Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
5cc83e4d by Salvatore Bonaccorso at 2025-04-04T22:32:07+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -3,11 +3,11 @@ CVE-2025-3267 (A vulnerability, which was classified as
critical, was found in q
CVE-2025-3266 (A vulnerability, which was classified as critical, has been
found in q ...)
TODO: check
CVE-2025-3265 (A vulnerability classified as critical was found in PHPGurukul
e-Diary ...)
- TODO: check
+ NOT-FOR-US: PHPGurukul
CVE-2025-3259 (A vulnerability, which was classified as critical, has been
found in T ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2025-3258 (A vulnerability classified as critical was found in PHPGurukul
Old Age ...)
- TODO: check
+ NOT-FOR-US: PHPGurukul
CVE-2025-3257 (A vulnerability classified as problematic has been found in
xujiangfei ...)
TODO: check
CVE-2025-3256 (A vulnerability was found in xujiangfei admintwo 1.0. It has
been rate ...)
@@ -25,313 +25,313 @@ CVE-2025-3251 (A vulnerability, which was classified as
problematic, was found i
CVE-2025-3250 (A vulnerability, which was classified as problematic, has been
found i ...)
TODO: check
CVE-2025-3249 (A vulnerability classified as critical was found in TOTOLINK
A6000R 1. ...)
- TODO: check
+ NOT-FOR-US: TOTOLINK
CVE-2025-3245 (A vulnerability was found in itsourcecode Library Management
System 1. ...)
- TODO: check
+ NOT-FOR-US: itsourcecode System
CVE-2025-3244 (A vulnerability was found in SourceCodester Web-based Pharmacy
Product ...)
- TODO: check
+ NOT-FOR-US: SourceCodester
CVE-2025-3243 (A vulnerability was found in code-projects Patient Record
Management S ...)
- TODO: check
+ NOT-FOR-US: code-projects
CVE-2025-3242 (A vulnerability has been found in PHPGurukul e-Diary Management
System ...)
- TODO: check
+ NOT-FOR-US: PHPGurukul
CVE-2025-3241 (A vulnerability, which was classified as problematic, was found
in zha ...)
TODO: check
CVE-2025-3240 (A vulnerability, which was classified as critical, has been
found in P ...)
- TODO: check
+ NOT-FOR-US: PHPGurukul
CVE-2025-3239 (A vulnerability classified as critical was found in PHPGurukul
Online ...)
- TODO: check
+ NOT-FOR-US: PHPGurukul
CVE-2025-3238 (A vulnerability classified as critical has been found in
PHPGurukul On ...)
- TODO: check
+ NOT-FOR-US: PHPGurukul
CVE-2025-3237 (A vulnerability was found in Tenda FH1202 1.2.0.14(408). It has
been r ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2025-3236 (A vulnerability was found in Tenda FH1202 1.2.0.14(408). It has
been d ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2025-3235 (A vulnerability was found in PHPGurukul Old Age Home Management
System ...)
- TODO: check
+ NOT-FOR-US: PHPGurukul
CVE-2025-3231 (A vulnerability was found in PHPGurukul Zoo Management System
2.1. It ...)
- TODO: check
+ NOT-FOR-US: PHPGurukul
CVE-2025-3229 (A vulnerability was found in PHPGurukul Restaurant Table
Booking Syste ...)
- TODO: check
+ NOT-FOR-US: PHPGurukul
CVE-2025-3189 (Stored Cross-Site Scripting (XSS) in DoWISP in versions prior
to 1.16. ...)
TODO: check
CVE-2025-32280 (Cross-Site Request Forgery (CSRF) vulnerability in weDevs WP
Project M ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32278 (Cross-Site Request Forgery (CSRF) vulnerability in wprio Table
Block b ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32277 (Missing Authorization vulnerability in Ateeq Rafeeq
RepairBuddy allows ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32276 (Cross-Site Request Forgery (CSRF) vulnerability in Qu\xfd
L\xea 91 Adm ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32274 (Cross-Site Request Forgery (CSRF) vulnerability in axew3 WP
w3all phpB ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32273 (Cross-Site Request Forgery (CSRF) vulnerability in freetobook
Freetobo ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32272 (Cross-Site Request Forgery (CSRF) vulnerability in PickPlugins
Wishlis ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32271 (Cross-Site Request Forgery (CSRF) vulnerability in ablancodev
Woocomme ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32270 (Cross-Site Request Forgery (CSRF) vulnerability in Broadstreet
Broadst ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32269 (Cross-Site Request Forgery (CSRF) vulnerability in CRM Perks
WP Zendes ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32268 (Cross-Site Request Forgery (CSRF) vulnerability in www.15.to
QR Code T ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32267 (Cross-Site Request Forgery (CSRF) vulnerability in wpzinc Post
to Soci ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32266 (Cross-Site Request Forgery (CSRF) vulnerability in wp-buy 404
Image Re ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32265 (Cross-Site Request Forgery (CSRF) vulnerability in Hossni
Mubarak JobW ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32264 (Cross-Site Request Forgery (CSRF) vulnerability in Saiful
Islam UltraA ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32263 (Cross-Site Request Forgery (CSRF) vulnerability in BeRocket
Sequential ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32262 (Cross-Site Request Forgery (CSRF) vulnerability in Robert D
Payne RDP ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32261 (Cross-Site Request Forgery (CSRF) vulnerability in Kuppuraj
Advanced A ...)
TODO: check
CVE-2025-32258 (Missing Authorization vulnerability in InfoGiants Simple
Website Logo ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32257 (Exposure of Sensitive System Information Due to Uncleared
Debug Inform ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32256 (Missing Authorization vulnerability in devsoftbaltic SurveyJS
allows A ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32255 (Exposure of Sensitive System Information to an Unauthorized
Control Sp ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32254 (Missing Authorization vulnerability in Iqonic Design WPBookit
allows A ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32253 (Missing Authorization vulnerability in ComMotion Course
Booking System ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32252 (Missing Authorization vulnerability in blackandwhitedigital WP
Genealo ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32251 (Exposure of Sensitive System Information to an Unauthorized
Control Sp ...)
TODO: check
CVE-2025-32250 (Cross-Site Request Forgery (CSRF) vulnerability in rollbar
Rollbar all ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32249 (Cross-Site Request Forgery (CSRF) vulnerability in
designinvento Direc ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32248 (Cross-Site Request Forgery (CSRF) vulnerability in SwiftXR
SwiftXR (3D ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32247 (Cross-Site Request Forgery (CSRF) vulnerability in ABCdatos AI
Content ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32246 (Missing Authorization vulnerability in Tim Nguyen 1-Click
Backup & ...)
TODO: check
CVE-2025-32241 (Cross-Site Request Forgery (CSRF) vulnerability in
CleverReach\xae Off ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32239 (Missing Authorization vulnerability in Joao Romao Social Share
Buttons ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32238 (Generation of Error Message Containing Sensitive Information
vulnerabi ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32237 (Missing Authorization vulnerability in Stylemix MasterStudy
LMS allows ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32235 (Missing Authorization vulnerability in sonaar MP3 Audio Player
for Mus ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32234 (Missing Authorization vulnerability in aleswebs AdMail \u2013
Multilin ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32233 (Missing Authorization vulnerability in WP Chill Revive.so
\u2013 Bulk ...)
TODO: check
CVE-2025-32232 (Missing Authorization vulnerability in ERA404 StaffList allows
Exploit ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32231 (Missing Authorization vulnerability in Bookingor Bookingor
allows Expl ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32229 (Missing Authorization vulnerability in Bowo Variable Inspector
allows ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32226 (Missing Authorization vulnerability in Anzar Ahmed Display
product var ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32225 (Missing Authorization vulnerability in WP Event Manager WP
Event Manag ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32224 (Missing Authorization vulnerability in shivammani Privyr CRM
allows Ex ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32220 (Missing Authorization vulnerability in Dimitri Grassi Salon
booking sy ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32219 (Missing Authorization vulnerability in Syntactics, Inc. eaSYNC
allows ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32218 (Missing Authorization vulnerability in RealMag777 TableOn
\u2013 WordP ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32217 (Missing Authorization vulnerability in WP Messiah Ai Image Alt
Text Ge ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32207 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32204 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32203 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32201 (Missing Authorization vulnerability in Xpro Xpro Theme Builder
allows ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32200 (Improper Neutralization of Script-Related HTML Tags in a Web
Page (Bas ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32197 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32196 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32195 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32194 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32193 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32192 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32191 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32190 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32189 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32188 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32187 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32186 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32185 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32184 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32183 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32182 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32181 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32179 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32178 (Missing Authorization vulnerability in 6Storage 6Storage
Rentals allow ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32177 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32176 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32175 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32174 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32173 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32172 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32171 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32170 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32169 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32168 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32167 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32166 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32165 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32163 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32162 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32161 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
TODO: check
CVE-2025-32159 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32157 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32156 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32155 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32154 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32153 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32152 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32151 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32150 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32149 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32148 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32147 (Missing Authorization vulnerability in coothemes Easy WP
Optimizer all ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32146 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32142 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32141 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32138 (Improper Restriction of XML External Entity Reference
vulnerability in ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32137 (Relative Path Traversal vulnerability in Cristi\xe1n
L\xe1vaque s2Memb ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32136 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32135 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32134 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32133 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32132 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32131 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32130 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32129 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32127 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32126 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32125 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32124 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32122 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32121 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32120 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
TODO: check
CVE-2025-32118 (Unrestricted Upload of File with Dangerous Type vulnerability
in Niteo ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32113 (Cross-Site Request Forgery (CSRF) vulnerability in Renzo
Tejada Libro ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-32112 (Cross-Site Request Forgery (CSRF) vulnerability in OTWthemes
Sidebar M ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31480 (aiven-extras is a PostgreSQL extension. This is a privilege
escalation ...)
TODO: check
CVE-2025-31421 (Insertion of Sensitive Information into Externally-Accessible
File or ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31420 (Incorrect Privilege Assignment vulnerability in Tomdever
wpForo Forum ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31418 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31416 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31407 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31405 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31403 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31389 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31384 (Improper Neutralization of Script-Related HTML Tags in a Web
Page (Bas ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31381 (Missing Authorization vulnerability in shiptrack Booking
Calendar and ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-31130 (gitoxide is an implementation of git written in Rust. Before
0.42.0, g ...)
TODO: check
CVE-2025-2798 (The Woffice CRM theme for WordPress is vulnerable to
Authentication By ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-2245 (A server-side request forgery (SSRF) vulnerability exists in
the Bitde ...)
- TODO: check
+ NOT-FOR-US: Bitdefender
CVE-2025-2244 (A vulnerability in thesendMailFromRemoteSourcemethod in
Emails.php as ...)
- TODO: check
+ NOT-FOR-US: Bitdefender
CVE-2025-2243 (A server-side request forgery (SSRF) vulnerability in
Bitdefender Grav ...)
- TODO: check
+ NOT-FOR-US: Bitdefender
CVE-2025-29477 (An issue in fluent-bit v.3.7.2 allows a local attacker to
cause a deni ...)
TODO: check
CVE-2025-29476 (Buffer Overflow vulnerability in compress_chunk_fuzzer with
oss-fuzz o ...)
@@ -341,19 +341,19 @@ CVE-2025-28146 (Edimax AC1200 Wave 2 Dual-Band Gigabit
Router BR-6478AC V3 1.0.1
CVE-2025-27520 (BentoML is a Python library for building online serving
systems optimi ...)
TODO: check
CVE-2025-25178 (Software installed and run as a non-privileged user may
conduct improp ...)
- TODO: check
+ NOT-FOR-US: Imagination Technologies
CVE-2025-22285 (Missing Authorization vulnerability in Eniture Technology
Pallet Packa ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-22282 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-22281 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-1865 (The kernel driver, accessible to low-privileged users, exposes
a funct ...)
TODO: check
CVE-2025-0468 (Software installed and run as a non-privileged user may conduct
improp ...)
- TODO: check
+ NOT-FOR-US: Imagination Technologies
CVE-2024-51800 (Incorrect Privilege Assignment vulnerability in Favethemes
Homey allow ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-3220 (A vulnerability was found in PHPGurukul e-Diary Management
System 1.0. ...)
NOT-FOR-US: PHPGurukul
CVE-2025-3219 (A vulnerability was found in CodeCanyon Perfex CRM 3.2.1. It
has been ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5cc83e4d124d6f74ea1bf86dfe07b49cdba1e455
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5cc83e4d124d6f74ea1bf86dfe07b49cdba1e455
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
