[Git][security-tracker-team/security-tracker][master] Process some NFUs

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
0ea74e6e by Salvatore Bonaccorso at 2026-01-31T09:49:31+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -7,7 +7,7 @@ CVE-2026-25141 (Orval generates type-safe JS clients (TypeScript) from any valid
 CVE-2026-25130 (Cybersecurity AI (CAI) is a framework for AI Security. In versions up  ...)
 	NOT-FOR-US: Cybersecurity AI (CAI)
 CVE-2026-25129 (PsySH is a runtime developer console, interactive debugger, and REPL f ...)
-	TODO: check
+	NOT-FOR-US: PsySH
 CVE-2026-1723 (Improper Neutralization of Special Elements used in an OS Command ('OS ...)
 	NOT-FOR-US: Palo Alto Networks
 CVE-2026-1705 (A vulnerability was detected in D-Link DSL-6641K N8.TR069.20131126. Af ...)
@@ -59,65 +59,65 @@ CVE-2025-15525 (The Ajax Load More \u2013 Infinite Scroll, Load More, & Lazy Loa
 CVE-2025-15510 (The NEX-Forms \u2013 Ultimate Forms Plugin for WordPress is vulnerable ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2020-37057 (Online-Exam-System 2015 contains a SQL injection vulnerability in the  ...)
-	TODO: check
+	NOT-FOR-US: Online-Exam-System
 CVE-2020-37056 (Crystal Shard http-protection 0.2.0 contains an IP spoofing vulnerabil ...)
-	TODO: check
+	NOT-FOR-US: Crystal Shard http-protection
 CVE-2020-37054 (Navigate CMS 2.8.7 contains a cross-site request forgery vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Navigate CMS
 CVE-2020-37053 (Navigate CMS 2.8.7 contains an authenticated SQL injection vulnerabili ...)
-	TODO: check
+	NOT-FOR-US: Navigate CMS
 CVE-2020-37052 (AirControl 1.4.2 contains a pre-authentication remote code execution v ...)
-	TODO: check
+	NOT-FOR-US: AirControl
 CVE-2020-37051 (Online-Exam-System 2015 contains a time-based blind SQL injection vuln ...)
-	TODO: check
+	NOT-FOR-US: Online-Exam-System
 CVE-2020-37050 (Quick Player 1.3 contains a buffer overflow vulnerability that allows  ...)
-	TODO: check
+	NOT-FOR-US: Quick Player
 CVE-2020-37049 (Frigate 3.36.0.9 contains a local buffer overflow vulnerability in the ...)
-	TODO: check
+	NOT-FOR-US: Frigate
 CVE-2020-37046 (Sistem Informasi Pengumuman Kelulusan Online 1.0 contains a cross-site ...)
-	TODO: check
+	NOT-FOR-US: Sistem Informasi Pengumuman Kelulusan Online
 CVE-2020-37044 (OpenCTI 3.3.1 is vulnerable to a reflected cross-site scripting (XSS)  ...)
-	TODO: check
+	NOT-FOR-US: OpenCTI
 CVE-2020-37043 (10-Strike Bandwidth Monitor 3.9 contains a buffer overflow vulnerabili ...)
-	TODO: check
+	NOT-FOR-US: 10-Strike Bandwidth Monitor
 CVE-2020-37042 (Frigate Professional 3.36.0.9 contains a local buffer overflow vulnera ...)
-	TODO: check
+	NOT-FOR-US: Frigate
 CVE-2020-37041 (OpenCTI 3.3.1 is vulnerable to a directory traversal attack via the st ...)
-	TODO: check
+	NOT-FOR-US: OpenCTI
 CVE-2020-37040 (Code Blocks 17.12 contains a local buffer overflow vulnerability that  ...)
-	TODO: check
+	NOT-FOR-US: Code Blocks
 CVE-2020-37039 (Frigate 2.02 contains a denial of service vulnerability that allows at ...)
-	TODO: check
+	NOT-FOR-US: Frigate
 CVE-2020-37038 (Code Blocks 20.03 contains a denial of service vulnerability that allo ...)
 	TODO: check
 CVE-2020-37036 (RM Downloader 2.50.60 contains a local buffer overflow vulnerability i ...)
-	TODO: check
+	NOT-FOR-US: RM Downloader
 CVE-2020-37035 (e-Learning PHP Script 0.1.0 contains a SQL injection vulnerability in  ...)
-	TODO: check
+	NOT-FOR-US: e-Learning PHP Script
 CVE-2020-37034 (HelloWeb 2.0 contains an arbitrary file download vulnerability that al ...)
-	TODO: check
+	NOT-FOR-US: HelloWeb
 CVE-2020-37033 (Infor Storefront B2B 1.0 contains a SQL injection vulnerability that a ...)
-	TODO: check
+	NOT-FOR-US: Infor Storefront B2B
 CVE-2020-37032 (Wing FTP Server 6.3.8 contains a remote code execution vulnerability i ...)
-	TODO: check
+	NOT-FOR-US: Wing FTP Server
 CVE-2020-37031 (Simple Startup Manager 1.17 contains a local buffer overflow vulnerabi ...)
-	TODO: check
+	NOT-FOR-US: Simple Startup Manager
 CVE-2020-37029 (FTPDummy 4.80 contains a local buffer overflow vulnerability in its pr ...)
-	TODO: check
+	NOT-FOR-US: FTPDummy
 CVE-2020-37028 (Socusoft Photo to Video Converter Professional 8.07 contains a local b ...)
-	TODO: check
+	NOT-FOR-US: Socusoft Photo to Video Converter Professional
 CVE-2020-37027 (Sickbeard alpha contains a remote command injection vulnerability that ...)
-	TODO: check
+	NOT-FOR-US: Sickbeard alpha
 CVE-2020-37026 (Sickbeard alpha contains a cross-site request forgery vulnerability th ...)
-	TODO: check
+	NOT-FOR-US: Sickbeard alpha
 CVE-2020-37025 (Port Forwarding Wizard 4.8.0 contains a buffer overflow vulnerability  ...)
-	TODO: check
+	NOT-FOR-US: Port Forwarding Wizard
 CVE-2020-37024 (Nidesoft DVD Ripper 5.2.18 contains a local buffer overflow vulnerabil ...)
-	TODO: check
+	NOT-FOR-US: Nidesoft DVD Ripper
 CVE-2020-37023 (Koken CMS 0.22.24 contains a file upload vulnerability that allows aut ...)
-	TODO: check
+	NOT-FOR-US: Koken CMS
 CVE-2019-25232 (NetPCLinker 1.0.0.0 contains a buffer overflow vulnerability in the Cl ...)
-	TODO: check
+	NOT-FOR-US: NetPCLinker
 CVE-2026-25153 (Backstage is an open framework for building developer portals, and @ba ...)
 	NOT-FOR-US: backstage/plugin-techdocs-node
 CVE-2026-25152 (Backstage is an open framework for building developer portals, and @ba ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0ea74e6ee01d77667b031ff117b081ab413750a3

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0ea74e6ee01d77667b031ff117b081ab413750a3
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260131/5932b05f/attachment.htm>