[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat Oct 18 09:13:44 BST 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
c6c68fb0 by security tracker role at 2025-10-18T08:13:38+00:00
automatic NOT-FOR-US entries update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,5 +1,5 @@
 CVE-2025-9562 (The Redirection for Contact Form 7 plugin for WordPress is vulnerable  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-62671 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
 	TODO: check
 CVE-2025-62670 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
@@ -87,51 +87,51 @@ CVE-2025-11913 (A vulnerability has been found in Shenzhen Ruiming Technology St
 CVE-2025-11912 (A flaw has been found in Shenzhen Ruiming Technology Streamax Crocus 1 ...)
 	TODO: check
 CVE-2025-11857 (The XX2WP Integration Tools plugin for WordPress is vulnerable to Stor ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-11742 (The WPC Smart Wishlist for WooCommerce plugin for WordPress is vulnera ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-11741 (The WPC Smart Quick View for WooCommerce plugin for WordPress is vulne ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-11738 (The Media Library Assistant plugin for WordPress is vulnerable to limi ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-11703 (The WP Go Maps (formerly WP Google Maps) plugin for WordPress is vulne ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-11691 (The PPOM \u2013 Product Addons & Custom Fields for WooCommerce plugin  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-11519 (The Optimole \u2013 Optimize Images | Convert WebP & AVIF | CDN & Lazy ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-11517 (The Event Tickets and Registration plugin for WordPress is vulnerable  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-11510 (The FileBird \u2013 WordPress Media Library Folders & File Manager plu ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-11391 (The PPOM \u2013 Product Addons & Custom Fields for WooCommerce plugin  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-11378 (The ShortPixel Image Optimizer \u2013 Optimize Images, Convert WebP &  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-11372 (The LearnPress \u2013 WordPress LMS Plugin plugin for WordPress is vul ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-11361 (The Gutenberg Essential Blocks \u2013 Page Builder for Gutenberg Block ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-11270 (The Gutenberg Essential Blocks \u2013 Page Builder for Gutenberg Block ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-11256 (The Kognetiks Chatbot plugin for WordPress is vulnerable to unauthoriz ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-10750 (The PowerBI Embed Reports plugin for WordPress is vulnerable to Sensit ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-10187 (The GSpeech TTS \u2013 WordPress Text To Speech Plugin plugin for Word ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-10006 (The WPBakery Page Builder plugin for WordPress is vulnerable to Stored ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2020-36854 (The Async JavaScript plugin for WordPress is vulnerable to Stored Cros ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2020-36853 (The 10WebMapBuilder plugin for WordPress is vulnerable to Stored Cross ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2017-20208 (The RegistrationMagic \u2013 Custom Registration Forms, User Registrat ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2017-20207 (The Flickr Gallery plugin for WordPress is vulnerable to PHP Object In ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2017-20206 (The Appointments plugin for WordPress is vulnerable to PHP Object Inje ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-8414 (Due to improper input validation, a buffer overflow vulnerability is p ...)
 	NOT-FOR-US: Silicon Labs
 CVE-2025-62511 (yt-grabber-tui is a C++ terminal user interface application for downlo ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c6c68fb0ab915bad9634ceb4add16b24a0880a22

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c6c68fb0ab915bad9634ceb4add16b24a0880a22
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251018/5989bdc3/attachment.htm>

More information about the debian-security-tracker-commits mailing list