[Git][security-tracker-team/security-tracker][master] Add new graylog2 issues, itp'ed

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Feb 18 21:40:03 GMT 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
4f6e5f98 by Salvatore Bonaccorso at 2026-02-18T22:39:35+01:00
Add new graylog2 issues, itp'ed

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -84,19 +84,19 @@ CVE-2026-1649 (The Community Events plugin for WordPress is vulnerable to Stored
 CVE-2026-1582 (The WP All Export plugin for WordPress is vulnerable to Sensitive Info ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2026-1441 (Reflected Cross-Site Scripting (XSS) vulnerability in the Graylog Web  ...)
-	TODO: check
+	- graylog2 <itp> (bug #652273)
 CVE-2026-1440 (Reflected Cross-Site Scripting (XSS) vulnerability in the Graylog Web  ...)
-	TODO: check
+	- graylog2 <itp> (bug #652273)
 CVE-2026-1439 (Reflected Cross-Site Scripting (XSS) vulnerability in the Graylog Web  ...)
-	TODO: check
+	- graylog2 <itp> (bug #652273)
 CVE-2026-1438 (Reflected Cross-Site Scripting (XSS) vulnerability in the Graylog Web  ...)
-	TODO: check
+	- graylog2 <itp> (bug #652273)
 CVE-2026-1437 (Reflected Cross-Site Scripting (XSS) vulnerability in the Graylog Web  ...)
-	TODO: check
+	- graylog2 <itp> (bug #652273)
 CVE-2026-1436 (Improper Access Control (IDOR) in the Graylog API, version 2.2.3, whic ...)
-	TODO: check
+	- graylog2 <itp> (bug #652273)
 CVE-2026-1435 (Not properly invalidated session vulnerability in Graylog Web Interfac ...)
-	TODO: check
+	- graylog2 <itp> (bug #652273)
 CVE-2026-1426 (The Advanced AJAX Product Filters plugin for WordPress is vulnerable t ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2026-1404 (The Ultimate Member \u2013 User Profile, Registration, Login, Member D ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4f6e5f98ccbc3282cd215fe2a91710d936ee421a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4f6e5f98ccbc3282cd215fe2a91710d936ee421a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260218/61b1946c/attachment.htm>

More information about the debian-security-tracker-commits mailing list