[Git][security-tracker-team/security-tracker][master] Add two new znuny issues
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Mar 26 21:59:53 GMT 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
d8ced1f5 by Salvatore Bonaccorso at 2026-03-26T22:58:55+01:00
Add two new znuny issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -3248,8 +3248,12 @@ CVE-2026-1958 (Use of hard-coded credentials in Klinika XP and KlinikaXP Inserti
NOT-FOR-US: Klinika XP
CVE-2026-0898 (An arbitrary file-write vulnerability in Pega Browser Extension (PBE) ...)
NOT-FOR-US: Pega
+CVE-2025-59490
+ - znuny 6.5.19-1
+ NOTE: https://www.znuny.org/en/releases/znuny-lts-6-5-19
CVE-2025-52204 (A Cross-Site Scripting (XSS) vulnerability exists in Znuny::ITSM 6.5.x ...)
- TODO: check
+ - znuny 6.5.19-1
+ NOTE: https://www.znuny.org/en/releases/znuny-lts-6-5-19
CVE-2025-41008 (SQL injection vulnerability in Sinturno. This vulnerability allows an ...)
NOT-FOR-US: Sinturno
CVE-2025-41007 (SQL Injection in Cuantis. This vulnerability allows an attacker to ret ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d8ced1f50788145bc002c99d2863ac180ce352b3
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d8ced1f50788145bc002c99d2863ac180ce352b3
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260326/b3aae575/attachment.htm>
More information about the debian-security-tracker-commits
mailing list