[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon May 19 21:14:04 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
b1a997c8 by security tracker role at 2025-05-19T20:13:58+00:00
automatic NOT-FOR-US entries update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -3,41 +3,41 @@ CVE-2025-4948 (A flaw was found in the soup_multipart_new_from_message() functio
CVE-2025-4945 (A flaw was found in the cookie parsing logic of the libsoup HTTP libra ...)
TODO: check
CVE-2025-4941 (A vulnerability, which was classified as critical, was found in PHPGur ...)
- TODO: check
+ NOT-FOR-US: PHPGurukul
CVE-2025-4940 (A vulnerability, which was classified as critical, has been found in 1 ...)
TODO: check
CVE-2025-4939 (A vulnerability classified as problematic was found in PHPGurukul Cred ...)
- TODO: check
+ NOT-FOR-US: PHPGurukul
CVE-2025-4938 (A vulnerability was found in PHPGurukul Employee Record Management Sys ...)
- TODO: check
+ NOT-FOR-US: PHPGurukul
CVE-2025-4937 (A vulnerability was found in SourceCodester Apartment Visitor Manageme ...)
- TODO: check
+ NOT-FOR-US: SourceCodester
CVE-2025-4936 (A vulnerability was found in projectworlds Online Food Ordering System ...)
- TODO: check
+ NOT-FOR-US: Project Worlds
CVE-2025-4935 (A vulnerability was found in SourceCodester Stock Management System 1. ...)
- TODO: check
+ NOT-FOR-US: SourceCodester
CVE-2025-4934 (A vulnerability has been found in PHPGurukul User Registration & Login ...)
- TODO: check
+ NOT-FOR-US: PHPGurukul
CVE-2025-4933 (A vulnerability, which was classified as critical, was found in ponara ...)
TODO: check
CVE-2025-4932 (A vulnerability, which was classified as critical, has been found in p ...)
- TODO: check
+ NOT-FOR-US: Project Worlds
CVE-2025-4931 (A vulnerability classified as critical was found in projectworlds Onli ...)
- TODO: check
+ NOT-FOR-US: Project Worlds
CVE-2025-4930 (A vulnerability classified as critical has been found in Campcodes Onl ...)
TODO: check
CVE-2025-4929 (A vulnerability was found in Campcodes Online Shopping Portal 1.0. It ...)
TODO: check
CVE-2025-4928 (A vulnerability was found in projectworlds Online Lawyer Management Sy ...)
- TODO: check
+ NOT-FOR-US: Project Worlds
CVE-2025-4927 (A vulnerability was found in PHPGurukul Online Marriage Registration S ...)
- TODO: check
+ NOT-FOR-US: PHPGurukul
CVE-2025-4926 (A vulnerability was found in PHPGurukul Car Rental Project 1.0 and cla ...)
- TODO: check
+ NOT-FOR-US: PHPGurukul
CVE-2025-4925 (A vulnerability has been found in PHPGurukul Daily Expense Tracker Sys ...)
- TODO: check
+ NOT-FOR-US: PHPGurukul
CVE-2025-4924 (A vulnerability, which was classified as critical, was found in Source ...)
- TODO: check
+ NOT-FOR-US: SourceCodester
CVE-2025-4876 (ConnectWise-Password-Encryption-Utility.exe in ConnectWise Risk Assess ...)
TODO: check
CVE-2025-48346 (Missing Authorization vulnerability in Etsy360 Embed and Integrate Ets ...)
@@ -75,9 +75,9 @@ CVE-2025-48268 (Missing Authorization vulnerability in Guru Team Bot for Telegra
CVE-2025-48266 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
TODO: check
CVE-2025-48265 (Cross-Site Request Forgery (CSRF) vulnerability in Pektsekye Year Make ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-48264 (Cross-Site Request Forgery (CSRF) vulnerability in artiosmedia Product ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-48263 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
TODO: check
CVE-2025-48262 (Missing Authorization vulnerability in Michael Revellin-Clerc Url Rewr ...)
@@ -85,7 +85,7 @@ CVE-2025-48262 (Missing Authorization vulnerability in Michael Revellin-Clerc Ur
CVE-2025-48260 (Missing Authorization vulnerability in Ninja Team GDPR CCPA Compliance ...)
TODO: check
CVE-2025-48259 (Cross-Site Request Forgery (CSRF) vulnerability in Juan Carlos WP Mapa ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-48258 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
TODO: check
CVE-2025-48257 (Missing Authorization vulnerability in Projectopia Projectopia allows ...)
@@ -123,7 +123,7 @@ CVE-2025-48240 (Improper Neutralization of Input During Web Page Generation ('Cr
CVE-2025-48239 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
TODO: check
CVE-2025-48238 (Cross-Site Request Forgery (CSRF) vulnerability in awcode AWcode Toolk ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-48237 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
TODO: check
CVE-2025-48236 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
@@ -133,7 +133,7 @@ CVE-2025-48235 (Improper Neutralization of Input During Web Page Generation ('Cr
CVE-2025-48234 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
TODO: check
CVE-2025-48233 (Cross-Site Request Forgery (CSRF) vulnerability in affmngr Affiliates ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-48232 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
TODO: check
CVE-2025-47949 (samlify is a Node.js library for SAML single sign-on. A Signature Wrap ...)
@@ -147,15 +147,15 @@ CVE-2025-47935 (Multer is a node.js middleware for handling `multipart/form-data
CVE-2025-47934 (OpenPGP.js is a JavaScript implementation of the OpenPGP protocol. Sta ...)
TODO: check
CVE-2025-47583 (Unauthenticated Cross Site Request Forgery (CSRF) in Salon booking sys ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-47582 (Deserialization of Untrusted Data vulnerability in QuantumCloud WPBot ...)
TODO: check
CVE-2025-47581 (Deserialization of Untrusted Data vulnerability in Elbisnero WordPress ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-47577 (Unrestricted Upload of File with Dangerous Type vulnerability in Templ ...)
TODO: check
CVE-2025-47576 (Improper Control of Filename for Include/Require Statement in PHP Prog ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-47284 (Gardener implements the automated management and operation of Kubernet ...)
TODO: check
CVE-2025-47283 (Gardener implements the automated management and operation of Kubernet ...)
@@ -163,21 +163,21 @@ CVE-2025-47283 (Gardener implements the automated management and operation of Ku
CVE-2025-47282 (Gardener External DNS Management is an environment to manage external ...)
TODO: check
CVE-2025-46543 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-46441 (Path Traversal: '.../...//' vulnerability in ctltwp Section Widget all ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-46263 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-46262 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-44108 (A stored Cross-Site Scripting (XSS) vulnerability exists in the admini ...)
TODO: check
CVE-2025-43841 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-43840 (Cross-Site Request Forgery (CSRF) vulnerability in Ref CheckBot allows ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-43839 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-43838 (Missing Authorization vulnerability in ChoPlugins Custom PC Builder Li ...)
TODO: check
CVE-2025-43837 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
@@ -185,13 +185,13 @@ CVE-2025-43837 (Improper Neutralization of Input During Web Page Generation ('Cr
CVE-2025-43836 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
TODO: check
CVE-2025-43835 (Cross-Site Request Forgery (CSRF) vulnerability in ktsvetkov allows Cr ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-43834 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-43833 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-43832 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-43714 (The ChatGPT system through 2025-03-30 performs inline rendering of SVG ...)
TODO: check
CVE-2025-41429 (a-blog cms multiple versions neutralize logs improperly. If this vulne ...)
@@ -199,133 +199,133 @@ CVE-2025-41429 (a-blog cms multiple versions neutralize logs improperly. If this
CVE-2025-3908 (The configuration initialization tool in OpenVPN 3 Linux v20 through v ...)
TODO: check
CVE-2025-39460 (Missing Authorization vulnerability in ThimPress Eduma allows Exploiti ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39459 (Incorrect Privilege Assignment vulnerability in Contempo Themes Real E ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39458 (Improper Control of Filename for Include/Require Statement in PHP Prog ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39454 (Missing Authorization vulnerability in Jeroen Peters Name Directory.Th ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39451 (Missing Authorization vulnerability in Crocoblock JetBlocks For Elemen ...)
TODO: check
CVE-2025-39450 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39449 (Missing Authorization vulnerability in Crocoblock JetWooBuilder allows ...)
TODO: check
CVE-2025-39448 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39447 (Missing Authorization vulnerability in Crocoblock JetElements For Elem ...)
TODO: check
CVE-2025-39446 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39445 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
TODO: check
CVE-2025-39412 (Missing Authorization vulnerability in Averta Master Slider.This issue ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39411 (Improper Control of Filename for Include/Require Statement in PHP Prog ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39410 (Deserialization of Untrusted Data vulnerability in themegusta Smart Se ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39409 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39407 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39406 (Improper Control of Filename for Include/Require Statement in PHP Prog ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39405 (Incorrect Privilege Assignment vulnerability in mojoomla WPAMS allows ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39403 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39402 (Unrestricted Upload of File with Dangerous Type vulnerability in mojoo ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39401 (Unrestricted Upload of File with Dangerous Type vulnerability in mojoo ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39398 (Missing Authorization vulnerability in Themovation Hotel + Bed and Bre ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39396 (Improper Control of Filename for Include/Require Statement in PHP Prog ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39395 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39394 (Exposure of Sensitive System Information to an Unauthorized Control Sp ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39393 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39392 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39389 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
TODO: check
CVE-2025-39388 (Missing Authorization vulnerability in Solid Plugins AnalyticsWP allow ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39386 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39380 (Unrestricted Upload of File with Dangerous Type vulnerability in mojoo ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39376 (Missing Authorization vulnerability in QuanticaLabs Car Park Booking S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39375 (Cross-Site Request Forgery (CSRF) vulnerability in Ashok G Easy Child ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39374 (Cross-Site Request Forgery (CSRF) vulnerability in aseem1234 Best Post ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39373 (Missing Authorization vulnerability in jegtheme JNews.This issue affec ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39372 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39371 (Cross-Site Request Forgery (CSRF) vulnerability in Sanjeev Mohindra Au ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39370 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39369 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39368 (Missing Authorization vulnerability in ed4becky Rootspersona allows Ex ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39366 (Incorrect Privilege Assignment vulnerability in Rocket Apps wProject.T ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39365 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39364 (Improper Control of Filename for Include/Require Statement in PHP Prog ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39357 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39356 (Deserialization of Untrusted Data vulnerability in Chimpstudio Foodbak ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39355 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39354 (Deserialization of Untrusted Data vulnerability in ThemeGoods Grand Co ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39353 (Missing Authorization vulnerability in ThemeGoods Grand Restaurant Wor ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39352 (Missing Authorization vulnerability in ThemeGoods Grand Restaurant Wor ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39351 (Cross-Site Request Forgery (CSRF) vulnerability in ThemeGoods Grand Re ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39350 (Missing Authorization vulnerability in Rocket Apps wProject.This issue ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39349 (Deserialization of Untrusted Data vulnerability in Potenzaglobalsoluti ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-39348 (Deserialization of Untrusted Data vulnerability in ThemeGoods Grand Re ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-36560 (Server-side request forgery vulnerability exists in a-blog cms multipl ...)
TODO: check
CVE-2025-32999 (Cross-site scripting vulnerability exists in a-blog cms versions prior ...)
TODO: check
CVE-2025-32928 (Deserialization of Untrusted Data vulnerability in ThemeGoods Altair a ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32927 (Deserialization of Untrusted Data vulnerability in Chimpstudio FoodBak ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32926 (Improper Limitation of a Pathname to a Restricted Directory ('Path Tra ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32925 (Improper Control of Filename for Include/Require Statement in PHP Prog ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32924 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32920 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31262 (A permissions issue was addressed with additional restrictions. This i ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2025-31185 (A logic issue was addressed with improved checks. This issue is fixed ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2025-31027 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-30072 (Tiiwee X1 Alarm System TWX1HAKV2 allows Authentication Bypass by Captu ...)
TODO: check
CVE-2025-2099 (A vulnerability in the `preprocess_string()` function of the `transfor ...)
@@ -337,57 +337,57 @@ CVE-2025-27566 (Path traversal vulnerability exists in a-blog cms versions prior
CVE-2025-27010 (Path Traversal: '.../...//' vulnerability in bslthemes Tastyc allows P ...)
TODO: check
CVE-2025-26997 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-26920 (Missing Authorization vulnerability in PressMaximum Customify allows E ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-26892 (Unrestricted Upload of File with Dangerous Type vulnerability in dkszo ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-26872 (Unrestricted Upload of File with Dangerous Type vulnerability in dkszo ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-26867 (Missing Authorization vulnerability in Themes4WP Bulk allows Accessing ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-26735 (Improper Control of Filename for Include/Require Statement in PHP Prog ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-26621 (OpenCTI is an open source platform for managing cyber threat intellige ...)
TODO: check
CVE-2025-24189 (The issue was addressed with improved checks. This issue is fixed in S ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2025-24184 (The issue was addressed with improved memory handling. This issue is f ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2025-24183 (The issue was addressed with improved checks. This issue is fixed in m ...)
- TODO: check
+ NOT-FOR-US: Apple
CVE-2025-23988 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-23986 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-23983 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-23981 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-23979 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-22792 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-22791 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-22790 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-22789 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-22687 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-22678 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-22287 (Missing Authorization vulnerability in Eniture Technology LTL Freight ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2024-55063 (Multiple Code Injection vulnerabilities in EasyVirt DC NetScope <= 8.7 ...)
TODO: check
CVE-2024-51106 (A cross-site scripting (XSS) vulnerability in the component mcgs/admin ...)
- TODO: check
+ NOT-FOR-US: PHPGurukul
CVE-2024-4878
REJECTED
CVE-2024-33939 (Authentication Bypass Using an Alternate Path or Channel vulnerability ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-4923 (A vulnerability, which was classified as critical, has been found in S ...)
NOT-FOR-US: SourceCodester
CVE-2025-4917 (A vulnerability classified as critical has been found in PHPGurukul Au ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b1a997c839450989e9122d91862fac2d58ecac58
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b1a997c839450989e9122d91862fac2d58ecac58
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250519/8ed05a73/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list