[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Sep 11 09:13:07 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
6bd30779 by security tracker role at 2025-09-11T08:13:01+00:00
automatic NOT-FOR-US entries update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -3,93 +3,93 @@ CVE-2025-9918 (A Path Traversal vulnerability in the archive extraction componen
CVE-2025-9910 (Versions of the package jsondiffpatch before 0.7.2 are vulnerable to C ...)
TODO: check
CVE-2025-9874 (The Ultimate Classified Listings plugin for WordPress is vulnerable to ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9861 (The ThemeLoom Widgets plugin for WordPress is vulnerable to Stored Cro ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9860 (The Mixtape plugin for WordPress is vulnerable to Stored Cross-Site Sc ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9855 (The Enhanced BibliPlug plugin for WordPress is vulnerable to Stored Cr ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9850 (The Evenium plugin for WordPress is vulnerable to Stored Cross-Site Sc ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9776 (The CatFolders \u2013 Tame Your WordPress Media Library by Category pl ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9693 (The User Meta \u2013 User Profile Builder and User management plugin p ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9635 (The Analytics Reduce Bounce Rate plugin for WordPress is vulnerable to ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9634 (The Plugin updates blocker plugin for WordPress is vulnerable to Cross ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9633 (The LH Signing plugin for WordPress is vulnerable to Cross-Site Reques ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9632 (The PhpList Subber plugin for WordPress is vulnerable to Cross-Site Re ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9631 (The AutoCatSet plugin for WordPress is vulnerable to Cross-Site Reques ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9628 (The The integration of the AMO.CRM plugin for WordPress is vulnerable ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9627 (The Run Log plugin for WordPress is vulnerable to Cross-Site Request F ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9623 (The Admin in English with Switch plugin for WordPress is vulnerable to ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9620 (The Seo Monster plugin for WordPress is vulnerable to Cross-Site Reque ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9617 (The Publish approval plugin for WordPress is vulnerable to Cross-Site ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9451 (The Smartcat Translator for WPML plugin for WordPress is vulnerable to ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9128 (The eID Easy plugin for WordPress is vulnerable to Stored Cross-Site S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9123 (The CBX Map for Google Map & OpenStreetMap plugin for WordPress is vul ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9073 (The All in one Minifier plugin for WordPress is vulnerable to SQL Inje ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9059 (The Altiris Core Agent Updater package (AeXNSC.exe) is prone to an ele ...)
- TODO: check
+ NOT-FOR-US: Symantec
CVE-2025-9034 (The Wp Edit Password Protected WordPress plugin before 1.3.5 does not ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-8721 (The Workable Api plugin for WordPress is vulnerable to Stored Cross-Si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-8692 (The Coupon API plugin for WordPress is vulnerable to SQL Injection via ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-8691 (The WP Scriptcase plugin for WordPress is vulnerable to Stored Cross-S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-8689 (The Elements Plus! plugin for WordPress is vulnerable to Stored Cross- ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-8686 (The WP Easy FAQs plugin for WordPress is vulnerable to Stored Cross-Si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-8570 (The BeyondCart Connector plugin for WordPress is vulnerable to Privile ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-8492 (The Salon Booking System, Appointment Scheduling for Salons, Spas & Sm ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-8481 (The Blog Designer For Elementor \u2013 Post Slider, Post Carousel, Pos ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-8479 (The Zoho Flow plugin for WordPress is vulnerable to Cross-Site Request ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-8445 (The Countdown Timer for Elementor plugin for WordPress is vulnerable t ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-8425 (The My WP Translate plugin for WordPress is vulnerable to unauthorized ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-8423 (The My WP Translate plugin for WordPress is vulnerable to unauthorized ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-8422 (The Propovoice: All-in-One Client Management System plugin for WordPre ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-8417 (The Catalog Importer, Scraper & Crawler plugin for WordPress is vulner ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-8398 (The azurecurve BBCode plugin for WordPress is vulnerable to Stored Cro ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-8392 (The Mitfahrgelegenheit plugin for WordPress is vulnerable to Stored Cr ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-8318 (The Jobify plugin for WordPress is vulnerable to Stored Cross-Site Scr ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-8316 (The Certifica WP plugin for WordPress is vulnerable to Stored Cross-Si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-8215 (The Responsive Addons for Elementor plugin for WordPress is vulnerable ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-6088 (In version 0.7.8 of danny-avila/librechat, improper authorization cont ...)
TODO: check
CVE-2025-5801 (The Digital Events Calendar plugin for WordPress is vulnerable to Stor ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-59052 (Angular is a development platform for building mobile and desktop web ...)
TODO: check
CVE-2025-10247 (A security vulnerability has been detected in JEPaaS 7.2.8. This vulne ...)
@@ -115,7 +115,7 @@ CVE-2025-10218 (A flaw has been found in lostvip-com ruoyi-go 2.1. This affects
CVE-2025-10216 (A vulnerability was detected in GrandNode up to 2.3.0. The impacted el ...)
TODO: check
CVE-2025-0763 (The Ultimate Classified Listings plugin for WordPress is vulnerable to ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9997 (CWE-78: Improper Neutralization of Special Elements used in an OS Comm ...)
NOT-FOR-US: Schneider Electric
CVE-2025-9996 (CWE-78: Improper Neutralization of Special Elements used in an OS Comm ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6bd307798c29dbb0619e2c663d95ffa7d5c67f0c
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6bd307798c29dbb0619e2c663d95ffa7d5c67f0c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250911/f8c05571/attachment.htm>
More information about the debian-security-tracker-commits
mailing list