[Git][security-tracker-team/security-tracker][master] automatic update

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
4bd586cb by security tracker role at 2026-03-29T07:12:58+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,37 @@
+CVE-2026-5035 (A vulnerability has been found in code-projects Accounting System 1.0. ...)
+	TODO: check
+CVE-2026-5034 (A flaw has been found in code-projects Accounting System 1.0. Affected ...)
+	TODO: check
+CVE-2026-5033 (A vulnerability was detected in code-projects Accounting System 1.0. A ...)
+	TODO: check
+CVE-2026-5031 (A vulnerability was found in BichitroGan ISP Billing Software 2025.3.2 ...)
+	TODO: check
+CVE-2026-5030 (A vulnerability has been found in Totolink NR1800X 9.1.0u.6279_B202109 ...)
+	TODO: check
+CVE-2026-5024 (A vulnerability was found in D-Link DIR-513 1.10. This issue affects t ...)
+	TODO: check
+CVE-2026-5023 (A vulnerability has been found in DeDeveloper23 codebase-mcp up to 3ec ...)
+	TODO: check
+CVE-2026-5021 (A flaw has been found in Tenda F453 1.0.0.3. This affects the function ...)
+	TODO: check
+CVE-2026-5020 (A vulnerability was detected in Totolink A3600R 4.1.2cu.5182_B20201102 ...)
+	TODO: check
+CVE-2026-5019 (A security vulnerability has been detected in code-projects Simple Foo ...)
+	TODO: check
+CVE-2026-5018 (A weakness has been identified in code-projects Simple Food Order Syst ...)
+	TODO: check
+CVE-2026-5017 (A security flaw has been discovered in code-projects Simple Food Order ...)
+	TODO: check
+CVE-2026-5016 (A vulnerability was identified in elecV2 elecV2P up to 3.8.3. This aff ...)
+	TODO: check
+CVE-2026-5015 (A vulnerability was determined in elecV2 elecV2P up to 3.8.3. The impa ...)
+	TODO: check
+CVE-2026-5014 (A vulnerability was found in elecV2 elecV2P up to 3.8.3. The affected  ...)
+	TODO: check
+CVE-2026-4851 (GRID::Machine versions through 0.127 for Perl allows arbitrary code ex ...)
+	TODO: check
+CVE-2026-2602 (The Twentig plugin for WordPress is vulnerable to Stored Cross-Site Sc ...)
+	TODO: check
 CVE-2026-5013 (A vulnerability has been found in elecV2 elecV2P up to 3.8.3. Impacted ...)
 	NOT-FOR-US: elecV2 elecV2P
 CVE-2026-5012 (A flaw has been found in elecV2 elecV2P up to 3.8.3. This issue affect ...)
@@ -926940,6 +926974,7 @@ CVE-2006-10002 (XML::Parser versions through 2.45 for Perl could overflow the pr
 	NOTE: Additional improvement: https://github.com/cpan-authors/XML-Parser/commit/5361c2b7f48599718cdecbe50c5fdd88b28ffd79 (2.48)
 	NOTE: Issue was originally fixed in 2.34-4.2 but was lost with the 2.40-1 rebases.
 CVE-2006-10003 (XML::Parser versions through 2.47 for Perl has an off-by-one heap buff ...)
+	{DSA-6182-1}
 	- libxml-parser-perl 2.47-2 (bug #378412; medium)
 	NOTE: https://lists.security.metacpan.org/cve-announce/msg/38106362/
 	NOTE: https://rt.cpan.org/Ticket/Display.html?id=19860



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4bd586cb5d718b835d41497eeb93f887b500dc7f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4bd586cb5d718b835d41497eeb93f887b500dc7f
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260329/a721dc58/attachment-0001.htm>