Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
dc1369d7 by Salvatore Bonaccorso at 2025-04-01T22:15:15+02:00
Process more NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -9,313 +9,313 @@ CVE-2025-3083 (Specifically crafted MongoDB wire protocol
messages can cause mon
CVE-2025-3082 (A user authorized to access a view may be able to alter the
intended c ...)
TODO: check
CVE-2025-31910 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31908 (Cross-Site Request Forgery (CSRF) vulnerability in Sami Ahmed
Siddiqui ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31906 (Cross-Site Request Forgery (CSRF) vulnerability in
ProfitShare.ro WP P ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31904 (Cross-Site Request Forgery (CSRF) vulnerability in Infoway LLC
Ebook D ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31897 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31895 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31894 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31892 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31891 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31890 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31888 (Cross-Site Request Forgery (CSRF) vulnerability in
WPExperts.io WP Mul ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31887 (Missing Authorization vulnerability in zookatron
MyBookProgress by Sto ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31886 (Missing Authorization vulnerability in Repuso Social proof
testimonial ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31885 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31884 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31883 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31882 (Missing Authorization vulnerability in WPWebinarSystem
WebinarPress al ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31881 (Missing Authorization vulnerability in Stylemix Pearl allows
Exploitin ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31880 (Cross-Site Request Forgery (CSRF) vulnerability in Stylemix
Pearl allo ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31879 (Missing Authorization vulnerability in Dmitry V. (CEO of "UKR
Solution ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31878 (Missing Authorization vulnerability in Dmitry V. (CEO of "UKR
Solution ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31877 (Missing Authorization vulnerability in Magnigenie RestroPress
allows E ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31875 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31874 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31873 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31872 (Missing Authorization vulnerability in Galaxy Weblinks WP
Clone any po ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31871 (URL Redirection to Untrusted Site ('Open Redirect')
vulnerability in G ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31870 (Missing Authorization vulnerability in EXEIdeas International
WP AutoK ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31869 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31868 (Missing Authorization vulnerability in JoomSky JS Job Manager
allows E ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31867 (Authorization Bypass Through User-Controlled Key vulnerability
in Joom ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31866 (Missing Authorization vulnerability in Ship Depot ShipDepot
for WooCom ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31865 (Missing Authorization vulnerability in CartBoss SMS Abandoned
Cart Rec ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31864 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31863 (Missing Authorization vulnerability in inspry Agency Toolkit
allows Ex ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31862 (Missing Authorization vulnerability in PickPlugins Job Board
Manager a ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31861 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31860 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31859 (Cross-Site Request Forgery (CSRF) vulnerability in Feedbucket
Feedbuck ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31857 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31856 (Missing Authorization vulnerability in brainvireinfo Export
All Post M ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31855 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31854 (Missing Authorization vulnerability in Sharaz Shahid Simple
Sticky Add ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31853 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31852 (Cross-Site Request Forgery (CSRF) vulnerability in N-Media
Bulk Produc ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31851 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31850 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31849 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31848 (Missing Authorization vulnerability in WPFactory WordPress
Adverts Plu ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31847 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31846 (Missing Authorization vulnerability in Jeroen Schmit Theater
for WordP ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31845 (Cross-Site Request Forgery (CSRF) vulnerability in Rohit
Choudhary The ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31844 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31843 (Missing Authorization vulnerability in Wilson OpenAI Tools for
WordPre ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31842 (Insertion of Sensitive Information Into Sent Data
vulnerability in vir ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31840 (Cross-Site Request Forgery (CSRF) vulnerability in digireturn
Simple F ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31839 (Cross-Site Request Forgery (CSRF) vulnerability in digireturn
DN Foote ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31838 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31837 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31836 (Missing Authorization vulnerability in matthewrubin Review
Manager all ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31835 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31834 (Missing Authorization vulnerability in themeglow JobBoard Job
listing ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31833 (Authorization Bypass Through User-Controlled Key vulnerability
in them ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31832 (Exposure of Sensitive System Information to an Unauthorized
Control Sp ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31831 (Missing Authorization vulnerability in Team AtomChat AtomChat
allows E ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31830 (Missing Authorization vulnerability in Uriahs Victor Printus
allows Ex ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31829 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31828 (Cross-Site Request Forgery (CSRF) vulnerability in
alextselegidis Easy ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31826 (Missing Authorization vulnerability in Anzar Ahmed Ni
WooCommerce Cost ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31824 (Server-Side Request Forgery (SSRF) vulnerability in Wombat
Plugins WP ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31823 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31822 (Missing Authorization vulnerability in Ashish Ajani WP Simple
HTML Sit ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31821 (URL Redirection to Untrusted Site ('Open Redirect')
vulnerability in f ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31820 (Missing Authorization vulnerability in webdevstudios Automatic
Feature ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31818 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31817 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31816 (Missing Authorization vulnerability in pietro Mobile App
Canvas allows ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31815 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31814 (Cross-Site Request Forgery (CSRF) vulnerability in OwnerRez
OwnerRez a ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31813 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31812 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31811 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31810 (Missing Authorization vulnerability in PickPlugins Question
Answer all ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31809 (Cross-Site Request Forgery (CSRF) vulnerability in Labinator
Labinator ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31808 (Cross-Site Request Forgery (CSRF) vulnerability in IT Path
Solutions S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31807 (Cross-Site Request Forgery (CSRF) vulnerability in CloudRedux
Product ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31806 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31805 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31804 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31803 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31802 (Missing Authorization vulnerability in Shiptimize Shiptimize
for WooCo ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31801 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31799 (Missing Authorization vulnerability in publitio Publitio
allows Exploi ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31798 (Missing Authorization vulnerability in publitio Publitio
allows Exploi ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31797 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31796 (Server-Side Request Forgery (SSRF) vulnerability in TheInnovs
Team Ele ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31793 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31792 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31791 (Missing Authorization vulnerability in Oliver Boyers Pin
Generator all ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31790 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31788 (Insertion of Sensitive Information into Log File vulnerability
in smac ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31787 (Missing Authorization vulnerability in Brady Vercher Cue
allows Exploi ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31786 (Missing Authorization vulnerability in Travis Simple Icons
allows Expl ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31785 (Cross-Site Request Forgery (CSRF) vulnerability in Clearbit
Clearbit R ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31784 (Cross-Site Request Forgery (CSRF) vulnerability in Rudy
Susanto Embed ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31783 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31782 (Missing Authorization vulnerability in pupunzi mb.YTPlayer
allows Expl ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31781 (Missing Authorization vulnerability in ahmadshyk Gift Cards
for WooCom ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31780 (Missing Authorization vulnerability in Andy Stratton Append
Content al ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31779 (Cross-Site Request Forgery (CSRF) vulnerability in Jonathan
Daggerhart ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31778 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31777 (Missing Authorization vulnerability in BeastThemes Clockinator
Lite al ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31776 (Cross-Site Request Forgery (CSRF) vulnerability in Aphotrax
Uptime Rob ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31775 (Cross-Site Request Forgery (CSRF) vulnerability in smackcoders
Google ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31774 (Missing Authorization vulnerability in WebProtect.ai Astra
Security Su ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31773 (Missing Authorization vulnerability in cedcommerce Ship Per
Product al ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31772 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31771 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31770 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31769 (Cross-Site Request Forgery (CSRF) vulnerability in NiteoThemes
CLP \u2 ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31767 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31766 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31765 (Missing Authorization vulnerability in themeqx GDPR Cookie
Notice allo ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31764 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31763 (Cross-Site Request Forgery (CSRF) vulnerability in Preliot
Cache contr ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31762 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31761 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31760 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31759 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31757 (Missing Authorization vulnerability in BinaryCarpenter Free
Woocommerc ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31756 (Cross-Site Request Forgery (CSRF) vulnerability in tuyennv TZ
PlusGall ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31755 (Missing Authorization vulnerability in josselynj pCloud Backup
allows ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31754 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31752 (Missing Authorization vulnerability in termel Bulk Fields
Editor allow ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31751 (Cross-Site Request Forgery (CSRF) vulnerability in doit
Breaking News ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31750 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31749 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31748 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31747 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31745 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31744 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31743 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31742 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31741 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31740 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31738 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31737 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31735 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31734 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31733 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31732 (Missing Authorization vulnerability in gb-plugins GB Gallery
Slideshow ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31731 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31730 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31408 (Missing Authorization vulnerability in Zoho Flow allows
Exploiting Inc ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31137 (React Router is a multi-strategy router for React bridging the
gap fro ...)
TODO: check
CVE-2025-31132 (Raven is an open-source messaging platform. A vulnerability
allowed an ...)
@@ -323,7 +323,7 @@ CVE-2025-31132 (Raven is an open-source messaging platform.
A vulnerability allo
CVE-2025-31131 (YesWiki is a wiki system written in PHP. The squelette
parameter is vu ...)
TODO: check
CVE-2025-31121 (OpenEMR is a free and open source electronic health records
and medica ...)
- TODO: check
+ NOT-FOR-US: OpenEMR
CVE-2025-30676 (Improper Neutralization of Script-Related HTML Tags in a Web
Page (Bas ...)
TODO: check
CVE-2025-30354 (Bruno is an open source IDE for exploring and testing APIs. A
bug in t ...)
@@ -335,17 +335,17 @@ CVE-2025-30210 (Bruno is an open source IDE for exploring
and testing APIs. Prio
CVE-2025-30177 (Bypass/Injection vulnerability in Apache Camel in
Camel-Undertow compo ...)
TODO: check
CVE-2025-2906 (The Contempo Real Estate Core plugin for WordPress is
vulnerable to St ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-2237 (The WP RealEstate plugin for WordPress, used by the Homeo
theme, is vu ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-29208 (CodeZips Gym Management System v1.0 is vulnerable to SQL
injection in ...)
- TODO: check
+ NOT-FOR-US: Codezips
CVE-2025-29069 (A heap buffer overflow vulnerability has been identified in
the lcms2- ...)
TODO: check
CVE-2025-28398 (D-LINK DI-8100 16.07.26A1 is vulnerable to Buffer Overflow in
the ipse ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2025-28395 (D-LINK DI-8100 16.07.26A1 is vulnerable to Buffer Overflow in
the ipse ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2025-28132 (A session management flaw in Nagios Network Analyzer
2024R1.0.3 allows ...)
TODO: check
CVE-2025-28131 (A Broken Access Control vulnerability in Nagios Network
Analyzer 2024R ...)
@@ -361,17 +361,17 @@ CVE-2025-26055 (An OS Command Injection vulnerability
exists in the Infinxt iEdg
CVE-2025-26054 (Infinxt iEdge 100 2.1.32 is vulnerable to Cross Site Scripting
(XSS) v ...)
TODO: check
CVE-2025-25041 (A vulnerability in the HPE Aruba Networking Virtual Intranet
Access (V ...)
- TODO: check
+ NOT-FOR-US: HPE
CVE-2025-22231 (VMware Aria Operations contains a local privilege escalation
vulnerabi ...)
TODO: check
CVE-2025-1660 (A maliciously crafted DWFX file, when parsed through Autodesk
Naviswor ...)
- TODO: check
+ NOT-FOR-US: Autodesk
CVE-2025-1659 (A maliciously crafted DWFX file, when parsed through Autodesk
Naviswor ...)
- TODO: check
+ NOT-FOR-US: Autodesk
CVE-2025-1658 (A maliciously crafted DWFX file, when parsed through Autodesk
Naviswor ...)
- TODO: check
+ NOT-FOR-US: Autodesk
CVE-2024-13553 (The SMS Alert Order Notifications \u2013 WooCommerce plugin
for WordPr ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-21986 (In the Linux kernel, the following vulnerability has been
resolved: n ...)
- linux 6.12.20-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dc1369d7e1c5c0d660e09b27fa54bd088110de0d
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dc1369d7e1c5c0d660e09b27fa54bd088110de0d
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
