Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
1f095a73 by security tracker role at 2025-03-22T20:12:42+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,39 @@
+CVE-2025-2625 (A vulnerability classified as critical has been found in
westboy Cicad ...)
+ TODO: check
+CVE-2025-2624 (A vulnerability was found in westboy CicadasCMS 1.0. It has
been rated ...)
+ TODO: check
+CVE-2025-2623 (A vulnerability was found in westboy CicadasCMS 1.0. It has
been decla ...)
+ TODO: check
+CVE-2025-2622 (A vulnerability was found in aizuda snail-job 1.4.0. It has
been class ...)
+ TODO: check
+CVE-2025-2621 (A vulnerability was found in D-Link DAP-1620 1.03 and
classified as cr ...)
+ TODO: check
+CVE-2025-2620 (A vulnerability has been found in D-Link DAP-1620 1.03 and
classified ...)
+ TODO: check
+CVE-2025-2619 (A vulnerability, which was classified as critical, was found in
D-Link ...)
+ TODO: check
+CVE-2025-2618 (A vulnerability, which was classified as critical, has been
found in D ...)
+ TODO: check
+CVE-2025-2617 (A vulnerability classified as problematic was found in
yangyouwang \u6 ...)
+ TODO: check
+CVE-2025-2616 (A vulnerability classified as problematic has been found in
yangyouwan ...)
+ TODO: check
+CVE-2025-2577 (The Bitspecter Suite plugin for WordPress is vulnerable to
Stored Cros ...)
+ TODO: check
+CVE-2025-2331 (The GiveWP \u2013 Donation Plugin and Fundraising Platform
plugin for ...)
+ TODO: check
+CVE-2025-2186 (The Recover WooCommerce Cart Abandonment, Newsletter, Email
Marketing, ...)
+ TODO: check
+CVE-2025-1973 (The Export and Import Users and Customers plugin for WordPress
is vuln ...)
+ TODO: check
+CVE-2025-1972 (The Export and Import Users and Customers plugin for WordPress
is vuln ...)
+ TODO: check
+CVE-2025-1971 (The Export and Import Users and Customers plugin for WordPress
is vuln ...)
+ TODO: check
+CVE-2025-1970 (The Export and Import Users and Customers plugin for WordPress
is vuln ...)
+ TODO: check
+CVE-2024-13666 (The Fluent Forms \u2013 Customizable Contact Forms, Survey,
Quiz, & Co ...)
+ TODO: check
CVE-2025-30472 (Corosync through 3.1.9, if encryption is disabled or the
attacker know ...)
- corosync <unfixed>
NOTE: https://github.com/corosync/corosync/issues/778
@@ -50,7 +86,7 @@ CVE-2024-13739 (The Newsletters plugin for WordPress is
vulnerable to Reflected
NOT-FOR-US: WordPress plugin
CVE-2024-13737 (The Motors \u2013 Car Dealer, Classifieds & Listing plugin for
WordPre ...)
NOT-FOR-US: WordPress plugin
-CVE-2025-26796
+CVE-2025-26796 (** UNSUPPORTED WHEN ASSIGNED ** Improper Neutralization of
Input Durin ...)
NOT-FOR-US: Apache Oozie
CVE-2025-30349 (Horde IMP through 6.2.27, as used with Horde Application
Framework thr ...)
- php-horde <unfixed>
@@ -1689,6 +1725,7 @@ CVE-2025-2363 (A vulnerability classified as critical has
been found in lenve VB
CVE-2025-2362 (A vulnerability was found in PHPGurukul Pre-School Enrollment
System 1 ...)
NOT-FOR-US: PHPGurukul
CVE-2025-2361 (A vulnerability was found in Mercurial SCM 4.5.3/71.19.145.211.
It has ...)
+ {DSA-5883-1}
- mercurial 6.9.4-1 (bug #1100899)
NOTE:
https://lists.mercurial-scm.org/pipermail/mercurial-packaging/2025-March/000754.html
NOTE: Fixed by:
https://foss.heptapod.net/mercurial/mercurial-devel/-/commit/a5c72ed2929341d97b11968211c880854803f003
(6.9.4)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1f095a73ed376eb7614f93566abe7d34e3146144
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1f095a73ed376eb7614f93566abe7d34e3146144
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
