[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update

Thu Jan 8 08:14:07 GMT 2026


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2dc9b85f by security tracker role at 2026-01-08T08:13:59+00:00
automatic NOT-FOR-US entries update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -91,13 +91,13 @@ CVE-2026-21427 (The installers for multiple products provided by PIONEER CORPORA
 CVE-2026-0707 (A flaw was found in Keycloak. The Keycloak Authorization header parser ...)
 	TODO: check
 CVE-2026-0700 (A vulnerability was determined in code-projects Intern Membership Mana ...)
-	TODO: check
+	NOT-FOR-US: code-projects
 CVE-2026-0699 (A vulnerability was found in code-projects Intern Membership Managemen ...)
-	TODO: check
+	NOT-FOR-US: code-projects
 CVE-2026-0698 (A vulnerability has been found in code-projects Intern Membership Mana ...)
-	TODO: check
+	NOT-FOR-US: code-projects
 CVE-2026-0697 (A flaw has been found in code-projects Intern Membership Management Sy ...)
-	TODO: check
+	NOT-FOR-US: code-projects
 CVE-2025-69264 (pnpm is a package manager. Versions 10.0.0 through 10.25 allow git-hos ...)
 	TODO: check
 CVE-2025-69263 (pnpm is a package manager. Versions 10.26.2 and below store HTTP tarba ...)
@@ -121,21 +121,21 @@ CVE-2025-62224 (User interface (ui) misrepresentation of critical information in
 CVE-2025-15346 (A vulnerability in the handling of verify_mode = CERT_REQUIRED in the  ...)
 	TODO: check
 CVE-2025-14275 (The Jeg Elementor Kit plugin for WordPress is vulnerable to Stored Cro ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-13679 (The Tutor LMS \u2013 eLearning and online course solution plugin for W ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2025-13151 (Stack-based buffer overflow in libtasn1 version: v4.20.0. The function ...)
 	TODO: check
 CVE-2025-12776 (The Report Builder component of the application stores user input dire ...)
 	TODO: check
 CVE-2025-12640 (The Folders \u2013 Unlimited Folders to Organize Media Library Folder, ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2023-7333 (A weakness has been identified in bluelabsio records-mover up to 1.5.4 ...)
 	TODO: check
 CVE-2019-25296 (The WP Cost Estimation plugin for WordPress is vulnerable to arbitrary ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2019-25295 (The WP Cost Estimation plugin for WordPress is vulnerable to Upload Di ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2019-25291 (INIM Electronics Smartliving SmartLAN/G/SI <=6.x contains hard-coded c ...)
 	TODO: check
 CVE-2019-25290 (Smartliving SmartLAN/G/SI <=6.x contains an unauthenticated server-sid ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2dc9b85fac1fdd0aabd8ccbbc14d5988e73ac250

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2dc9b85fac1fdd0aabd8ccbbc14d5988e73ac250
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260108/cb99c3be/attachment-0001.htm>
