[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Apr 27 08:13:07 BST 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5d2bf237 by security tracker role at 2026-04-27T07:13:00+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,95 @@
+CVE-2026-7106 (The Highland Software Custom Role Manager plugin for WordPress is vuln ...)
+	TODO: check
+CVE-2026-7094 (A vulnerability was determined in ShadowCloneLabs GlutamateMCPServers  ...)
+	TODO: check
+CVE-2026-7093 (A vulnerability was found in code-projects Invoice System in Laravel 1 ...)
+	TODO: check
+CVE-2026-7092 (A vulnerability has been found in code-projects Invoice System in Lara ...)
+	TODO: check
+CVE-2026-7091 (A flaw has been found in code-projects Invoice System in Laravel 1.0.  ...)
+	TODO: check
+CVE-2026-7090 (A vulnerability was detected in code-projects Chat System 1.0. This af ...)
+	TODO: check
+CVE-2026-7089 (A security vulnerability has been detected in code-projects Home Servi ...)
+	TODO: check
+CVE-2026-7088 (A weakness has been identified in SourceCodester Pharmacy Sales and In ...)
+	TODO: check
+CVE-2026-7087 (A security flaw has been discovered in SourceCodester Pharmacy Sales a ...)
+	TODO: check
+CVE-2026-7086 (A vulnerability was identified in HBAI-Ltd Toonflow-app up to 1.1.1. T ...)
+	TODO: check
+CVE-2026-7085 (A vulnerability was determined in HBAI-Ltd Toonflow-app up to 1.1.1. T ...)
+	TODO: check
+CVE-2026-7084 (A vulnerability was found in HBAI-Ltd Toonflow-app up to 1.1.1. This a ...)
+	TODO: check
+CVE-2026-7083 (A vulnerability has been found in likeadmin-likeshop likeadmin_php up  ...)
+	TODO: check
+CVE-2026-7082 (A flaw has been found in Tenda F456 1.0.0.5. Affected by this vulnerab ...)
+	TODO: check
+CVE-2026-7081 (A vulnerability was detected in Tenda F456 1.0.0.5. Affected is the fu ...)
+	TODO: check
+CVE-2026-7080 (A security vulnerability has been detected in Tenda F456 1.0.0.5. This ...)
+	TODO: check
+CVE-2026-7079 (A weakness has been identified in Tenda F456 1.0.0.5. This affects the ...)
+	TODO: check
+CVE-2026-7078 (A security flaw has been discovered in Tenda F456 1.0.0.5. The impacte ...)
+	TODO: check
+CVE-2026-7077 (A vulnerability was identified in itsourcecode Courier Management Syst ...)
+	TODO: check
+CVE-2026-7076 (A vulnerability was determined in itsourcecode Courier Management Syst ...)
+	TODO: check
+CVE-2026-7075 (A vulnerability was found in itsourcecode Construction Management Syst ...)
+	TODO: check
+CVE-2026-7074 (A vulnerability has been found in itsourcecode Construction Management ...)
+	TODO: check
+CVE-2026-7073 (A flaw has been found in itsourcecode Construction Management System 1 ...)
+	TODO: check
+CVE-2026-7072 (A vulnerability was detected in CodePanda Source canteen_management_sy ...)
+	TODO: check
+CVE-2026-7071 (A security vulnerability has been detected in CodeAstro Online Job Por ...)
+	TODO: check
+CVE-2026-7070 (A weakness has been identified in code-projects Inventory Management S ...)
+	TODO: check
+CVE-2026-7069 (A security flaw has been discovered in D-Link DIR-825 up to 3.00b32. T ...)
+	TODO: check
+CVE-2026-7068 (A vulnerability was identified in D-Link DIR-825 3.00b32. This affects ...)
+	TODO: check
+CVE-2026-7067 (A vulnerability was determined in D-Link DIR-822 A_101. The impacted e ...)
+	TODO: check
+CVE-2026-7066 (A vulnerability was found in choieastsea simple-openstack-mcp up to 76 ...)
+	TODO: check
+CVE-2026-7065 (A vulnerability has been found in BidingCC BuildingAI up to 26.0.1. Im ...)
+	TODO: check
+CVE-2026-7064 (A flaw has been found in AgentDeskAI browser-tools-mcp up to 1.2.0. Th ...)
+	TODO: check
+CVE-2026-7063 (A vulnerability was detected in code-projects Employee Management Syst ...)
+	TODO: check
+CVE-2026-7062 (A security vulnerability has been detected in Intina47 context-sync up ...)
+	TODO: check
+CVE-2026-7061 (A weakness has been identified in Toowiredd chatgpt-mcp-server up to 0 ...)
+	TODO: check
+CVE-2026-7060 (A vulnerability was determined in liyupi yu-picture up to a053632c4134 ...)
+	TODO: check
+CVE-2026-7059 (A vulnerability was found in 666ghj MiroFish up to 0.1.2. This affects ...)
+	TODO: check
+CVE-2026-7058 (A vulnerability has been found in 666ghj MiroFish up to 0.1.2. The imp ...)
+	TODO: check
+CVE-2026-42371 (uriparser before 1.0.1 has numeric truncation in text range comparison ...)
+	TODO: check
+CVE-2026-42363 (An insufficient encryption vulnerability exists in the Device Authenti ...)
+	TODO: check
+CVE-2026-3868 (An improper handling of the length parameter inconsistency vulnerabili ...)
+	TODO: check
+CVE-2026-3867 (An improper ownership management vulnerability has been identified in  ...)
+	TODO: check
+CVE-2026-3008 (Successful exploitation of the string injection vulnerability could al ...)
+	TODO: check
+CVE-2026-3006 (Successful exploitation of the race condition vulnerability could allo ...)
+	TODO: check
+CVE-2026-33566 (There is a cypher injection issue in LogonTracer prior to v2.0.0. If s ...)
+	TODO: check
+CVE-2026-33277 (An OS command Injection issue exists in LogonTracer prior to v2.0.0. A ...)
+	TODO: check
 CVE-2026-7057 (A flaw has been found in Tenda F456 1.0.0.5. The affected element is a ...)
 	NOT-FOR-US: Tenda
 CVE-2026-7056 (A vulnerability was detected in Tenda F456 1.0.0.5. Impacted is the fu ...)
@@ -4966,7 +5058,7 @@ CVE-2026-41082 (In OCaml opam before 2.5.1, a .install field containing a destin
 	{DSA-6216-1 DLA-4541-1}
 	- opam 2.5.1-1
 	NOTE: https://github.com/ocaml/security-advisories/blob/main/advisories/2026/OSEC-2026-03.md
-CVE-2026-41080 (libexpat before 2.7.6 uses insufficient entropy, and thus hash floodin ...)
+CVE-2026-41080 (libexpat before 2.8.0 uses insufficient entropy, and thus hash floodin ...)
 	- expat 2.8.0-1 (bug #1134732)
 	[trixie] - expat <no-dsa> (Minor issue)
 	[bookworm] - expat <no-dsa> (Minor issue)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5d2bf237673c75d37b022429664c3d203e5a8acb

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5d2bf237673c75d37b022429664c3d203e5a8acb
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260427/d3479ce8/attachment.htm>

More information about the debian-security-tracker-commits mailing list