[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat Apr 4 20:26:37 BST 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2d8a42b1 by Salvatore Bonaccorso at 2026-04-04T21:24:15+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -35,15 +35,15 @@ CVE-2025-14938 (The Listeo Core plugin for WordPress is vulnerable to unauthenti
 CVE-2025-13368 (The Xpro Addons \u2014 140+ Widgets for Elementor plugin for WordPress ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2018-25255 (10-Strike LANState 8.8 contains a local buffer overflow vulnerability  ...)
-	TODO: check
+	NOT-FOR-US: 10-Strike LANState
 CVE-2018-25254 (NICO-FTP 3.0.1.19 contains a structured exception handler buffer overf ...)
-	TODO: check
+	NOT-FOR-US: NICO-FTP
 CVE-2018-25253 (Termite 3.4 contains a buffer overflow vulnerability in the User inter ...)
-	TODO: check
+	NOT-FOR-US: Termite
 CVE-2018-25252 (FTP Voyager 16.2.0 contains a denial of service vulnerability that all ...)
-	TODO: check
+	NOT-FOR-US: FTP Voyager
 CVE-2018-25251 (Snes9K 0.0.9z contains a buffer overflow vulnerability in the Netplay  ...)
-	TODO: check
+	NOT-FOR-US: Snes9K
 CVE-2018-25250 (MyBB Last User's Threads in Profile Plugin 1.2 contains a persistent c ...)
 	NOT-FOR-US: MyBB
 CVE-2018-25249 (MyBB My Arcade Plugin 1.3 contains a persistent cross-site scripting v ...)
@@ -53,43 +53,43 @@ CVE-2018-25248 (MyBB Downloads Plugin 2.0.3 contains a persistent cross-site scr
 CVE-2018-25247 (MyBB Like Plugin 3.0.0 contains a cross-site scripting vulnerability t ...)
 	NOT-FOR-US: MyBB
 CVE-2018-25245 (7 Tik 1.0.1.0 contains a denial of service vulnerability that allows a ...)
-	TODO: check
+	NOT-FOR-US: 7 Tik
 CVE-2018-25244 (Eco Search 1.0.2.0 contains a denial of service vulnerability that all ...)
-	TODO: check
+	NOT-FOR-US: Eco Search
 CVE-2018-25243 (FastTube 1.0.1.0 contains a denial of service vulnerability that allow ...)
-	TODO: check
+	NOT-FOR-US: FastTube
 CVE-2018-25242 (One Search 1.1.0.0 contains a denial of service vulnerability that all ...)
-	TODO: check
+	NOT-FOR-US: One Search
 CVE-2018-25241 (VPN Browser+ 1.1.0.0 contains a denial of service vulnerability that a ...)
-	TODO: check
+	NOT-FOR-US: VPN Browser+
 CVE-2018-25240 (Watchr 1.1.0.0 contains a denial of service vulnerability that allows  ...)
-	TODO: check
+	NOT-FOR-US: Watchr
 CVE-2018-25239 (Smart VPN 1.1.3.0 contains a denial of service vulnerability that allo ...)
-	TODO: check
+	NOT-FOR-US: Smart VPN
 CVE-2018-25238 (VSCO 1.1.1.0 contains a denial of service vulnerability that allows lo ...)
-	TODO: check
+	NOT-FOR-US: VSCO
 CVE-2016-20061 (sheed AntiVirus 2.3 contains an unquoted service path vulnerability in ...)
-	TODO: check
+	NOT-FOR-US: sheed AntiVirus
 CVE-2016-20060 (Hotspot Shield 6.0.3 contains an unquoted service path vulnerability i ...)
-	TODO: check
+	NOT-FOR-US: Hotspot Shield
 CVE-2016-20059 (IObit Malware Fighter 4.3.1 contains an unquoted service path vulnerab ...)
-	TODO: check
+	NOT-FOR-US: IObit Malware Fighter
 CVE-2016-20058 (Netgate AMITI Antivirus build 23.0.305 contains an unquoted service pa ...)
-	TODO: check
+	NOT-FOR-US: Netgate AMITI Antivirus
 CVE-2016-20057 (NETGATE Registry Cleaner build 16.0.205 contains an unquoted service p ...)
-	TODO: check
+	NOT-FOR-US: NETGATE Registry Cleaner
 CVE-2016-20056 (Spy Emergency build 23.0.205 contains an unquoted service path vulnera ...)
-	TODO: check
+	NOT-FOR-US: Spy Emergency
 CVE-2016-20055 (IObit Advanced SystemCare 10.0.2 contains an unquoted service path vul ...)
-	TODO: check
+	NOT-FOR-US: IObit Advanced SystemCare
 CVE-2016-20053 (Redaxo CMS 5.2 contains a cross-site request forgery vulnerability tha ...)
-	TODO: check
+	NOT-FOR-US: Redaxo CMS
 CVE-2016-20052 (Snews CMS 1.7 contains an unrestricted file upload vulnerability that  ...)
-	TODO: check
+	NOT-FOR-US: Snews CMS
 CVE-2016-20051 (Snews CMS 1.7 contains a cross-site request forgery vulnerability that ...)
-	TODO: check
+	NOT-FOR-US: Snews CMS
 CVE-2016-20050 (NetSchedScan 1.0 contains a buffer overflow vulnerability in the scan  ...)
-	TODO: check
+	NOT-FOR-US: NetSchedScan
 CVE-2026-5485 (OS command injection in the browser-based authentication component in  ...)
 	NOT-FOR-US: Amazon
 CVE-2026-5484 (A weakness has been identified in BookStackApp BookStack up to 26.03.  ...)
@@ -14831,7 +14831,7 @@ CVE-2018-25196 (ServerZilla 1.0 contains an SQL injection vulnerability that all
 CVE-2018-25194 (Nominas 0.27 contains an SQL injection vulnerability that allows unaut ...)
 	NOT-FOR-US: Nominas
 CVE-2018-25193 (Mongoose Web Server 6.9 contains a denial of service vulnerability tha ...)
-	TODO: check
+	NOT-FOR-US: Mongoose
 CVE-2018-25192 (GPS Tracking System 2.12 contains an SQL injection vulnerability that  ...)
 	NOT-FOR-US: GPS Tracking System
 CVE-2018-25191 (Facturation System 1.0 contains an SQL injection vulnerability that al ...)
@@ -55499,7 +55499,7 @@ CVE-2023-53735 (WEBIGniter 28.7.23 contains a cross-site scripting vulnerability
 CVE-2023-53734 (dawa-pharma-1.0 allows unauthenticated attackers to execute SQL querie ...)
 	NOT-FOR-US: dawa-pharma-1.0
 CVE-2016-20023 (In CKSource CKFinder before 2.5.0.1 for ASP.NET, authenticated users c ...)
-	TODO: check
+	NOT-FOR-US: CKSource CKFinder
 CVE-2025-14025 (A flaw was found in Ansible Automation Platform (AAP). Read-only scope ...)
 	NOT-FOR-US: Ansible Automation Platform
 CVE-2025-9127 (A vulnerability exists in PX Enterprise whereby sensitive information  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2d8a42b1713732662f4872cfdf92d9d125794ae8

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2d8a42b1713732662f4872cfdf92d9d125794ae8
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260404/340006f7/attachment.htm>

More information about the debian-security-tracker-commits mailing list