[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Jun 18 08:14:34 BST 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1e7bb658 by security tracker role at 2026-06-18T07:14:28+00:00
automatic NOT-FOR-US entries update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,7 +1,7 @@
 CVE-2026-9860 (The Offload, AI & Optimize with Cloudflare Images plugin for WordPress ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2026-9199 (The Equalize Digital Accessibility Checker \u2013 WCAG, ADA, EAA and S ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2026-8050 (In SignalRGB versions prior to 1.3.7.0, seven of the thirteen IOCTL ha ...)
 	TODO: check
 CVE-2026-8049 (In SignalRGB versions prior to 1.3.7.0, the \\.\SignalIo device object ...)
@@ -99,45 +99,45 @@ CVE-2026-12566 (The docker_pull module uses the realm parameter from a Docker re
 CVE-2026-12565 (The unarchive internal module's archive extraction commands perform no ...)
 	TODO: check
 CVE-2026-12530 (Improper neutralization of argument delimiters in the install_packages ...)
-	TODO: check
+	NOT-FOR-US: Amazon
 CVE-2026-12529 (A security vulnerability has been detected in SourceCodester CET Autom ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester
 CVE-2026-12505 (A flaw was found in the cifs-utils package where the cifs.upcall helpe ...)
 	TODO: check
 CVE-2026-12407 (The E2Pdf \u2013 Export Pdf Tool for WordPress plugin for WordPress is ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2026-12120 (The FireBox Popups \u2013 Increase Sales and Grow Your Email List plug ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2026-12093 (The Simple Membership plugin for WordPress is vulnerable to authorizat ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2026-11784 (The Optimole \u2013 Optimize Images | Convert WebP & AVIF | CDN & Lazy ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2026-11777 (The Form Maker by 10Web \u2013 Mobile-Friendly Drag & Drop Contact For ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2026-11776 (The Form Maker by 10Web \u2013 Mobile-Friendly Drag & Drop Contact For ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2026-11407 (Pimcore CMS/DXP version 12.3.8 contains a sandbox bypass vulnerability ...)
 	TODO: check
 CVE-2026-11402 (The Services Section Block \u2013 Showcase Service Details in Grid or  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2026-11360 (The Advanced Order Export For WooCommerce plugin for WordPress is vuln ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2026-11358 (The Orbit Fox: Duplicate Page, Menu Icons, SVG Support, Cookie Notice, ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2026-11357 (The Kadence Blocks \u2014 Page Builder Toolkit for Gutenberg Editor pl ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2026-10741 (Sonatype Nexus Repository Manager before 3.93.0 contains an authorizat ...)
-	TODO: check
+	NOT-FOR-US: Sonatype
 CVE-2026-10736 (The Tutor LMS \u2013 eLearning and online course solution plugin for W ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2026-10696 (Use of an incorrectly resolved name or reference in the pinget backend ...)
-	TODO: check
+	NOT-FOR-US: Devolutions
 CVE-2026-10623 (The PressPrimer Quiz \u2013 AI Quiz Maker, Exam Builder & LMS Assessme ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2026-10029 (The Event Koi Lite \u2013 Events Calendar, Event Management, RSVP, and ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2026-10023 (The Dokan: AI Powered WooCommerce Multivendor Marketplace Solution \u2 ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2024-27928 (vantage6 is an open-source infrastructure for privacy preserving analy ...)
 	TODO: check
 CVE-2024-24769 (vantage6 is an open-source infrastructure for privacy preserving analy ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1e7bb658b2be8e6f6da8c28b85103a161bd590d2

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1e7bb658b2be8e6f6da8c28b85103a161bd590d2
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260618/051a16ef/attachment.htm>

More information about the debian-security-tracker-commits mailing list