[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Feb 19 08:33:50 GMT 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
4dea28a0 by Salvatore Bonaccorso at 2026-02-19T09:33:33+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,9 +1,9 @@
CVE-2026-2733 (A flaw was identified in the Docker v2 authentication endpoint of Keyc ...)
- keycloak <itp> (bug #1088287)
CVE-2026-2731 (Path traversal and content injection in JobRunnerBackground.aspx in Dy ...)
- TODO: check
+ NOT-FOR-US: DynamicWeb
CVE-2026-2711 (A vulnerability has been found in zhutoutoutousan worldquant-miner up ...)
- TODO: check
+ NOT-FOR-US: zhutoutoutousan worldquant-miner
CVE-2026-2709 (A flaw has been found in busy up to 2.5.5. The affected element is an ...)
TODO: check
CVE-2026-2706 (A flaw has been found in code-projects Patient Record Management Syste ...)
@@ -15,11 +15,11 @@ CVE-2026-2704 (A security vulnerability has been detected in Open Babel up to 3.
CVE-2026-2703 (A weakness has been identified in xlnt-community xlnt up to 1.6.1. Imp ...)
TODO: check
CVE-2026-2702 (A security flaw has been discovered in Beetel 777VR1 up to 01.00.09. T ...)
- TODO: check
+ NOT-FOR-US: Beetel
CVE-2026-2693 (A vulnerability was determined in CoCoTeaNet CyreneAdmin up to 1.3.0. ...)
- TODO: check
+ NOT-FOR-US: CoCoTeaNet CyreneAdmin
CVE-2026-2692 (A vulnerability was found in CoCoTeaNet CyreneAdmin up to 1.3.0. This ...)
- TODO: check
+ NOT-FOR-US: CoCoTeaNet CyreneAdmin
CVE-2026-2691 (A vulnerability has been found in itsourcecode Event Management System ...)
NOT-FOR-US: itsourcecode System
CVE-2026-2690 (A flaw has been found in itsourcecode Event Management System 1.0. Aff ...)
@@ -27,29 +27,29 @@ CVE-2026-2690 (A flaw has been found in itsourcecode Event Management System 1.0
CVE-2026-2689 (A vulnerability was detected in itsourcecode Event Management System 1 ...)
NOT-FOR-US: itsourcecode System
CVE-2026-2686 (A security vulnerability has been detected in SECCN Dingcheng G10 3.1. ...)
- TODO: check
+ NOT-FOR-US: SECCN Dingcheng G10
CVE-2026-2684 (A vulnerability was determined in Tsinghua Unigroup Electronic Archive ...)
- TODO: check
+ NOT-FOR-US: Tsinghua Unigroup Electronic Archives System
CVE-2026-2683 (A vulnerability was found in Tsinghua Unigroup Electronic Archives Sys ...)
- TODO: check
+ NOT-FOR-US: Tsinghua Unigroup Electronic Archives System
CVE-2026-2682 (A vulnerability has been found in Tsinghua Unigroup Electronic Archive ...)
- TODO: check
+ NOT-FOR-US: Tsinghua Unigroup Electronic Archives System
CVE-2026-2676 (A weakness has been identified in GoogTech sms-ssm up to e8534c766fd13 ...)
- TODO: check
+ NOT-FOR-US: GoogTech sms-ssm
CVE-2026-2672 (A security flaw has been discovered in Tsinghua Unigroup Electronic Ar ...)
- TODO: check
+ NOT-FOR-US: Tsinghua Unigroup Electronic Archives System
CVE-2026-2670 (A vulnerability was identified in Advantech WISE-6610 1.2.1_20251110. ...)
NOT-FOR-US: Advantech
CVE-2026-2669 (A vulnerability was determined in Rongzhitong Visual Integrated Comman ...)
- TODO: check
+ NOT-FOR-US: Rongzhitong Visual Integrated Command and Dispatch Platform
CVE-2026-2668 (A vulnerability was found in Rongzhitong Visual Integrated Command and ...)
- TODO: check
+ NOT-FOR-US: Rongzhitong Visual Integrated Command and Dispatch Platform
CVE-2026-2667 (A vulnerability has been found in Rongzhitong Visual Integrated Comman ...)
- TODO: check
+ NOT-FOR-US: Rongzhitong Visual Integrated Command and Dispatch Platform
CVE-2026-2666 (A flaw has been found in mingSoft MCMS 6.1.1. The affected element is ...)
- TODO: check
+ NOT-FOR-US: mingSoft MCMS
CVE-2026-2665 (A vulnerability was detected in huanzi-qch base-admin up to 57a8126bb3 ...)
- TODO: check
+ NOT-FOR-US: huanzi-qch base-admin
CVE-2026-2504 (The Dealia \u2013 Request a quote plugin for WordPress is vulnerable t ...)
NOT-FOR-US: WordPress plugin
CVE-2026-2502 (The xmlrpc attacks blocker plugin for WordPress is vulnerable to Store ...)
@@ -59,39 +59,39 @@ CVE-2026-2284 (The News Element Elementor Blog Magazine plugin for WordPress is
CVE-2026-2282 (The Slidorion plugin for WordPress is vulnerable to Stored Cross-Site ...)
NOT-FOR-US: WordPress plugin
CVE-2026-27182 (Saturn Remote Mouse Server contains a command injection vulnerability ...)
- TODO: check
+ NOT-FOR-US: Saturn Remote Mouse Server
CVE-2026-27181 (MajorDoMo (aka Major Domestic Module) allows unauthenticated arbitrary ...)
- TODO: check
+ NOT-FOR-US: MajorDoMo (aka Major Domestic Module)
CVE-2026-27180 (MajorDoMo (aka Major Domestic Module) is vulnerable to unauthenticated ...)
- TODO: check
+ NOT-FOR-US: MajorDoMo (aka Major Domestic Module)
CVE-2026-27179 (MajorDoMo (aka Major Domestic Module) contains an unauthenticated SQL ...)
- TODO: check
+ NOT-FOR-US: MajorDoMo (aka Major Domestic Module)
CVE-2026-27178 (MajorDoMo (aka Major Domestic Module) contains a stored cross-site scr ...)
- TODO: check
+ NOT-FOR-US: MajorDoMo (aka Major Domestic Module)
CVE-2026-27177 (MajorDoMo (aka Major Domestic Module) contains a stored cross-site scr ...)
- TODO: check
+ NOT-FOR-US: MajorDoMo (aka Major Domestic Module)
CVE-2026-27176 (MajorDoMo (aka Major Domestic Module) contains a reflected cross-site ...)
- TODO: check
+ NOT-FOR-US: MajorDoMo (aka Major Domestic Module)
CVE-2026-27175 (MajorDoMo (aka Major Domestic Module) is vulnerable to unauthenticated ...)
- TODO: check
+ NOT-FOR-US: MajorDoMo (aka Major Domestic Module)
CVE-2026-27174 (MajorDoMo (aka Major Domestic Module) allows unauthenticated remote co ...)
- TODO: check
+ NOT-FOR-US: MajorDoMo (aka Major Domestic Module)
CVE-2026-26281 (InvoicePlane is a self-hosted open source application for managing inv ...)
- TODO: check
+ NOT-FOR-US: InvoicePlane
CVE-2026-26270 (InvoicePlane is a self-hosted open source application for managing inv ...)
- TODO: check
+ NOT-FOR-US: InvoicePlane
CVE-2026-25926 (Notepad++ is a free and open-source source code editor. An Unsafe Sear ...)
- TODO: check
+ NOT-FOR-US: Notepad++
CVE-2026-25596 (InvoicePlane is a self-hosted open source application for managing inv ...)
- TODO: check
+ NOT-FOR-US: InvoicePlane
CVE-2026-25595 (InvoicePlane is a self-hosted open source application for managing inv ...)
- TODO: check
+ NOT-FOR-US: InvoicePlane
CVE-2026-25594 (InvoicePlane is a self-hosted open source application for managing inv ...)
- TODO: check
+ NOT-FOR-US: InvoicePlane
CVE-2026-25548 (InvoicePlane is a self-hosted open source application for managing inv ...)
- TODO: check
+ NOT-FOR-US: InvoicePlane
CVE-2026-25474 (OpenClaw is a personal AI assistant. In versions 2026.1.30 and below, ...)
- TODO: check
+ NOT-FOR-US: OpenClaw
CVE-2026-25242 (Gogs is an open source self-hosted Git service. Versions 0.13.4 and be ...)
TODO: check
CVE-2026-25232 (Gogs is an open source self-hosted Git service. Versions 0.13.4 and be ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4dea28a0a81fec6f3b18a290b22355524cc98658
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4dea28a0a81fec6f3b18a290b22355524cc98658
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260219/b20989e9/attachment.htm>
More information about the debian-security-tracker-commits
mailing list