[Git][security-tracker-team/security-tracker][master] Add CVE-2026-57527/zaproxy

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Jun 26 20:33:54 BST 2026



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
0e71beb3 by Salvatore Bonaccorso at 2026-06-26T21:33:34+02:00
Add CVE-2026-57527/zaproxy

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -143,7 +143,7 @@ CVE-2026-57618 (Contributor Cross Site Scripting (XSS) in Neve PRO <= 3.1.2 vers
 CVE-2026-57617 (Contributor Cross Site Scripting (XSS) in SeedProd Pro < 6.19.5 versio ...)
 	NOT-FOR-US: WordPress plugin or theme
 CVE-2026-57527 (Zed Attack Proxy (ZAP) ViewState add-on before version 4 contains an i ...)
-	TODO: check
+	- zaproxy <itp> (bug #897142)
 CVE-2026-57518 (Pagekit CMS 1.0.18 contains a privilege escalation vulnerability that  ...)
 	NOT-FOR-US: Pagekit CMS
 CVE-2026-57473 (A vulnerability exists in the netclient and factory services of Reolin ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0e71beb3227f5e4a0061d8a0c4c2f1ae72b5abb8

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0e71beb3227f5e4a0061d8a0c4c2f1ae72b5abb8
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260626/191c85fc/attachment.htm>


More information about the debian-security-tracker-commits mailing list