Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
4daee8e3 by Salvatore Bonaccorso at 2023-06-07T10:21:56+02:00
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,9 +1,9 @@
CVE-2023-3126 (The B2BKing plugin for WordPress is vulnerable to unauthorized
access ...)
- TODO: check
+ NOT-FOR-US: B2BKing plugin for WordPress
CVE-2023-3125 (The B2BKing plugin for WordPress is vulnerable to unauthorized
modific ...)
- TODO: check
+ NOT-FOR-US: B2BKing plugin for WordPress
CVE-2023-3124 (The Elementor Pro plugin for WordPress is vulnerable to
unauthorized d ...)
- TODO: check
+ NOT-FOR-US: Elementor Pro plugin for WordPress
CVE-2023-33782 (D-Link DIR-842V2 v1.0.3 was discovered to contain a command
injection ...)
TODO: check
CVE-2023-33781 (An issue in D-Link DIR-842V2 v1.0.3 allows attackers to
execute arbitr ...)
@@ -23,187 +23,187 @@ CVE-2023-2541 (The Web Frontend of KNIME Business Hub
before 1.4.0 allows an una
CVE-2022-4950 (Several WordPress plugins developed by Cool Plugins are
vulnerable to ...)
TODO: check
CVE-2022-4949 (The AdSanity plugin for WordPress is vulnerable to arbitrary
file uplo ...)
- TODO: check
+ NOT-FOR-US: AdSanity plugin for WordPress
CVE-2022-4948 (The FlyingPress plugin for WordPress is vulnerable to
authorization by ...)
- TODO: check
+ NOT-FOR-US: FlyingPress plugin for WordPress
CVE-2021-4383 (The WP Quick FrontEnd Editor plugin for WordPress is vulnerable
to pag ...)
- TODO: check
+ NOT-FOR-US: WP Quick FrontEnd Editor plugin for WordPress
CVE-2021-4382 (The Recently plugin for WordPress is vulnerable to arbitrary
file uplo ...)
- TODO: check
+ NOT-FOR-US: Recently plugin for WordPress
CVE-2021-4381 (The uListing plugin for WordPress is vulnerable to
authorization bypas ...)
- TODO: check
+ NOT-FOR-US: uListing plugin for WordPress
CVE-2021-4378 (The WP Quick FrontEnd Editor plugin for WordPress is vulnerable
to Sto ...)
- TODO: check
+ NOT-FOR-US: WP Quick FrontEnd Editor plugin for WordPress
CVE-2021-4377 (The Doneren met Mollie plugin for WordPress is vulnerable to
Sensitive ...)
- TODO: check
+ NOT-FOR-US: Doneren met Mollie plugin for WordPress
CVE-2021-4376 (The WooCommerce Multi Currency plugin for WordPress is
vulnerable to M ...)
- TODO: check
+ NOT-FOR-US: WooCommerce Multi Currency plugin for WordPress
CVE-2021-4375 (The Welcart e-Commerce plugin for WordPress is vulnerable to
authoriza ...)
- TODO: check
+ NOT-FOR-US: Welcart e-Commerce plugin for WordPress
CVE-2021-4374 (The WordPress Automatic Plugin for WordPress is vulnerable to
arbitrar ...)
TODO: check
CVE-2021-4373 (The Better Search plugin for WordPress is vulnerable to
Cross-Site Req ...)
- TODO: check
+ NOT-FOR-US: Better Search plugin for WordPress
CVE-2021-4372 (The WooCommerce Dynamic Pricing and Discounts plugin for
WordPress is ...)
- TODO: check
+ NOT-FOR-US: WooCommerce Dynamic Pricing and Discounts plugin for
WordPress
CVE-2021-4371 (The WP Quick FrontEnd Editor plugin for WordPress is vulnerable
to Set ...)
- TODO: check
+ NOT-FOR-US: WP Quick FrontEnd Editor plugin for WordPress
CVE-2021-4370 (The uListing plugin for WordPress is vulnerable to
authorization bypas ...)
- TODO: check
+ NOT-FOR-US: uListing plugin for WordPress
CVE-2021-4369 (The Frontend File Manager plugin for WordPress is vulnerable to
Unauth ...)
- TODO: check
+ NOT-FOR-US: Frontend File Manager plugin for WordPress
CVE-2021-4368 (The Frontend File Manager plugin for WordPress is vulnerable to
Authen ...)
- TODO: check
+ NOT-FOR-US: Frontend File Manager plugin for WordPress
CVE-2021-4367 (The Flo Forms \u2013 Easy Drag & Drop Form Builder plugin for
WordPres ...)
- TODO: check
+ NOT-FOR-US: Flo Forms – Easy Drag & Drop Form Builder plugin for
WordPress
CVE-2021-4366 (The PWA for WP & AMP plugin for WordPress is vulnerable to
authorizati ...)
- TODO: check
+ NOT-FOR-US: PWA for WP & AMP plugin for WordPress
CVE-2021-4365 (The Frontend File Manager plugin for WordPress is vulnerable to
Unauth ...)
- TODO: check
+ NOT-FOR-US: Frontend File Manager plugin for WordPress
CVE-2021-4364 (The JobSearch WP Job Board plugin for WordPress is vulnerable
to autho ...)
- TODO: check
+ NOT-FOR-US: JobSearch WP Job Board plugin for WordPress
CVE-2021-4363 (The WP Quick FrontEnd Editor plugin for WordPress is vulnerable
to Ref ...)
- TODO: check
+ NOT-FOR-US: WP Quick FrontEnd Editor plugin for WordPress
CVE-2021-4362 (The Kiwi Social Share plugin for WordPress is vulnerable to
authorizat ...)
- TODO: check
+ NOT-FOR-US: Kiwi Social Share plugin for WordPress
CVE-2021-4361 (The JobSearch WP Job Board plugin for WordPress is vulnerable
to autho ...)
- TODO: check
+ NOT-FOR-US: JobSearch WP Job Board plugin for WordPress
CVE-2021-4360 (The Controlled Admin Access plugin for WordPress is vulnerable
to Priv ...)
- TODO: check
+ NOT-FOR-US: Controlled Admin Access plugin for WordPress
CVE-2021-4359 (The Frontend File Manager plugin for WordPress is vulnerable to
Unauth ...)
- TODO: check
+ NOT-FOR-US: Frontend File Manager plugin for WordPress
CVE-2021-4358 (The WP DSGVO Tools (GDPR) plugin for WordPress is vulnerable to
Stored ...)
- TODO: check
+ NOT-FOR-US: WP DSGVO Tools (GDPR) plugin for WordPress
CVE-2021-4357 (The uListing plugin for WordPress is vulnerable to
authorization bypas ...)
- TODO: check
+ NOT-FOR-US: uListing plugin for WordPress
CVE-2021-4356 (The Frontend File Manager plugin for WordPress is vulnerable to
Unauth ...)
- TODO: check
+ NOT-FOR-US: Frontend File Manager plugin for WordPress
CVE-2021-4355 (The Welcart e-Commerce plugin for WordPress is vulnerable to
authoriza ...)
- TODO: check
+ NOT-FOR-US: Welcart e-Commerce plugin for WordPress
CVE-2021-4354 (The PWA for WP & AMP for WordPress is vulnerable to arbitrary
file upl ...)
TODO: check
CVE-2021-4352 (The JobSearch WP Job Board plugin for WordPress is vulnerable
to autho ...)
- TODO: check
+ NOT-FOR-US: JobSearch WP Job Board plugin for WordPress
CVE-2021-4351 (The Frontend File Manager plugin for WordPress is vulnerable to
Unauth ...)
- TODO: check
+ NOT-FOR-US: Frontend File Manager plugin for WordPress
CVE-2021-4350 (The Frontend File Manager plugin for WordPress is vulnerable to
Unauth ...)
- TODO: check
+ NOT-FOR-US: Frontend File Manager plugin for WordPress
CVE-2021-4349 (The Process Steps Template Designer plugin for WordPress is
vulnerable ...)
- TODO: check
+ NOT-FOR-US: Process Steps Template Designer plugin for WordPress
CVE-2021-4348 (The Ultimate GDPR & CCPA plugin for WordPress is vulnerable to
unauthe ...)
- TODO: check
+ NOT-FOR-US: Ultimate GDPR & CCPA plugin for WordPress
CVE-2021-4347 (The function update_shipment_status_email_status_fun in the
plugin Adv ...)
TODO: check
CVE-2021-4346 (The uListing plugin for WordPress is vulnerable to
Unauthenticated Arb ...)
- TODO: check
+ NOT-FOR-US: uListing plugin for WordPress
CVE-2021-4345 (The uListing plugin for WordPress is vulnerable to
authorization bypas ...)
- TODO: check
+ NOT-FOR-US: uListing plugin for WordPress
CVE-2021-4344 (The Frontend File Manager plugin for WordPress is vulnerable to
Privil ...)
- TODO: check
+ NOT-FOR-US: Frontend File Manager plugin for WordPress
CVE-2021-4343 (The Unauthenticated Account Creation plugin for WordPress is
vulnerabl ...)
- TODO: check
+ NOT-FOR-US: Unauthenticated Account Creation plugin for WordPress
CVE-2021-4342 (Over 70 plugins and themes were vulnerable to Cross-Site
Request Forge ...)
TODO: check
CVE-2021-4341 (The uListing plugin for WordPress is vulnerable to
authorization bypas ...)
- TODO: check
+ NOT-FOR-US: uListing plugin for WordPress
CVE-2021-4340 (The uListing plugin for WordPress is vulnerable to generic SQL
Injecti ...)
- TODO: check
+ NOT-FOR-US: uListing plugin for WordPress
CVE-2021-4339 (The uListing plugin for WordPress is vulnerable to
authorization bypas ...)
- TODO: check
+ NOT-FOR-US: uListing plugin for WordPress
CVE-2021-4338 (The 404 to 301 plugin for WordPress is vulnerable to
authorization byp ...)
- TODO: check
+ NOT-FOR-US: 404 to 301 plugin for WordPress
CVE-2020-36731 (The Flexible Checkout Fields for WooCommerce plugin for
WordPress is ...)
- TODO: check
+ NOT-FOR-US: Flexible Checkout Fields for WooCommerce plugin for
WordPress
CVE-2020-36730 (The CMP for WordPress is vulnerable to authorization bypass
due to a m ...)
TODO: check
CVE-2020-36729 (The 2J-SlideShow Plugin for WordPress is vulnerable to
authorization b ...)
TODO: check
CVE-2020-36727 (The Newsletter Manager plugin for WordPress is vulnerable to
insecure ...)
- TODO: check
+ NOT-FOR-US: Newsletter Manager plugin for WordPress
CVE-2020-36726 (The Ultimate Reviews plugin for WordPress is vulnerable to PHP
Object ...)
- TODO: check
+ NOT-FOR-US: Ultimate Reviews plugin for WordPress
CVE-2020-36725 (The TI WooCommerce Wishlist and TI WooCommerce Wishlist Pro
plugins fo ...)
TODO: check
CVE-2020-36724 (The Wordable plugin for WordPress is vulnerable to
authentication bypa ...)
- TODO: check
+ NOT-FOR-US: Wordable plugin for WordPress
CVE-2020-36723 (The ListingPro - WordPress Directory & Listing Theme for
WordPress is ...)
TODO: check
CVE-2020-36722 (The Visual Composer plugin for WordPress is vulnerable to
Cross-Site S ...)
- TODO: check
+ NOT-FOR-US: Visual Composer plugin for WordPress
CVE-2020-36721 (The Brilliance <= 1.2.7, Activello <= 1.4.0, and Newspaper X
<= 1.3.1 ...)
TODO: check
CVE-2020-36720 (The Kali Forms plugin for WordPress is vulnerable to
Authenticated Opt ...)
- TODO: check
+ NOT-FOR-US: Kali Forms plugin for WordPress
CVE-2020-36719 (The ListingPro - WordPress Directory & Listing Theme for
WordPress is ...)
TODO: check
CVE-2020-36718 (The GDPR CCPA Compliance Support plugin for WordPress is
vulnerable to ...)
- TODO: check
+ NOT-FOR-US: GDPR CCPA Compliance Support plugin for WordPress
CVE-2020-36717 (The Kali Forms plugin for WordPress is vulnerable to
Cross-Site Reques ...)
- TODO: check
+ NOT-FOR-US: Kali Forms plugin for WordPress
CVE-2020-36716 (The WP Activity Log plugin for WordPress is vulnerable to
authorizatio ...)
- TODO: check
+ NOT-FOR-US: WP Activity Log plugin for WordPress
CVE-2020-36715 (The Login/Signup Popup plugin for WordPress is vulnerable to
authoriza ...)
- TODO: check
+ NOT-FOR-US: Login/Signup Popup plugin for WordPress
CVE-2020-36713 (The MStore API plugin for WordPress is vulnerable to
authentication by ...)
- TODO: check
+ NOT-FOR-US: MStore API plugin for WordPress
CVE-2020-36712 (The Kali Forms plugin for WordPress is vulnerable to
Unauthenticated A ...)
- TODO: check
+ NOT-FOR-US: Kali Forms plugin for WordPress
CVE-2020-36711 (The Avada theme for WordPress is vulnerable to Stored
Cross-Site Scrip ...)
- TODO: check
+ NOT-FOR-US: Avada theme for WordPress
CVE-2020-36710 (The WPS Hide Login plugin for WordPress is vulnerable to login
page di ...)
- TODO: check
+ NOT-FOR-US: WPS Hide Login plugin for WordPress
CVE-2020-36709 (The Page Builder: KingComposer plugin for WordPress is
vulnerable to S ...)
- TODO: check
+ NOT-FOR-US: Page Builder: KingComposer plugin for WordPress
CVE-2020-36708 (The following themes for WordPress are vulnerable to Function
Injectio ...)
TODO: check
CVE-2020-36707 (The Coming Soon & Maintenance Mode Page plugin for WordPress
is vulner ...)
- TODO: check
+ NOT-FOR-US: Coming Soon & Maintenance Mode Page plugin for WordPress
CVE-2020-36704 (The Fruitful Theme for WordPress is vulnerable to Stored
Cross-Site Sc ...)
TODO: check
CVE-2020-36703 (The Elementor Website Builder plugin for WordPress is
vulnerable to St ...)
- TODO: check
+ NOT-FOR-US: Elementor Website Builder plugin for WordPress
CVE-2020-36702 (The Ultimate Addons for Gutenberg plugin for WordPress is
vulnerable t ...)
- TODO: check
+ NOT-FOR-US: Ultimate Addons for Gutenberg plugin for WordPress
CVE-2020-36701 (The Page Builder: KingComposer plugin for WordPress is
vulnerable to A ...)
- TODO: check
+ NOT-FOR-US: Page Builder: KingComposer plugin for WordPress
CVE-2020-36700 (The Page Builder: KingComposer plugin for WordPress is
vulnerable to a ...)
- TODO: check
+ NOT-FOR-US: Page Builder: KingComposer plugin for WordPress
CVE-2020-36699 (The Quick Page/Post Redirect Plugin for WordPress is
vulnerable to aut ...)
TODO: check
CVE-2020-36697 (The WP GDPR plugin for WordPress is vulnerable to
authorization bypass ...)
- TODO: check
+ NOT-FOR-US: WP GDPR plugin for WordPress
CVE-2020-36696 (The Product Input Fields for WooCommerce plugin for WordPress
is vulne ...)
- TODO: check
+ NOT-FOR-US: Product Input Fields for WooCommerce plugin for WordPress
CVE-2019-25151 (The Funnel Builder plugin for WordPress is vulnerable to
authorization ...)
- TODO: check
+ NOT-FOR-US: Funnel Builder plugin for WordPress
CVE-2019-25150 (The Email Templates plugin for WordPress is vulnerable to HTML
Injecti ...)
- TODO: check
+ NOT-FOR-US: Email Templates plugin for WordPress
CVE-2019-25149 (The Gallery Images Ape plugin for WordPress is vulnerable to
Arbitrary ...)
- TODO: check
+ NOT-FOR-US: Gallery Images Ape plugin for WordPress
CVE-2019-25148 (The WP HTML Mail plugin for WordPress is vulnerable to HTML
injection ...)
- TODO: check
+ NOT-FOR-US: WP HTML Mail plugin for WordPress
CVE-2019-25147 (The Pretty Links plugin for WordPress is vulnerable to Stored
Cross-Si ...)
- TODO: check
+ NOT-FOR-US: Pretty Links plugin for WordPress
CVE-2019-25146 (The DELUCKS SEO plugin for WordPress is vulnerable to Stored
Cross-Sit ...)
- TODO: check
+ NOT-FOR-US: DELUCKS SEO plugin for WordPress
CVE-2019-25145 (The Contact Form & SMTP Plugin by PirateForms plugin for
WordPress is ...)
- TODO: check
+ NOT-FOR-US: Contact Form & SMTP Plugin by PirateForms plugin for
WordPress
CVE-2019-25144 (The WP HTML Mail plugin for WordPress is vulnerable to HTML
injection ...)
- TODO: check
+ NOT-FOR-US: WP HTML Mail plugin for WordPress
CVE-2019-25143 (The GDPR Cookie Compliance plugin for WordPress is vulnerable
to autho ...)
- TODO: check
+ NOT-FOR-US: GDPR Cookie Compliance plugin for WordPress
CVE-2019-25142 (The Mesmerize & Materialis themes for WordPress are vulnerable
to auth ...)
TODO: check
CVE-2019-25141 (The Easy WP SMTP plugin for WordPress is vulnerable to
authorization b ...)
- TODO: check
+ NOT-FOR-US: Easy WP SMTP plugin for WordPress
CVE-2019-25140 (The WordPress Coming Soon Page & Maintenance Mode plugin for
WordPress ...)
- TODO: check
+ NOT-FOR-US: WordPress Coming Soon Page & Maintenance Mode plugin for
WordPress
CVE-2019-25139 (The Coming Soon Page & Maintenance Mode plugin for WordPress
is vulner ...)
- TODO: check
+ NOT-FOR-US: Coming Soon Page & Maintenance Mode plugin for WordPress
CVE-2019-25138 (The User Submitted Posts plugin for WordPress is vulnerable to
arbitra ...)
- TODO: check
+ NOT-FOR-US: User Submitted Posts plugin for WordPress
CVE-2016-15033 (The Delete All Comments plugin for WordPress is vulnerable to
arbitrar ...)
- TODO: check
+ NOT-FOR-US: Delete All Comments plugin for WordPress
CVE-2023-3123
REJECTED
CVE-2023-3121 (A vulnerability has been found in Dahua Smart Parking
Management up to ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4daee8e3a56a81c8d369ac6ef8e51b2a717d56dc
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4daee8e3a56a81c8d369ac6ef8e51b2a717d56dc
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
