Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
f22a7a37 by Salvatore Bonaccorso at 2023-11-18T09:53:00+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,41 +1,41 @@
CVE-2023-6187 (The Paid Memberships Pro plugin for WordPress is vulnerable to
arbitra ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2023-4214 (The AppPresser plugin for WordPress is vulnerable to
unauthorized pass ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2023-48295 (LibreNMS is an auto-discovering PHP/MySQL/SNMP based network
monitorin ...)
- TODO: check
+ NOT-FOR-US: LibreNMS
CVE-2023-48294 (LibreNMS is an auto-discovering PHP/MySQL/SNMP based network
monitorin ...)
- TODO: check
+ NOT-FOR-US: LibreNMS
CVE-2023-48238 (joaquimserafim/json-web-token is a javascript library use to
interact ...)
TODO: check
CVE-2023-48028 (kodbox 1.46.01 has a security flaw that enables user
enumeration. This ...)
TODO: check
CVE-2023-48017 (Dreamer_cms 4.1.3 is vulnerable to Cross Site Request Forgery
(CSRF) v ...)
- TODO: check
+ NOT-FOR-US: Dreamer CMS
CVE-2023-46745 (LibreNMS is an auto-discovering PHP/MySQL/SNMP based network
monitorin ...)
- TODO: check
+ NOT-FOR-US: LibreNMS
CVE-2023-46402 (git-urls version 1.0.1 is vulnerable to ReDOS (Regular
Expression Deni ...)
TODO: check
CVE-2023-44796 (Cross Site Scripting (XSS) vulnerability in LimeSurvey before
version ...)
TODO: check
CVE-2023-43177 (CrushFTP prior to 10.5.1 is vulnerable to Improperly
Controlled Modifi ...)
- TODO: check
+ NOT-FOR-US: CrushFTP
CVE-2023-40817 (OpenCRX version 5.2.0 is vulnerable to HTML injection via the
Product ...)
- TODO: check
+ NOT-FOR-US: OpenCRX
CVE-2023-40816 (OpenCRX version 5.2.0 is vulnerable to HTML injection via
Activity Mil ...)
- TODO: check
+ NOT-FOR-US: OpenCRX
CVE-2023-40815 (OpenCRX version 5.2.0 is vulnerable to HTML injection via the
Category ...)
- TODO: check
+ NOT-FOR-US: OpenCRX
CVE-2023-40814 (OpenCRX version 5.2.0 is vulnerable to HTML injection via the
Accounts ...)
- TODO: check
+ NOT-FOR-US: OpenCRX
CVE-2023-40813 (OpenCRX version 5.2.0 is vulnerable to HTML injection via
Activity Sav ...)
- TODO: check
+ NOT-FOR-US: OpenCRX
CVE-2023-40812 (OpenCRX version 5.2.0 is vulnerable to HTML injection via the
Accounts ...)
- TODO: check
+ NOT-FOR-US: OpenCRX
CVE-2023-40810 (OpenCRX version 5.2.0 is vulnerable to HTML injection via
Product Name ...)
- TODO: check
+ NOT-FOR-US: OpenCRX
CVE-2023-40809 (OpenCRX version 5.2.0 is vulnerable to HTML injection via the
Activity ...)
- TODO: check
+ NOT-FOR-US: OpenCRX
CVE-2023-6188 (A vulnerability was found in GetSimpleCMS 3.3.16/3.4.0a. It has
been r ...)
NOT-FOR-US: GetSimpleCMS
CVE-2023-6179 (Honeywell ProWatch, 4.5, including all Service Pack versions,
contain ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f22a7a375e0625cf0be1de3a10602f6bcb07f069
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f22a7a375e0625cf0be1de3a10602f6bcb07f069
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
