Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 93db18b5 by Salvatore Bonaccorso at 2023-06-29T22:33:14+02:00 Process some NFUs - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -1,7 +1,7 @@ CVE-2023-3458 (A vulnerability was found in SourceCodester Shopping Website 1.0. It h ...) - TODO: check + NOT-FOR-US: SourceCodester Shopping Website CVE-2023-3457 (A vulnerability was found in SourceCodester Shopping Website 1.0. It h ...) - TODO: check + NOT-FOR-US: SourceCodester Shopping Website CVE-2023-37256 (An issue was discovered in the Cargo extension for MediaWiki through 1 ...) TODO: check CVE-2023-37255 (An issue was discovered in the CheckUser extension for MediaWiki throu ...) @@ -19,9 +19,9 @@ CVE-2023-36487 (The password reset function in ILIAS 7.0_beta1 through 7.20 and CVE-2023-36484 (ILIAS 7.21 and 8.0_beta1 through 8.2 is vulnerable to reflected Cross- ...) TODO: check CVE-2023-36471 (Xwiki commons is the common modules used by other XWiki top level proj ...) - TODO: check + NOT-FOR-US: Xwiki CVE-2023-35938 (Tuleap is a Free & Open Source Suite to improve management of software ...) - TODO: check + NOT-FOR-US: Tuleap CVE-2023-35830 (STW (aka Sensor-Technik Wiedemann) TCG-4 Connectivity Module Deploymen ...) TODO: check CVE-2023-34849 (An unauthorized command injection vulnerability exists in the ActionLo ...) @@ -29,23 +29,23 @@ CVE-2023-34849 (An unauthorized command injection vulnerability exists in the Ac CVE-2023-34844 (Play With Docker < 0.0.2 has an insecure CAP_SYS_ADMIN privileged mode ...) TODO: check CVE-2023-34735 (Property Cloud Platform Management Center 1.0 is vulnerable to error-b ...) - TODO: check + NOT-FOR-US: Property Cloud Platform Management Center CVE-2023-34658 (Telegram v9.6.3 on iOS allows attackers to hide critical information o ...) TODO: check CVE-2023-34656 (An issue was discovered with the JSESSION IDs in Xiamen Si Xin Communi ...) - TODO: check + NOT-FOR-US: Xiamen Si Xin Communication Technology Video management system CVE-2023-34599 (Multiple Cross-Site Scripting (XSS) vulnerabilities have been identifi ...) TODO: check CVE-2023-34598 (Gibbon v25.0.0 is vulnerable to a Local File Inclusion (LFI) where it' ...) TODO: check CVE-2023-34487 (itsourcecode Online Hotel Management System Project In PHP v1.0.0 is v ...) - TODO: check + NOT-FOR-US: itsourcecode Online Hotel Management System Project CVE-2023-34486 (itsourcecode Online Hotel Management System Project In PHP v1.0.0 is v ...) - TODO: check + NOT-FOR-US: itsourcecode Online Hotel Management System Project CVE-2023-33466 (Orthanc before 1.12.0 allows authenticated users with access to the Or ...) TODO: check CVE-2023-33277 (The web interface of Gira Giersiepen Gira KNX/IP-Router 3.1.3683.0 and ...) - TODO: check + NOT-FOR-US: Gira Giersiepen Gira KNX/IP-Router CVE-2023-33190 (Sealos is an open source cloud operating system distribution based on ...) TODO: check CVE-2023-XXXX [Heap overwrite in PGS subtitle overlay decoder] @@ -81,35 +81,35 @@ CVE-2023-36474 (Interactsh is an open-source tool for detecting out-of-band inte CVE-2023-34843 (Traggo Server 0.3.0 is vulnerable to directory traversal via a crafted ...) TODO: check CVE-2023-34834 (A Directory Browsing vulnerability in MCL-Net version 4.3.5.8788 webse ...) - TODO: check + NOT-FOR-US: MCL-Net CVE-2023-34831 (The "Submission Web Form" of Turnitin LTI tool/plugin version 1.3 is a ...) TODO: check CVE-2023-34738 (Chemex through 3.7.1 is vulnerable to arbitrary file upload.) TODO: check CVE-2023-34736 (Guantang Equipment Management System version 4.12 is vulnerable to Arb ...) - TODO: check + NOT-FOR-US: Guantang Equipment Management System CVE-2023-34734 (Annet AC Centralized Management Platform 1.02.040 is vulnerable to Sto ...) - TODO: check + NOT-FOR-US: Annet AC Centralized Management Platform CVE-2023-34652 (PHPgurukl Hostel Management System v.1.0 is vulnerable to Cross Site S ...) - TODO: check + NOT-FOR-US: PHPgurukl Hostel Management System CVE-2023-34651 (PHPgurukl Hospital Management System v.1.0 is vulnerable to Cross Site ...) - TODO: check + NOT-FOR-US: PHPgurukl Hostel Management System CVE-2023-34650 (PHPgurukl Small CRM v.1.0 is vulnerable to Cross Site Scripting (XSS).) - TODO: check + NOT-FOR-US: PHPgurukl Small CRM CVE-2023-34648 (A Cross Site Scripting vulnerability in PHPgurukl User Registration Lo ...) - TODO: check + NOT-FOR-US: PHPgurukl User Registration Login and User Management System CVE-2023-34647 (PHPgurukl Hostel Management System v.1.0 is vulnerable to Cross Site S ...) - TODO: check + NOT-FOR-US: PHPgurukl Hostel Management System CVE-2023-33661 (Multiple cross-site scripting (XSS) vulnerabilities were discovered in ...) - TODO: check + NOT-FOR-US: Church CRM CVE-2023-32610 (Mailform Pro CGI 4.3.1.2 and earlier allows a remote unauthenticated a ...) TODO: check CVE-2023-32224 (D-Link DSL-224 firmware version 3.0.10 CWE-307: Improper Restriction o ...) - TODO: check + NOT-FOR-US: D-Link CVE-2023-32223 (D-Link DSL-224 firmware version 3.0.10 allows post authentication comm ...) - TODO: check + NOT-FOR-US: D-Link CVE-2023-32222 (D-Link DSL-G256DG version vBZ_1.00.27 web management interface allows ...) - TODO: check + NOT-FOR-US: D-Link CVE-2023-2982 (The WordPress Social Login and Register (Discord, Google, Twitter, Lin ...) NOT-FOR-US: WordPress Social Login and Register (Discord, Google, Twitter, LinkedIn) plugin for WordPress CVE-2023-3450 (A vulnerability was found in Ruijie RG-BCR860 2.5.13 and classified as ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/93db18b50683dabfd6fbec6e8fbf6b22aa252e58 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/93db18b50683dabfd6fbec6e8fbf6b22aa252e58 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits