WooCommerce Multivendor Marketplace \u2013 REST API plugin for Wor ...)
+	TODO: check
+CVE-2025-0807 (The CITS Support svg, webp Media and TTF,OTF File Upload, Use Custom F ...)
+	TODO: check
+CVE-2025-0724 (The ProfileGrid \u2013 User Profiles, Groups and Communities plugin fo ...)
+	TODO: check
+CVE-2025-0723 (The ProfileGrid \u2013 User Profiles, Groups and Communities plugin fo ...)
+	TODO: check
+CVE-2024-13856 (The Your Friendly Drag and Drop Page Builder \u2014 Make Builder plugi ...)
+	TODO: check
+CVE-2024-13768 (The CITS Support svg, webp Media and TTF,OTF File Upload, Use Custom F ...)
+	TODO: check
+CVE-2024-13739 (The Newsletters plugin for WordPress is vulnerable to Reflected Cross- ...)
+	TODO: check
+CVE-2024-13737 (The Motors \u2013 Car Dealer, Classifieds & Listing plugin for WordPre ...)
+	TODO: check
 CVE-2025-26796
 	NOT-FOR-US: Apache Oozie
 CVE-2025-30349 (Horde IMP through 6.2.27, as used with Horde Application Framework thr ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/56ef722999b37ba74e832fc525def4e1463030fe

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/56ef722999b37ba74e832fc525def4e1463030fe
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250322/72a8ca4e/attachment.htm>