[Git][security-tracker-team/security-tracker][master] automatic update

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a0443d50 by security tracker role at 2026-01-10T20:21:19+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,33 @@
+CVE-2026-0831 (The Templately plugin for WordPress is vulnerable to Arbitrary File Wr ...)
+	TODO: check
+CVE-2026-0824 (A security flaw has been discovered in questdb ui up to 1.11.9. Impact ...)
+	TODO: check
+CVE-2026-0822 (A vulnerability was identified in quickjs-ng quickjs up to 0.11.0. Thi ...)
+	TODO: check
+CVE-2026-0821 (A vulnerability was determined in quickjs-ng quickjs up to 0.11.0. Thi ...)
+	TODO: check
+CVE-2025-62235 (Authentication Bypass by Spoofing vulnerability in Apache NimBLE.  Rec ...)
+	TODO: check
+CVE-2025-53477 (NULL Pointer Dereference vulnerability in Apache Nimble.  Missing vali ...)
+	TODO: check
+CVE-2025-53470 (Out-of-bounds Read vulnerability in Apache  NimBLE HCI H4 driver. Spec ...)
+	TODO: check
+CVE-2025-52435 (J2EE Misconfiguration: Data Transmission Without Encryption vulnerabil ...)
+	TODO: check
+CVE-2025-15504 (A security flaw has been discovered in lief-project LIEF up to 0.17.1. ...)
+	TODO: check
+CVE-2025-15503 (A security flaw has been discovered in Sangfor Operation and Maintenan ...)
+	TODO: check
+CVE-2025-14976 (The User Registration & Membership \u2013 Custom Registration Form Bui ...)
+	TODO: check
+CVE-2025-14555 (The Countdown Timer \u2013 Widget Countdown plugin for WordPress is vu ...)
+	TODO: check
+CVE-2025-14506 (The ConvertForce Popup Builder plugin for WordPress is vulnerable to S ...)
+	TODO: check
+CVE-2025-13393 (The Featured Image from URL (FIFU) plugin for WordPress is vulnerable  ...)
+	TODO: check
+CVE-2025-12379 (The Shortcodes and extra features for Phlox theme plugin for WordPress ...)
+	TODO: check
 CVE-2026-22777 (ComfyUI-Manager is an extension designed to enhance the usability of C ...)
 	NOT-FOR-US: ComfyUI-Manager
 CVE-2026-22773 (vLLM is an inference and serving engine for large language models (LLM ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a0443d502a9a1d4561e1f4578dd5aafdb6ec7701

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a0443d502a9a1d4561e1f4578dd5aafdb6ec7701
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260110/24a1bafa/attachment-0001.htm>