[Git][security-tracker-team/security-tracker][master] Process some NFUs

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ee09f1ea by Salvatore Bonaccorso at 2026-01-14T14:44:56+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -299,45 +299,45 @@ CVE-2022-50901 (Wondershare Dr.Fone 11.4.9 contains an unquoted service path vul
 CVE-2022-50900 (Wondershare Dr.Fone 12.0.18 contains an unquoted service path vulnerab ...)
 	NOT-FOR-US: Wondershare
 CVE-2022-50899 (Geonetwork 3.10 through 4.2.0 contains an XML external entity vulnerab ...)
-	TODO: check
+	NOT-FOR-US: Geonetwork
 CVE-2022-50898 (NanoCMS 0.4 contains an authenticated file upload vulnerability that a ...)
-	TODO: check
+	NOT-FOR-US: NanoCMS
 CVE-2022-50897 (mPDF 7.0 contains a local file inclusion vulnerability that allows att ...)
-	TODO: check
+	NOT-FOR-US: mPDF
 CVE-2022-50896 (Testa 3.5.1 contains a reflected cross-site scripting vulnerability in ...)
-	TODO: check
+	NOT-FOR-US: Testa
 CVE-2022-50895 (Aero CMS 0.0.1 contains a SQL injection vulnerability in the author pa ...)
-	TODO: check
+	NOT-FOR-US: Aero CMS
 CVE-2022-50894 (VIAVIWEB Wallpaper Admin 1.0 contains an SQL injection vulnerability t ...)
-	TODO: check
+	NOT-FOR-US: VIAVIWEB Wallpaper Admin
 CVE-2022-50893 (VIAVIWEB Wallpaper Admin 1.0 contains an unauthenticated remote code e ...)
-	TODO: check
+	NOT-FOR-US: VIAVIWEB Wallpaper Admin
 CVE-2022-50892 (VIAVIWEB Wallpaper Admin 1.0 contains a SQL injection vulnerability th ...)
-	TODO: check
+	NOT-FOR-US: VIAVIWEB Wallpaper Admin
 CVE-2022-50891 (Owlfiles File Manager 12.0.1 contains a cross-site scripting vulnerabi ...)
-	TODO: check
+	NOT-FOR-US: Owlfiles File Manager
 CVE-2022-50890 (Owlfiles File Manager 12.0.1 contains a path traversal vulnerability i ...)
-	TODO: check
+	NOT-FOR-US: Owlfiles File Manager
 CVE-2022-50808 (CoolerMaster MasterPlus 1.8.5 contains an unquoted service path vulner ...)
-	TODO: check
+	NOT-FOR-US: CoolerMaster MasterPlus
 CVE-2022-50807 (Concrete5 CMS version 9.1.3 contains an XPath injection vulnerability  ...)
 	TODO: check
 CVE-2022-50806 (4images 1.9 contains a remote command execution vulnerability that all ...)
-	TODO: check
+	NOT-FOR-US: 4images
 CVE-2022-50805 (Senayan Library Management System 9.0.0 contains a SQL injection vulne ...)
-	TODO: check
+	NOT-FOR-US: Senayan Library Management System
 CVE-2022-50693 (Splashtop 8.71.12001.0 contains an unquoted service path vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Splashtop
 CVE-2021-47751 (CuteEditor for PHP (now referred to as Rich Text Editor) 6.6 contains  ...)
 	TODO: check
 CVE-2021-47750 (YouPHPTube <= 7.8 contains a cross-site scripting vulnerability that a ...)
-	TODO: check
+	NOT-FOR-US: YouPHPTube
 CVE-2021-47749 (YouPHPTube <= 7.8 contains a local file inclusion vulnerability that a ...)
-	TODO: check
+	NOT-FOR-US: YouPHPTube
 CVE-2020-36919 (WPForms 1.7.8 contains a cross-site scripting vulnerability in the sli ...)
-	TODO: check
+	NOT-FOR-US: WPForms
 CVE-2020-36911 (Covenant 0.1.3 - 0.5 contains a remote code execution vulnerability th ...)
-	TODO: check
+	NOT-FOR-US: Covenant
 CVE-2025-55132 [fs.futimes() Bypasses Read-Only Permission Model]
 	- nodejs 22.22.0+dfsg+~cs22.19.6-1
 	NOTE: https://nodejs.org/en/blog/vulnerability/december-2025-security-releases#fsfutimes-bypasses-read-only-permission-model-cve-2025-55132---low



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ee09f1eae065f4fcfaf6b05451d5258819f89ac8

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ee09f1eae065f4fcfaf6b05451d5258819f89ac8
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260114/6318ca47/attachment.htm>