[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat Nov 8 08:13:34 GMT 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
03001fbd by security tracker role at 2025-11-08T08:13:25+00:00
automatic NOT-FOR-US entries update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,7 +1,7 @@
 CVE-2025-9334 (The Better Find and Replace \u2013 AI-Powered Suggestions plugin for W ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-7663 (The Ovatheme Events Manager plugin for WordPress is vulnerable to unau ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-64496 (Open WebUI is a self-hosted artificial intelligence platform designed  ...)
 	TODO: check
 CVE-2025-64495 (Open WebUI is a self-hosted artificial intelligence platform designed  ...)
@@ -73,39 +73,39 @@ CVE-2025-12875 (A weakness has been identified in mruby 3.4.0. This vulnerabilit
 CVE-2025-12863 (A flaw was found in the xmlSetTreeDoc() function of the libxml2 XML pa ...)
 	TODO: check
 CVE-2025-12621 (The Flexible Refund and Return Order for WooCommerce plugin for WordPr ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-12583 (The Simple Downloads List plugin for WordPress is vulnerable to unauth ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-12498 (The EventPrime \u2013 Events Calendar, Bookings and Tickets plugin for ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-12418 (Potential Denial of Service issue in all supported versions of Revener ...)
 	TODO: check
 CVE-2025-12353 (The WPFunnels \u2013 The Easiest Funnel Builder For WordPress And WooC ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-12193 (The Mang Board WP plugin for WordPress is vulnerable to Reflected Cros ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-12177 (The Download Manager plugin for WordPress is vulnerable to unauthorize ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-12167 (The Contact Form 7 AWeber Extension plugin for WordPress is vulnerable ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-12161 (The Smart Auto Upload Images plugin for WordPress is vulnerable to arb ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-12125 (The HTML Forms \u2013 Simple WordPress Forms Plugin plugin for WordPre ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-12112 (The Insert Headers and Footers Code \u2013 HT Script plugin for WordPr ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-12064 (The WP2Social Auto Publish plugin for WordPress is vulnerable to Refle ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-12042 (The Course Booking System plugin for WordPress is vulnerable to unauth ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-12000 (The WPFunnels plugin for WordPress is vulnerable to arbitrary file del ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-11972 (The Tag, Category, and Taxonomy Manager \u2013 AI Autotagger with Open ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-11748 (The Groups plugin for WordPress is vulnerable to Insecure Direct Objec ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-11452 (The Asgaros Forum plugin for WordPress is vulnerable to SQL Injection  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2020-36870 (Various Ruijie Gateway EG and NBR models firmware versions 11.1(6)B9P1 ...)
 	TODO: check
 CVE-2025-9458 (A maliciously crafted PRT file, when parsed through certain Autodesk p ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/03001fbdb49ff74bdeac4447d714d4c49304cc79

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/03001fbdb49ff74bdeac4447d714d4c49304cc79
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251108/8a495093/attachment.htm>

More information about the debian-security-tracker-commits mailing list