[Git][security-tracker-team/security-tracker][master] automatic update

Mon Jan 5 08:16:05 GMT 2026


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3b55426b by security tracker role at 2026-01-05T08:13:05+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,55 @@
+CVE-2026-0580 (A vulnerability was found in SourceCodester API Key Manager App 1.0. A ...)
+	TODO: check
+CVE-2025-9543 (The FlexTable  WordPress plugin before 3.19.2 does not sanitise and es ...)
+	TODO: check
+CVE-2025-5591 (Kentico Xperience 13 is vulnerable to a stored cross-site scripting at ...)
+	TODO: check
+CVE-2025-15462 (A vulnerability has been found in UTT \u8fdb\u53d6 520W 1.7.7-180627.  ...)
+	TODO: check
+CVE-2025-15461 (A flaw has been found in UTT \u8fdb\u53d6 520W 1.7.7-180627. This vuln ...)
+	TODO: check
+CVE-2025-15460 (A vulnerability was detected in UTT \u8fdb\u53d6 520W 1.7.7-180627. Th ...)
+	TODO: check
+CVE-2025-15459 (A security vulnerability has been detected in UTT \u8fdb\u53d6 520W 1. ...)
+	TODO: check
+CVE-2025-15458 (A vulnerability was determined in bg5sbk MiniCMS up to 1.8. This affec ...)
+	TODO: check
+CVE-2025-15457 (A vulnerability was found in bg5sbk MiniCMS up to 1.8. The impacted el ...)
+	TODO: check
+CVE-2025-15456 (A vulnerability has been found in bg5sbk MiniCMS up to 1.8. The affect ...)
+	TODO: check
+CVE-2025-15455 (A flaw has been found in bg5sbk MiniCMS up to 1.8. Impacted is the fun ...)
+	TODO: check
+CVE-2025-15454 (A vulnerability was detected in zhanglun lettura up to 0.1.22. This is ...)
+	TODO: check
+CVE-2025-15453 (A security vulnerability has been detected in milvus up to 2.6.7. This ...)
+	TODO: check
+CVE-2025-15452 (A weakness has been identified in xnx3 wangmarket up to 4.9. This affe ...)
+	TODO: check
+CVE-2025-15451 (A security flaw has been discovered in xnx3 wangmarket up to 4.9. Affe ...)
+	TODO: check
+CVE-2025-15450 (A vulnerability was identified in sfturing hosp_order up to 627f426331 ...)
+	TODO: check
+CVE-2025-15449 (A vulnerability was determined in cld378632668 JavaMall up to 994f1e2b ...)
+	TODO: check
+CVE-2025-15448 (A vulnerability was found in cld378632668 JavaMall up to 994f1e2b01937 ...)
+	TODO: check
+CVE-2025-15447 (A vulnerability has been found in Seeyon Zhiyuan OA Web Application Sy ...)
+	TODO: check
+CVE-2025-15446 (A flaw has been found in Seeyon Zhiyuan OA Web Application System up t ...)
+	TODO: check
+CVE-2025-15238 (QOCA aim AI Medical Cloud Platform developed by Quanta Computer has a  ...)
+	TODO: check
+CVE-2025-15237 (QOCA aim AI Medical Cloud Platform developed by Quanta Computer has a  ...)
+	TODO: check
+CVE-2025-15236 (QOCA aim AI Medical Cloud Platform developed by Quanta Computer has a  ...)
+	TODO: check
+CVE-2025-15235 (QOCA aim AI Medical Cloud Platform developed by Quanta Computer has a  ...)
+	TODO: check
+CVE-2025-15022 (Action captions in Vaadin accept HTML by default but were not sanitize ...)
+	TODO: check
+CVE-2025-14124 (The Team  WordPress plugin before 5.0.11 does not properly sanitize an ...)
+	TODO: check
 CVE-2026-0579 (A vulnerability was found in code-projects Online Product Reservation  ...)
 	NOT-FOR-US: code-projects
 CVE-2026-0578 (A vulnerability has been found in code-projects Online Product Reserva ...)
@@ -44515,6 +44567,7 @@ CVE-2025-10200 (Use after free in Serviceworker in Google Chrome on Desktop prio
 	- chromium 140.0.7339.127-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2025-9086 (1. A cookie is set using the `secure` keyword for `https://target` 2.  ...)
+	{DLA-4432-1}
 	- curl 8.16.0~rc2-1
 	[trixie] - curl 8.14.1-2+deb13u1
 	[bookworm] - curl <no-dsa> (Minor issue)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3b55426b8ad44d403dd8a077f37760d90258f15a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3b55426b8ad44d403dd8a077f37760d90258f15a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260105/acb8278f/attachment.htm>
