[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat May 17 09:14:08 BST 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d81adf35 by security tracker role at 2025-05-17T08:14:01+00:00
automatic NOT-FOR-US entries update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,47 +1,47 @@
 CVE-2025-4819 (A vulnerability classified as problematic has been found in y_project  ...)
 	TODO: check
 CVE-2025-4818 (A vulnerability was found in SourceCodester Doctor's Appointment Syste ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester
 CVE-2025-4817 (A vulnerability was found in Sourcecodester Doctor's Appointment Syste ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester
 CVE-2025-4816 (A vulnerability was found in SourceCodester Doctor's Appointment Syste ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester
 CVE-2025-4815 (A vulnerability was found in Campcodes Sales and Inventory System 1.0  ...)
-	TODO: check
+	NOT-FOR-US: Campcodes
 CVE-2025-4814 (A vulnerability has been found in Campcodes Sales and Inventory System ...)
-	TODO: check
+	NOT-FOR-US: Campcodes
 CVE-2025-4813 (A vulnerability, which was classified as critical, was found in PHPGur ...)
-	TODO: check
+	NOT-FOR-US: PHPGurukul
 CVE-2025-4812 (A vulnerability, which was classified as critical, has been found in P ...)
-	TODO: check
+	NOT-FOR-US: PHPGurukul
 CVE-2025-4811 (A vulnerability was found in CodeAstro Pharmacy Management System 1.0. ...)
-	TODO: check
+	NOT-FOR-US: CodeAstro
 CVE-2025-4810 (A vulnerability was found in Tenda AC7 15.03.06.44. It has been declar ...)
-	TODO: check
+	NOT-FOR-US: Tenda
 CVE-2025-4805 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
-	TODO: check
+	NOT-FOR-US: WatchGuard
 CVE-2025-4804 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
-	TODO: check
+	NOT-FOR-US: WatchGuard
 CVE-2025-4391 (The Echo RSS Feed Post Generator plugin for WordPress is vulnerable to ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-4389 (The Crawlomatic Multipage Scraper Post Generator plugin for WordPress  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-4194 (The AlT Monitoring plugin for WordPress is vulnerable to Cross-Site Re ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-4190 (The CSV Mass Importer WordPress plugin through 1.2 does not properly v ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-4189 (The Audio Comments Plugin plugin for WordPress is vulnerable to Cross- ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-48188 (libpspp-core.a in GNU PSPP through 2.0.1 has an incorrect call from fi ...)
 	TODO: check
 CVE-2025-3812 (The WPBot Pro Wordpress Chatbot plugin for WordPress is vulnerable to  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-32407 (Samsung Internet for Galaxy Watch version 5.0.9, available up until Sa ...)
 	TODO: check
 CVE-2025-1706 (Software installed and run as a non-privileged user may conduct improp ...)
-	TODO: check
+	NOT-FOR-US: Imagination Technologies
 CVE-2024-47893 (Kernel software installed and running inside a Guest VM may exploit me ...)
-	TODO: check
+	NOT-FOR-US: Imagination Technologies
 CVE-2025-4809 (A vulnerability was found in Tenda AC7 15.03.06.44. It has been classi ...)
 	NOT-FOR-US: Tenda
 CVE-2025-4808 (A vulnerability was found in PHPGurukul Park Ticketing Management Syst ...)
@@ -216287,7 +216287,7 @@ CVE-2022-4365 (An issue has been discovered in GitLab CE/EE affecting all versio
 CVE-2022-4364 (A vulnerability classified as critical has been found in Teledyne FLIR ...)
 	NOT-FOR-US: Teledyne
 CVE-2022-4363 (The Wholesale Market WordPress plugin before 2.2.2, Wholesale Market f ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2022-4362 (The Popup Maker WordPress plugin before 1.16.9 does not validate and e ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2022-4361 (Keycloak, an open-source identity and access management solution, has  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d81adf3569d1c3285a82609dca841d92b598921c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d81adf3569d1c3285a82609dca841d92b598921c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250517/7e34443b/attachment.htm>

More information about the debian-security-tracker-commits mailing list