[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat May 24 09:12:02 BST 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
adfc0442 by security tracker role at 2025-05-24T08:11:55+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,37 @@
+CVE-2025-5119 (A vulnerability has been found in Emlog Pro 2.5.11 and classified as c ...)
+	TODO: check
+CVE-2025-5058 (The eMagicOne Store Manager for WooCommerce plugin for WordPress is vu ...)
+	TODO: check
+CVE-2025-5055 (The Smart Forms \u2013 when you need more than just a contact form plu ...)
+	TODO: check
+CVE-2025-4603 (The eMagicOne Store Manager for WooCommerce plugin for WordPress is vu ...)
+	TODO: check
+CVE-2025-4602 (The eMagicOne Store Manager for WooCommerce plugin for WordPress is vu ...)
+	TODO: check
+CVE-2025-4336 (The eMagicOne Store Manager for WooCommerce plugin for WordPress is vu ...)
+	TODO: check
+CVE-2025-4223 (The Page Builder: Pagelayer \u2013 Drag and Drop website builder plugi ...)
+	TODO: check
+CVE-2025-48756 (In group_number in the scsir crate 0.2.0 for Rust, there can be an ove ...)
+	TODO: check
+CVE-2025-48755 (In the spiral-rs crate 0.2.0 for Rust, allocation can be attempted for ...)
+	TODO: check
+CVE-2025-48754 (In the memory_pages crate 0.1.0 for Rust, division by zero can occur.)
+	TODO: check
+CVE-2025-48753 (In the anode crate 0.1.0 for Rust, data races can occur in unlock in S ...)
+	TODO: check
+CVE-2025-48752 (In the process-sync crate 0.2.2 for Rust, the drop function lacks a ch ...)
+	TODO: check
+CVE-2025-48751 (The process_lock crate 0.1.0 for Rust allows data races in unlock.)
+	TODO: check
+CVE-2025-48739 (A Server-Side Request Forgery (SSRF) vulnerability in StrangeBee TheHi ...)
+	TODO: check
+CVE-2025-48738 (An e-mail flooding vulnerability in StrangeBee TheHive 5.2.0 before 5. ...)
+	TODO: check
+CVE-2025-3869 (The 4stats plugin for WordPress is vulnerable to Cross-Site Request Fo ...)
+	TODO: check
+CVE-2024-13427 (The Page Builder: Pagelayer \u2013 Drag and Drop website builder plugi ...)
+	TODO: check
 CVE-2025-5114 (A vulnerability has been found in easysoft zentaopms 21.5_20250307 and ...)
 	NOT-FOR-US: easysoft zentaopms
 CVE-2025-5112 (A vulnerability, which was classified as critical, was found in FreeFl ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/adfc044241fe2a3367c93d42e2c16835d547f08b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/adfc044241fe2a3367c93d42e2c16835d547f08b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250524/e9d6218e/attachment.htm>

More information about the debian-security-tracker-commits mailing list