[Git][security-tracker-team/security-tracker][master] Process some more NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Mar 24 20:28:18 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
de37cbd6 by Salvatore Bonaccorso at 2025-03-24T21:27:51+01:00
Process some more NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -5,19 +5,19 @@ CVE-2025-30621 (Cross-Site Request Forgery (CSRF) vulnerability in kornelly Tran
CVE-2025-30620 (Cross-Site Request Forgery (CSRF) vulnerability in coderscom WP Odoo F ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-30619 (Cross-Site Request Forgery (CSRF) vulnerability in SpeakPipe SpeakPipe ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30617 (Cross-Site Request Forgery (CSRF) vulnerability in takien Rewrite allo ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30615 (Cross-Site Request Forgery (CSRF) vulnerability in Jacob Schwartz WP e ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-30612 (Cross-Site Request Forgery (CSRF) vulnerability in mandegarweb Replace ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-30610 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30609 (Insertion of Sensitive Information Into Sent Data vulnerability in App ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30608 (Cross-Site Request Forgery (CSRF) vulnerability in Anthony WordPress S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30606 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-30605 (Missing Authorization vulnerability in ldwin79 sourceplay-navermap all ...)
@@ -35,19 +35,19 @@ CVE-2025-30600 (Improper Neutralization of Input During Web Page Generation ('Cr
CVE-2025-30599 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-30598 (Cross-Site Request Forgery (CSRF) vulnerability in Link OSS Upload all ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30597 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30595 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30593 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30592 (Missing Authorization vulnerability in westerndeal Advanced Dewplayer ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30591 (Missing Authorization vulnerability in tuyennv Music Press Pro allows ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30590 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30588 (Cross-Site Request Forgery (CSRF) vulnerability in ryan_xantoo Map Con ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-30587 (Cross-Site Request Forgery (CSRF) vulnerability in shawfactor LH OGP M ...)
@@ -55,41 +55,41 @@ CVE-2025-30587 (Cross-Site Request Forgery (CSRF) vulnerability in shawfactor LH
CVE-2025-30586 (Cross-Site Request Forgery (CSRF) vulnerability in bbodine1 cTabs allo ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-30585 (Cross-Site Request Forgery (CSRF) vulnerability in marynixie Generate ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30584 (Cross-Site Request Forgery (CSRF) vulnerability in alphaomegaplugins A ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-30583 (Cross-Site Request Forgery (CSRF) vulnerability in ProRankTracker Pro ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-30581 (Missing Authorization vulnerability in PluginOps Top Bar allows Exploi ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30578 (Cross-Site Request Forgery (CSRF) vulnerability in hotvanrod AdSense P ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-30577 (Cross-Site Request Forgery (CSRF) vulnerability in mendibass Browser A ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-30576 (Cross-Site Request Forgery (CSRF) vulnerability in HuangYe WuDeng Hack ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30575 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30574 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30573 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30572 (Cross-Site Request Forgery (CSRF) vulnerability in Igor Yavych Simple ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-30571 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30570 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30569 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30568 (Cross-Site Request Forgery (CSRF) vulnerability in hitoy Super Static ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30566 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30565 (Cross-Site Request Forgery (CSRF) vulnerability in karrikas banner-man ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-30564 (Cross-Site Request Forgery (CSRF) vulnerability in wpwox Custom Script ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30561 (Cross-Site Request Forgery (CSRF) vulnerability in Henrique Mouta CAS ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-30560 (Cross-Site Request Forgery (CSRF) vulnerability in Sana Ullah jQuery D ...)
@@ -129,7 +129,7 @@ CVE-2025-30539 (Improper Neutralization of Input During Web Page Generation ('Cr
CVE-2025-30538 (Cross-Site Request Forgery (CSRF) vulnerability in ChrisHurst Simple O ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-30537 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30536 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-30535 (Cross-Site Request Forgery (CSRF) vulnerability in muro External image ...)
@@ -169,7 +169,7 @@ CVE-2025-30163 (Cilium is a networking, observability, and security solution wit
CVE-2025-30162 (Cilium is a networking, observability, and security solution with an e ...)
TODO: check
CVE-2025-30112 (On 70mai Dash Cam 1S devices, by connecting directly to the dashcam's ...)
- TODO: check
+ NOT-FOR-US: 70mai Dash Cam 1S devices
CVE-2025-2749 (An authenticated remote code execution in Kentico Xperience allows aut ...)
TODO: check
CVE-2025-2748 (TheKentico Xperience application does not fully validate or filter fil ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/de37cbd6cc0708162e5da53ad5ac730b3904a23c
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/de37cbd6cc0708162e5da53ad5ac730b3904a23c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250324/ce8aac8b/attachment.htm>
More information about the debian-security-tracker-commits
mailing list