[Git][security-tracker-team/security-tracker][master] automatic update

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2f50341f by security tracker role at 2026-01-12T08:13:07+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,39 @@
+CVE-2026-0855 (Certain IP Camera models developed by Merit LILIN has a OS Command Inj ...)
+	TODO: check
+CVE-2026-0854 (Certain DVR/NVR models developed by Merit LILIN has a OS Command Injec ...)
+	TODO: check
+CVE-2026-0853 (Certain NVR models developed by A-Plus Video Technologies has a Sensit ...)
+	TODO: check
+CVE-2026-0852 (A security flaw has been discovered in code-projects Online Music Site ...)
+	TODO: check
+CVE-2026-0851 (A vulnerability was identified in code-projects Online Music Site 1.0. ...)
+	TODO: check
+CVE-2026-0850 (A vulnerability was determined in code-projects Intern Membership Mana ...)
+	TODO: check
+CVE-2025-69276 (Deserialization of Untrusted Data vulnerability in Broadcom DX NetOps  ...)
+	TODO: check
+CVE-2025-69275 (Dependency on Vulnerable Third-Party Component vulnerability in Broadc ...)
+	TODO: check
+CVE-2025-69274 (Authorization Bypass Through User-Controlled Key vulnerability in Broa ...)
+	TODO: check
+CVE-2025-69273 (Improper Authentication vulnerability in Broadcom DX NetOps Spectrum o ...)
+	TODO: check
+CVE-2025-69272 (Cleartext Transmission of Sensitive Information vulnerability in Broad ...)
+	TODO: check
+CVE-2025-69271 (Insufficiently Protected Credentials vulnerability in Broadcom DX NetO ...)
+	TODO: check
+CVE-2025-69270 (Information Exposure Through Query Strings in GET Request vulnerabilit ...)
+	TODO: check
+CVE-2025-69269 (Improper Neutralization of Special Elements used in an OS Command ('OS ...)
+	TODO: check
+CVE-2025-69268 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
+	TODO: check
+CVE-2025-69267 (Improper Limitation of a Pathname to a Restricted Directory (Path Trav ...)
+	TODO: check
+CVE-2025-52694 (Successful exploitation of the SQL injection vulnerability could allow ...)
+	TODO: check
+CVE-2025-14579 (The Quiz Maker WordPress plugin before 6.7.0.89 does not sanitise and  ...)
+	TODO: check
 CVE-2025-14525
 	NOT-FOR-US: KubeVirt
 CVE-2026-0843 (A vulnerability has been found in jiujiujia/victor123/wxw850227 jjjfoo ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2f50341f357240538bbe9eeb9ff7652637b0b70b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2f50341f357240538bbe9eeb9ff7652637b0b70b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260112/3a6a8f2f/attachment.htm>