[Git][security-tracker-team/security-tracker][master] CVE-2025-54352/wordpress: bullseye postponed
Sylvain Beucler (@beuc)
gitlab at salsa.debian.org
Tue Nov 4 17:51:10 GMT 2025
Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker
Commits:
11f7fe61 by Sylvain Beucler at 2025-11-04T18:49:55+01:00
CVE-2025-54352/wordpress: bullseye postponed
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -36133,6 +36133,7 @@ CVE-2025-7343 (The SFT developed by Digiwin has a SQL Injection vulnerability, a
NOT-FOR-US: Digiwin
CVE-2025-54352 (WordPress 3.5 through 6.8.2 allows remote attackers to guess titles of ...)
- wordpress <unfixed> (bug #1109678)
+ [bullseye] - wordpress <postponed> (Minor issue, minor infoleak, no upstream response, workarounds exist)
NOTE: https://www.imperva.com/blog/beware-a-threat-actor-could-steal-the-titles-of-your-private-and-draft-wordpress-posts/
CVE-2025-54319 (An issue was discovered in Westermo WeOS 5 (5.24 through 5.24.4). A th ...)
NOT-FOR-US: Westermo WeOS
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/11f7fe61a99087a55ac3c6dc8ba18040a4caaca8
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/11f7fe61a99087a55ac3c6dc8ba18040a4caaca8
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251104/be3f6f19/attachment.htm>
More information about the debian-security-tracker-commits
mailing list