[Git][security-tracker-team/security-tracker][master] Process NFUs

Mon, 06 Dec 2021 12:34:44 -0800 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
f49d15a7 by Salvatore Bonaccorso at 2021-12-06T21:34:01+01:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2118,7 +2118,7 @@ CVE-2021-43938
 CVE-2021-43937
        RESERVED
 CVE-2021-43936 (The software allows the attacker to upload or transfer files 
of danger ...)
-       TODO: check
+       NOT-FOR-US: Distributed Data Systems
 CVE-2021-43935
        RESERVED
 CVE-2021-43934
@@ -2128,7 +2128,7 @@ CVE-2021-43933
 CVE-2021-43932
        RESERVED
 CVE-2021-43931 (The authentication algorithm of the WebHMI portal is sound, 
but the im ...)
-       TODO: check
+       NOT-FOR-US: Distributed Data Systems
 CVE-2021-43930
        RESERVED
 CVE-2021-43929
@@ -2390,7 +2390,7 @@ CVE-2021-43802
 CVE-2021-43801
        RESERVED
 CVE-2021-43800 (Wiki.js is a wiki app built on Node.js. Prior to version 
2.5.254, dire ...)
-       TODO: check
+       NOT-FOR-US: Wiki.js
 CVE-2021-43799
        RESERVED
 CVE-2021-43798
@@ -2431,7 +2431,7 @@ CVE-2021-43783 (@backstage/plugin-scaffolder-backend is 
the backend for the defa
 CVE-2021-43782
        RESERVED
 CVE-2021-43781 (Invenio-Drafts-Resources is a submission/deposit module for 
Invenio, a ...)
-       TODO: check
+       NOT-FOR-US: Invenio-Drafts-Resources
 CVE-2021-43780 (Redash is a package for data visualization and sharing. In 
versions 10 ...)
        NOT-FOR-US: Redash
 CVE-2021-43779
@@ -4050,11 +4050,11 @@ CVE-2021-43473
 CVE-2021-43472
        RESERVED
 CVE-2021-43471 (In Canon LBP223 printers, the System Manager Mode login does 
not requi ...)
-       TODO: check
+       NOT-FOR-US: Canon
 CVE-2021-43470
        RESERVED
 CVE-2021-43469 (VINGA WR-N300U 77.102.1.4853 is affected by a command 
execution vulner ...)
-       TODO: check
+       NOT-FOR-US: VINGA
 CVE-2021-43468
        RESERVED
 CVE-2021-43467
@@ -23675,7 +23675,7 @@ CVE-2021-36200
 CVE-2021-36199
        RESERVED
 CVE-2021-36198 (Successful exploitation of this vulnerability could allow an 
unauthori ...)
-       TODO: check
+       NOT-FOR-US: Sensormatic Electronics, LLC
 CVE-2021-36197
        RESERVED
 CVE-2021-36196
@@ -26015,13 +26015,13 @@ CVE-2021-35247
 CVE-2021-35246
        RESERVED
 CVE-2021-35245 (When a user has admin rights in Serv-U Console, the user can 
move, cre ...)
-       TODO: check
+       NOT-FOR-US: SolarWinds
 CVE-2021-35244
        RESERVED
 CVE-2021-35243
        RESERVED
 CVE-2021-35242 (Serv-U server responds with valid CSRFToken when the request 
contains  ...)
-       TODO: check
+       NOT-FOR-US: SolarWinds
 CVE-2021-35241
        RESERVED
 CVE-2021-35240 (A security researcher stored XSS via a Help Server setting. 
This affec ...)
@@ -51763,7 +51763,7 @@ CVE-2021-25043
 CVE-2021-25042
        RESERVED
 CVE-2021-25041 (The Photo Gallery by 10Web WordPress plugin before 1.5.68 is 
vulnerabl ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2021-25040
        RESERVED
 CVE-2021-25039
@@ -51959,7 +51959,7 @@ CVE-2021-24945
 CVE-2021-24944
        RESERVED
 CVE-2021-24943 (The Registrations for the Events Calendar WordPress plugin 
before 2.7. ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2021-24942
        RESERVED
 CVE-2021-24941
@@ -51967,15 +51967,15 @@ CVE-2021-24941
 CVE-2021-24940
        RESERVED
 CVE-2021-24939 (The LoginWP (Formerly Peter's Login Redirect) WordPress plugin 
before  ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2021-24938 (The WOOCS WordPress plugin before 1.3.7.1 does not sanitise 
and escape ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2021-24937
        RESERVED
 CVE-2021-24936
        RESERVED
 CVE-2021-24935 (The WP Google Fonts WordPress plugin before 3.1.5 does not 
escape the  ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2021-24934
        RESERVED
 CVE-2021-24933
@@ -51983,9 +51983,9 @@ CVE-2021-24933
 CVE-2021-24932
        RESERVED
 CVE-2021-24931 (The Secure Copy Content Protection and Content Locking 
WordPress plugi ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2021-24930 (The WordPress Online Booking and Scheduling Plugin WordPress 
plugin be ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2021-24929
        RESERVED
 CVE-2021-24928
@@ -51997,7 +51997,7 @@ CVE-2021-24926
 CVE-2021-24925
        RESERVED
 CVE-2021-24924 (The Email Log WordPress plugin before 2.4.8 does not escape 
the d para ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2021-24923
        RESERVED
 CVE-2021-24922
@@ -52011,13 +52011,13 @@ CVE-2021-24919
 CVE-2021-24918 (The Smash Balloon Social Post Feed WordPress plugin before 
4.0.1 did n ...)
        NOT-FOR-US: WordPress plugin
 CVE-2021-24917 (The WPS Hide Login WordPress plugin before 1.9.1 has a bug 
which allow ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2021-24916
        RESERVED
 CVE-2021-24915 (The Contest Gallery WordPress plugin before 13.1.0.6 does not 
have cap ...)
        NOT-FOR-US: WordPress plugin
 CVE-2021-24914 (The Tawk.To Live Chat WordPress plugin before 0.6.0 does not 
have capa ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2021-24913
        RESERVED
 CVE-2021-24912
@@ -52327,7 +52327,7 @@ CVE-2021-24761
 CVE-2021-24760 (The Gutenberg PDF Viewer Block WordPress plugin before 1.0.1 
does not  ...)
        NOT-FOR-US: WordPress plugin
 CVE-2021-24759 (The PDF.js Viewer WordPress plugin before 2.0.2 does not 
escape some o ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2021-24758 (The Email Log WordPress plugin before 2.4.7 does not properly 
validate ...)
        NOT-FOR-US: WordPress plugin
 CVE-2021-24757 (The Stylish Price List WordPress plugin before 6.9.0 does not 
perform  ...)
@@ -52409,7 +52409,7 @@ CVE-2021-24720 (The GeoDirectory Business Directory 
WordPress plugin before 2.1.
 CVE-2021-24719 (The Enfold Enfold WordPress theme before 4.8.4 was vulnerable 
to Refle ...)
        NOT-FOR-US: WordPress theme
 CVE-2021-24718 (The Contact Form, Survey & Popup Form Plugin for WordPress 
plugin  ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2021-24717 (The AutomatorWP WordPress plugin before 1.7.6 does not perform 
capabil ...)
        NOT-FOR-US: WordPress plugin
 CVE-2021-24716 (The Modern Events Calendar Lite WordPress plugin before 5.22.3 
does no ...)
@@ -52417,7 +52417,7 @@ CVE-2021-24716 (The Modern Events Calendar Lite 
WordPress plugin before 5.22.3 d
 CVE-2021-24715 (The WP Sitemap Page WordPress plugin before 1.7.0 does not 
properly sa ...)
        NOT-FOR-US: WordPress plugin
 CVE-2021-24714 (The Import any XML or CSV File to WordPress plugin before 
3.6.3 does n ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2021-24713 (The Video Lessons Manager WordPress plugin before 1.7.2 and 
Video Less ...)
        NOT-FOR-US: WordPress plugin
 CVE-2021-24712 (The Appointment Hour Booking WordPress plugin before 1.3.17 
does not p ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f49d15a74ab75dda94aecb9a66854dc31e126e3c

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f49d15a74ab75dda94aecb9a66854dc31e126e3c
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to