[Git][security-tracker-team/security-tracker][master] Process some new NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Apr 27 08:34:58 BST 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1f54b71c by Salvatore Bonaccorso at 2026-04-27T09:34:45+02:00
Process some new NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,7 +1,7 @@
 CVE-2026-7106 (The Highland Software Custom Role Manager plugin for WordPress is vuln ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2026-7094 (A vulnerability was determined in ShadowCloneLabs GlutamateMCPServers  ...)
-	TODO: check
+	NOT-FOR-US: ShadowCloneLabs GlutamateMCPServers
 CVE-2026-7093 (A vulnerability was found in code-projects Invoice System in Laravel 1 ...)
 	NOT-FOR-US: code-projects
 CVE-2026-7092 (A vulnerability has been found in code-projects Invoice System in Lara ...)
@@ -17,13 +17,13 @@ CVE-2026-7088 (A weakness has been identified in SourceCodester Pharmacy Sales a
 CVE-2026-7087 (A security flaw has been discovered in SourceCodester Pharmacy Sales a ...)
 	NOT-FOR-US: SourceCodester
 CVE-2026-7086 (A vulnerability was identified in HBAI-Ltd Toonflow-app up to 1.1.1. T ...)
-	TODO: check
+	NOT-FOR-US: HBAI-Ltd Toonflow-app
 CVE-2026-7085 (A vulnerability was determined in HBAI-Ltd Toonflow-app up to 1.1.1. T ...)
-	TODO: check
+	NOT-FOR-US: HBAI-Ltd Toonflow-app
 CVE-2026-7084 (A vulnerability was found in HBAI-Ltd Toonflow-app up to 1.1.1. This a ...)
-	TODO: check
+	NOT-FOR-US: HBAI-Ltd Toonflow-app
 CVE-2026-7083 (A vulnerability has been found in likeadmin-likeshop likeadmin_php up  ...)
-	TODO: check
+	NOT-FOR-US: likeadmin-likeshop likeadmin_php
 CVE-2026-7082 (A flaw has been found in Tenda F456 1.0.0.5. Affected by this vulnerab ...)
 	NOT-FOR-US: Tenda
 CVE-2026-7081 (A vulnerability was detected in Tenda F456 1.0.0.5. Affected is the fu ...)
@@ -45,9 +45,9 @@ CVE-2026-7074 (A vulnerability has been found in itsourcecode Construction Manag
 CVE-2026-7073 (A flaw has been found in itsourcecode Construction Management System 1 ...)
 	NOT-FOR-US: itsourcecode System
 CVE-2026-7072 (A vulnerability was detected in CodePanda Source canteen_management_sy ...)
-	TODO: check
+	NOT-FOR-US: CodePanda Source canteen_management_system
 CVE-2026-7071 (A security vulnerability has been detected in CodeAstro Online Job Por ...)
-	TODO: check
+	NOT-FOR-US: CodeAstro Online Job Portal
 CVE-2026-7070 (A weakness has been identified in code-projects Inventory Management S ...)
 	NOT-FOR-US: code-projects
 CVE-2026-7069 (A security flaw has been discovered in D-Link DIR-825 up to 3.00b32. T ...)
@@ -57,23 +57,23 @@ CVE-2026-7068 (A vulnerability was identified in D-Link DIR-825 3.00b32. This af
 CVE-2026-7067 (A vulnerability was determined in D-Link DIR-822 A_101. The impacted e ...)
 	NOT-FOR-US: D-Link
 CVE-2026-7066 (A vulnerability was found in choieastsea simple-openstack-mcp up to 76 ...)
-	TODO: check
+	NOT-FOR-US: choieastsea simple-openstack-mcp
 CVE-2026-7065 (A vulnerability has been found in BidingCC BuildingAI up to 26.0.1. Im ...)
-	TODO: check
+	NOT-FOR-US: BidingCC BuildingAI
 CVE-2026-7064 (A flaw has been found in AgentDeskAI browser-tools-mcp up to 1.2.0. Th ...)
-	TODO: check
+	NOT-FOR-US: AgentDeskAI browser-tools-mcp
 CVE-2026-7063 (A vulnerability was detected in code-projects Employee Management Syst ...)
 	NOT-FOR-US: code-projects
 CVE-2026-7062 (A security vulnerability has been detected in Intina47 context-sync up ...)
-	TODO: check
+	NOT-FOR-US: Intina47 context-sync
 CVE-2026-7061 (A weakness has been identified in Toowiredd chatgpt-mcp-server up to 0 ...)
-	TODO: check
+	NOT-FOR-US: Toowiredd chatgpt-mcp-server
 CVE-2026-7060 (A vulnerability was determined in liyupi yu-picture up to a053632c4134 ...)
-	TODO: check
+	NOT-FOR-US: liyupi yu-picture
 CVE-2026-7059 (A vulnerability was found in 666ghj MiroFish up to 0.1.2. This affects ...)
-	TODO: check
+	NOT-FOR-US: 666ghj MiroFish
 CVE-2026-7058 (A vulnerability has been found in 666ghj MiroFish up to 0.1.2. The imp ...)
-	TODO: check
+	NOT-FOR-US: 666ghj MiroFish
 CVE-2026-42371 (uriparser before 1.0.1 has numeric truncation in text range comparison ...)
 	TODO: check
 CVE-2026-42363 (An insufficient encryption vulnerability exists in the Device Authenti ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1f54b71c8ece81e88220d1549f9e86549bfc1467

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1f54b71c8ece81e88220d1549f9e86549bfc1467
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260427/b2f64407/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list