[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Oct 24 21:18:14 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
82912a60 by Salvatore Bonaccorso at 2025-10-24T22:18:03+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,25 +1,25 @@
CVE-2025-8536 (A SQL injection vulnerability has been identified in DobryCMS. Imprope ...)
- TODO: check
+ NOT-FOR-US: DobryCMS
CVE-2025-62714 (Karmada Dashboard is a general-purpose, web-based control panel for Ka ...)
- TODO: check
+ NOT-FOR-US: Karmada Dashboard
CVE-2025-61430 (Improper handling of DNS over TCP in Simple DNS Plus v9 allows a remot ...)
- TODO: check
+ NOT-FOR-US: Simple DNS Plus
CVE-2025-60938 (Emoncms 11.7.3 has a remote code execution vulnerability in the firmwa ...)
- TODO: check
+ NOT-FOR-US: Emoncms
CVE-2025-60936 (Emoncms 11.7.3 is vulnerable to Cross Site in the input handling mecha ...)
- TODO: check
+ NOT-FOR-US: Emoncms
CVE-2025-60803 (Antabot White-Jotter up to commit 9bcadc was discovered to contain an ...)
- TODO: check
+ NOT-FOR-US: Antabot White-Jotter
CVE-2025-60801 (jshERP up to commit fbda24da was discovered to contain an unauthentica ...)
- TODO: check
+ NOT-FOR-US: jshERP
CVE-2025-60735 (PerfreeBlog v4.0.11 has a File Upload vulnerability in the installPlug ...)
- TODO: check
+ NOT-FOR-US: PerfreeBlog
CVE-2025-60731 (PerfreeBlog v4.0.11 has a File Upload vulnerability in the installThem ...)
- TODO: check
+ NOT-FOR-US: PerfreeBlog
CVE-2025-60730 (PerfreeBlog v4.0.11 has an arbitrary file deletion vulnerability in th ...)
- TODO: check
+ NOT-FOR-US: PerfreeBlog
CVE-2025-60729 (PerfreeBlog v4.0.11 has an arbitrary file read vulnerability in the va ...)
- TODO: check
+ NOT-FOR-US: PerfreeBlog
CVE-2025-60572 (D-Link DIR600L Ax FW116WWb01 was discovered to contain a buffer overfl ...)
NOT-FOR-US: D-Link
CVE-2025-60571 (D-Link DIR600LAx FW116WWb01 was discovered to contain a buffer overflo ...)
@@ -69,7 +69,7 @@ CVE-2025-60548 (D-Link DIR600L Ax FW116WWb01 was discovered to contain a buffer
CVE-2025-60547 (D-Link DIR600L Ax FW116WWb01 was discovered to contain a buffer overfl ...)
NOT-FOR-US: D-Link
CVE-2025-60419 (An issue was discovered in the NDIS Usermode IO driver (RtkIOAC60.sys, ...)
- TODO: check
+ NOT-FOR-US: NDIS Usermode IO driver
CVE-2025-5605 (An authentication bypass vulnerability exists in the Management Consol ...)
NOT-FOR-US: WSO2
CVE-2025-5350 (SSRF and Reflected XSS Vulnerabilities exist in multiple WSO2 products ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/82912a605ebd5c6e2429489f80001181177baec9
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/82912a605ebd5c6e2429489f80001181177baec9
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251024/b58875be/attachment.htm>
More information about the debian-security-tracker-commits
mailing list