Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
a33146cd by security tracker role at 2025-04-04T20:12:46+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,359 @@
+CVE-2025-3267 (A vulnerability, which was classified as critical, was found in
qinguo ...)
+ TODO: check
+CVE-2025-3266 (A vulnerability, which was classified as critical, has been
found in q ...)
+ TODO: check
+CVE-2025-3265 (A vulnerability classified as critical was found in PHPGurukul
e-Diary ...)
+ TODO: check
+CVE-2025-3259 (A vulnerability, which was classified as critical, has been
found in T ...)
+ TODO: check
+CVE-2025-3258 (A vulnerability classified as critical was found in PHPGurukul
Old Age ...)
+ TODO: check
+CVE-2025-3257 (A vulnerability classified as problematic has been found in
xujiangfei ...)
+ TODO: check
+CVE-2025-3256 (A vulnerability was found in xujiangfei admintwo 1.0. It has
been rate ...)
+ TODO: check
+CVE-2025-3255 (A vulnerability was found in xujiangfei admintwo 1.0. It has
been decl ...)
+ TODO: check
+CVE-2025-3254 (A vulnerability was found in xujiangfei admintwo 1.0. It has
been clas ...)
+ TODO: check
+CVE-2025-3253 (A vulnerability was found in xujiangfei admintwo 1.0 and
classified as ...)
+ TODO: check
+CVE-2025-3252 (A vulnerability has been found in xujiangfei admintwo 1.0 and
classifi ...)
+ TODO: check
+CVE-2025-3251 (A vulnerability, which was classified as problematic, was found
in xuj ...)
+ TODO: check
+CVE-2025-3250 (A vulnerability, which was classified as problematic, has been
found i ...)
+ TODO: check
+CVE-2025-3249 (A vulnerability classified as critical was found in TOTOLINK
A6000R 1. ...)
+ TODO: check
+CVE-2025-3245 (A vulnerability was found in itsourcecode Library Management
System 1. ...)
+ TODO: check
+CVE-2025-3244 (A vulnerability was found in SourceCodester Web-based Pharmacy
Product ...)
+ TODO: check
+CVE-2025-3243 (A vulnerability was found in code-projects Patient Record
Management S ...)
+ TODO: check
+CVE-2025-3242 (A vulnerability has been found in PHPGurukul e-Diary Management
System ...)
+ TODO: check
+CVE-2025-3241 (A vulnerability, which was classified as problematic, was found
in zha ...)
+ TODO: check
+CVE-2025-3240 (A vulnerability, which was classified as critical, has been
found in P ...)
+ TODO: check
+CVE-2025-3239 (A vulnerability classified as critical was found in PHPGurukul
Online ...)
+ TODO: check
+CVE-2025-3238 (A vulnerability classified as critical has been found in
PHPGurukul On ...)
+ TODO: check
+CVE-2025-3237 (A vulnerability was found in Tenda FH1202 1.2.0.14(408). It has
been r ...)
+ TODO: check
+CVE-2025-3236 (A vulnerability was found in Tenda FH1202 1.2.0.14(408). It has
been d ...)
+ TODO: check
+CVE-2025-3235 (A vulnerability was found in PHPGurukul Old Age Home Management
System ...)
+ TODO: check
+CVE-2025-3231 (A vulnerability was found in PHPGurukul Zoo Management System
2.1. It ...)
+ TODO: check
+CVE-2025-3229 (A vulnerability was found in PHPGurukul Restaurant Table
Booking Syste ...)
+ TODO: check
+CVE-2025-3189 (Stored Cross-Site Scripting (XSS) in DoWISP in versions prior
to 1.16. ...)
+ TODO: check
+CVE-2025-32280 (Cross-Site Request Forgery (CSRF) vulnerability in weDevs WP
Project M ...)
+ TODO: check
+CVE-2025-32278 (Cross-Site Request Forgery (CSRF) vulnerability in wprio Table
Block b ...)
+ TODO: check
+CVE-2025-32277 (Missing Authorization vulnerability in Ateeq Rafeeq
RepairBuddy allows ...)
+ TODO: check
+CVE-2025-32276 (Cross-Site Request Forgery (CSRF) vulnerability in Qu\xfd
L\xea 91 Adm ...)
+ TODO: check
+CVE-2025-32274 (Cross-Site Request Forgery (CSRF) vulnerability in axew3 WP
w3all phpB ...)
+ TODO: check
+CVE-2025-32273 (Cross-Site Request Forgery (CSRF) vulnerability in freetobook
Freetobo ...)
+ TODO: check
+CVE-2025-32272 (Cross-Site Request Forgery (CSRF) vulnerability in PickPlugins
Wishlis ...)
+ TODO: check
+CVE-2025-32271 (Cross-Site Request Forgery (CSRF) vulnerability in ablancodev
Woocomme ...)
+ TODO: check
+CVE-2025-32270 (Cross-Site Request Forgery (CSRF) vulnerability in Broadstreet
Broadst ...)
+ TODO: check
+CVE-2025-32269 (Cross-Site Request Forgery (CSRF) vulnerability in CRM Perks
WP Zendes ...)
+ TODO: check
+CVE-2025-32268 (Cross-Site Request Forgery (CSRF) vulnerability in www.15.to
QR Code T ...)
+ TODO: check
+CVE-2025-32267 (Cross-Site Request Forgery (CSRF) vulnerability in wpzinc Post
to Soci ...)
+ TODO: check
+CVE-2025-32266 (Cross-Site Request Forgery (CSRF) vulnerability in wp-buy 404
Image Re ...)
+ TODO: check
+CVE-2025-32265 (Cross-Site Request Forgery (CSRF) vulnerability in Hossni
Mubarak JobW ...)
+ TODO: check
+CVE-2025-32264 (Cross-Site Request Forgery (CSRF) vulnerability in Saiful
Islam UltraA ...)
+ TODO: check
+CVE-2025-32263 (Cross-Site Request Forgery (CSRF) vulnerability in BeRocket
Sequential ...)
+ TODO: check
+CVE-2025-32262 (Cross-Site Request Forgery (CSRF) vulnerability in Robert D
Payne RDP ...)
+ TODO: check
+CVE-2025-32261 (Cross-Site Request Forgery (CSRF) vulnerability in Kuppuraj
Advanced A ...)
+ TODO: check
+CVE-2025-32258 (Missing Authorization vulnerability in InfoGiants Simple
Website Logo ...)
+ TODO: check
+CVE-2025-32257 (Exposure of Sensitive System Information Due to Uncleared
Debug Inform ...)
+ TODO: check
+CVE-2025-32256 (Missing Authorization vulnerability in devsoftbaltic SurveyJS
allows A ...)
+ TODO: check
+CVE-2025-32255 (Exposure of Sensitive System Information to an Unauthorized
Control Sp ...)
+ TODO: check
+CVE-2025-32254 (Missing Authorization vulnerability in Iqonic Design WPBookit
allows A ...)
+ TODO: check
+CVE-2025-32253 (Missing Authorization vulnerability in ComMotion Course
Booking System ...)
+ TODO: check
+CVE-2025-32252 (Missing Authorization vulnerability in blackandwhitedigital WP
Genealo ...)
+ TODO: check
+CVE-2025-32251 (Exposure of Sensitive System Information to an Unauthorized
Control Sp ...)
+ TODO: check
+CVE-2025-32250 (Cross-Site Request Forgery (CSRF) vulnerability in rollbar
Rollbar all ...)
+ TODO: check
+CVE-2025-32249 (Cross-Site Request Forgery (CSRF) vulnerability in
designinvento Direc ...)
+ TODO: check
+CVE-2025-32248 (Cross-Site Request Forgery (CSRF) vulnerability in SwiftXR
SwiftXR (3D ...)
+ TODO: check
+CVE-2025-32247 (Cross-Site Request Forgery (CSRF) vulnerability in ABCdatos AI
Content ...)
+ TODO: check
+CVE-2025-32246 (Missing Authorization vulnerability in Tim Nguyen 1-Click
Backup & ...)
+ TODO: check
+CVE-2025-32241 (Cross-Site Request Forgery (CSRF) vulnerability in
CleverReach\xae Off ...)
+ TODO: check
+CVE-2025-32239 (Missing Authorization vulnerability in Joao Romao Social Share
Buttons ...)
+ TODO: check
+CVE-2025-32238 (Generation of Error Message Containing Sensitive Information
vulnerabi ...)
+ TODO: check
+CVE-2025-32237 (Missing Authorization vulnerability in Stylemix MasterStudy
LMS allows ...)
+ TODO: check
+CVE-2025-32235 (Missing Authorization vulnerability in sonaar MP3 Audio Player
for Mus ...)
+ TODO: check
+CVE-2025-32234 (Missing Authorization vulnerability in aleswebs AdMail \u2013
Multilin ...)
+ TODO: check
+CVE-2025-32233 (Missing Authorization vulnerability in WP Chill Revive.so
\u2013 Bulk ...)
+ TODO: check
+CVE-2025-32232 (Missing Authorization vulnerability in ERA404 StaffList allows
Exploit ...)
+ TODO: check
+CVE-2025-32231 (Missing Authorization vulnerability in Bookingor Bookingor
allows Expl ...)
+ TODO: check
+CVE-2025-32229 (Missing Authorization vulnerability in Bowo Variable Inspector
allows ...)
+ TODO: check
+CVE-2025-32226 (Missing Authorization vulnerability in Anzar Ahmed Display
product var ...)
+ TODO: check
+CVE-2025-32225 (Missing Authorization vulnerability in WP Event Manager WP
Event Manag ...)
+ TODO: check
+CVE-2025-32224 (Missing Authorization vulnerability in shivammani Privyr CRM
allows Ex ...)
+ TODO: check
+CVE-2025-32220 (Missing Authorization vulnerability in Dimitri Grassi Salon
booking sy ...)
+ TODO: check
+CVE-2025-32219 (Missing Authorization vulnerability in Syntactics, Inc. eaSYNC
allows ...)
+ TODO: check
+CVE-2025-32218 (Missing Authorization vulnerability in RealMag777 TableOn
\u2013 WordP ...)
+ TODO: check
+CVE-2025-32217 (Missing Authorization vulnerability in WP Messiah Ai Image Alt
Text Ge ...)
+ TODO: check
+CVE-2025-32207 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-32204 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2025-32203 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2025-32201 (Missing Authorization vulnerability in Xpro Xpro Theme Builder
allows ...)
+ TODO: check
+CVE-2025-32200 (Improper Neutralization of Script-Related HTML Tags in a Web
Page (Bas ...)
+ TODO: check
+CVE-2025-32197 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-32196 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-32195 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-32194 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-32193 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-32192 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-32191 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-32190 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-32189 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-32188 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-32187 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-32186 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-32185 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-32184 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-32183 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-32182 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-32181 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-32179 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-32178 (Missing Authorization vulnerability in 6Storage 6Storage
Rentals allow ...)
+ TODO: check
+CVE-2025-32177 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-32176 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-32175 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-32174 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-32173 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-32172 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-32171 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-32170 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-32169 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-32168 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-32167 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-32166 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-32165 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-32163 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-32162 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-32161 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-32159 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
+ TODO: check
+CVE-2025-32157 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
+ TODO: check
+CVE-2025-32156 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
+ TODO: check
+CVE-2025-32155 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
+ TODO: check
+CVE-2025-32154 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
+ TODO: check
+CVE-2025-32153 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
+ TODO: check
+CVE-2025-32152 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
+ TODO: check
+CVE-2025-32151 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
+ TODO: check
+CVE-2025-32150 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
+ TODO: check
+CVE-2025-32149 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2025-32148 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2025-32147 (Missing Authorization vulnerability in coothemes Easy WP
Optimizer all ...)
+ TODO: check
+CVE-2025-32146 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
+ TODO: check
+CVE-2025-32142 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
+ TODO: check
+CVE-2025-32141 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
+ TODO: check
+CVE-2025-32138 (Improper Restriction of XML External Entity Reference
vulnerability in ...)
+ TODO: check
+CVE-2025-32137 (Relative Path Traversal vulnerability in Cristi\xe1n
L\xe1vaque s2Memb ...)
+ TODO: check
+CVE-2025-32136 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-32135 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-32134 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-32133 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-32132 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-32131 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-32130 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-32129 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-32127 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2025-32126 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2025-32125 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2025-32124 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2025-32122 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2025-32121 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2025-32120 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2025-32118 (Unrestricted Upload of File with Dangerous Type vulnerability
in Niteo ...)
+ TODO: check
+CVE-2025-32113 (Cross-Site Request Forgery (CSRF) vulnerability in Renzo
Tejada Libro ...)
+ TODO: check
+CVE-2025-32112 (Cross-Site Request Forgery (CSRF) vulnerability in OTWthemes
Sidebar M ...)
+ TODO: check
+CVE-2025-31480 (aiven-extras is a PostgreSQL extension. This is a privilege
escalation ...)
+ TODO: check
+CVE-2025-31421 (Insertion of Sensitive Information into Externally-Accessible
File or ...)
+ TODO: check
+CVE-2025-31420 (Incorrect Privilege Assignment vulnerability in Tomdever
wpForo Forum ...)
+ TODO: check
+CVE-2025-31418 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-31416 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-31407 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-31405 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
+ TODO: check
+CVE-2025-31403 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2025-31389 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-31384 (Improper Neutralization of Script-Related HTML Tags in a Web
Page (Bas ...)
+ TODO: check
+CVE-2025-31381 (Missing Authorization vulnerability in shiptrack Booking
Calendar and ...)
+ TODO: check
+CVE-2025-31130 (gitoxide is an implementation of git written in Rust. Before
0.42.0, g ...)
+ TODO: check
+CVE-2025-2798 (The Woffice CRM theme for WordPress is vulnerable to
Authentication By ...)
+ TODO: check
+CVE-2025-2245 (A server-side request forgery (SSRF) vulnerability exists in
the Bitde ...)
+ TODO: check
+CVE-2025-2244 (A vulnerability in thesendMailFromRemoteSourcemethod in
Emails.php as ...)
+ TODO: check
+CVE-2025-2243 (A server-side request forgery (SSRF) vulnerability in
Bitdefender Grav ...)
+ TODO: check
+CVE-2025-29477 (An issue in fluent-bit v.3.7.2 allows a local attacker to
cause a deni ...)
+ TODO: check
+CVE-2025-29476 (Buffer Overflow vulnerability in compress_chunk_fuzzer with
oss-fuzz o ...)
+ TODO: check
+CVE-2025-28146 (Edimax AC1200 Wave 2 Dual-Band Gigabit Router BR-6478AC V3
1.0.15 was ...)
+ TODO: check
+CVE-2025-27520 (BentoML is a Python library for building online serving
systems optimi ...)
+ TODO: check
+CVE-2025-25178 (Software installed and run as a non-privileged user may
conduct improp ...)
+ TODO: check
+CVE-2025-22285 (Missing Authorization vulnerability in Eniture Technology
Pallet Packa ...)
+ TODO: check
+CVE-2025-22282 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-22281 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-1865 (The kernel driver, accessible to low-privileged users, exposes
a funct ...)
+ TODO: check
+CVE-2025-0468 (Software installed and run as a non-privileged user may conduct
improp ...)
+ TODO: check
+CVE-2024-51800 (Incorrect Privilege Assignment vulnerability in Favethemes
Homey allow ...)
+ TODO: check
CVE-2025-3220 (A vulnerability was found in PHPGurukul e-Diary Management
System 1.0. ...)
NOT-FOR-US: PHPGurukul
CVE-2025-3219 (A vulnerability was found in CodeCanyon Perfex CRM 3.2.1. It
has been ...)
@@ -2992,7 +3348,7 @@ CVE-2025-2861 (SaTECH BCU in its firmware version 2.1.3
uses the HTTP protocol.
NOT-FOR-US: SaTECH BCU
CVE-2025-2860 (SaTECH BCU in its firmware version 2.1.3, allows an
authenticated atta ...)
NOT-FOR-US: SaTECH BCU
-CVE-2025-2859 (An attacker with access to the network where the vulnerable
device is ...)
+CVE-2025-2859 (An attacker with networkaccess,could capture traffic and obtain
user c ...)
NOT-FOR-US: saTECH BCU
CVE-2025-2858 (Privilege escalation vulnerability in the saTECH BCU firmware
version ...)
NOT-FOR-US: saTECH BCU
@@ -4236,7 +4592,8 @@ CVE-2025-30164 (Icinga Web 2 is an open source monitoring
web interface, framewo
NOTE:
https://github.com/Icinga/icingaweb2/security/advisories/GHSA-8r73-6686-wv8q
CVE-2025-30073 (An issue was discovered in OPC cardsystems Webapp Aufwertung
2.1.0. Th ...)
NOT-FOR-US: OPC cardsystems Webapp Aufwertung
-CVE-2025-2825 (CrushFTP versions 10.0.0 through 10.8.3 and 11.0.0 through
11.3.0 are ...)
+CVE-2025-2825
+ REJECTED
NOT-FOR-US: CrushFTP
CVE-2025-2820 (An authenticated attacker can compromise the availability of
the devic ...)
NOT-FOR-US: Bizerba
@@ -7418,7 +7775,7 @@ CVE-2024-11284 (The WP JobHunt plugin for WordPress is
vulnerable to privilege e
NOT-FOR-US: WordPress plugin
CVE-2024-11283 (The WP JobHunt plugin for WordPress is vulnerable to
authentication by ...)
NOT-FOR-US: WordPress plugin
-CVE-2024-11235
+CVE-2024-11235 (In PHP versions 8.3.* before 8.3.19 and 8.4.* before 8.4.5, a
code seq ...)
- php8.4 8.4.5-1
NOTE:
https://github.com/php/php-src/security/advisories/GHSA-rwp7-7vc6-8477
CVE-2025-1861 (In PHP from 8.1.* before 8.1.32, from 8.2.* before 8.2.28, from
8.3.* ...)
@@ -18107,7 +18464,8 @@ CVE-2025-21700 (In the Linux kernel, the following
vulnerability has been resolv
NOTE:
https://git.kernel.org/linus/bc50835e83f60f56e9bec2b392fb5544f250fb6f (6.14-rc1)
CVE-2024-3303 (An issue was discovered in GitLab EE affecting all versions
starting f ...)
- gitlab <not-affected> (Specific to EE)
-CVE-2025-0998 (Out of bounds memory access in V8 in Google Chrome prior to
133.0.6943 ...)
+CVE-2025-0998
+ REJECTED
{DSA-5866-1}
- chromium 133.0.6943.98-1
[bullseye] - chromium <end-of-life> (see #1061268)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a33146cdea58d2bf5e84067fbbad853375f1747e
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a33146cdea58d2bf5e84067fbbad853375f1747e
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
