Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
66dd2da0 by Salvatore Bonaccorso at 2025-04-07T08:25:10+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,7 +1,7 @@
CVE-2025-3318 (A vulnerability classified as critical was found in Kenj_Frog
\u80af\u ...)
- TODO: check
+ NOT-FOR-US: Kenj_Frog company-financial-management
CVE-2025-3317 (A vulnerability classified as problematic has been found in
fumiao ope ...)
- TODO: check
+ NOT-FOR-US: fumiao opencms
CVE-2025-3316 (A vulnerability was found in PHPGurukul Men Salon Management
System 1. ...)
NOT-FOR-US: PHPGurukul
CVE-2025-3315 (A vulnerability was found in SourceCodester Apartment Visitor
Manageme ...)
@@ -9,17 +9,17 @@ CVE-2025-3315 (A vulnerability was found in SourceCodester
Apartment Visitor Man
CVE-2025-3314 (A vulnerability has been found in SourceCodester Apartment
Visitor Man ...)
NOT-FOR-US: SourceCodester
CVE-2025-32013 (LNbits is a Lightning wallet and accounts system. A
Server-Side Reques ...)
- TODO: check
+ NOT-FOR-US: LNbits
CVE-2025-31492 (mod_auth_openidc is an OpenID Certified authentication and
authorizati ...)
TODO: check
CVE-2025-31488 (Plain Craft Launcher (PCL) is a launcher for Minecraft. PCL
allows use ...)
TODO: check
CVE-2025-2260 (In NetX HTTP server functionality of Eclipse ThreadX NetX Duo
before ...)
- TODO: check
+ NOT-FOR-US: Eclipse ThreadX NetX Duo
CVE-2025-2259 (In NetX HTTP server functionality of Eclipse ThreadX NetX Duo
before ...)
- TODO: check
+ NOT-FOR-US: Eclipse ThreadX NetX Duo
CVE-2025-2258 (In NetX Duo component HTTP server functionality of Eclipse
ThreadX Net ...)
- TODO: check
+ NOT-FOR-US: Eclipse ThreadX NetX Duo
CVE-2025-3313 (A vulnerability, which was classified as critical, was found in
PHPGur ...)
NOT-FOR-US: PHPGurukul
CVE-2025-3312 (A vulnerability, which was classified as critical, has been
found in P ...)
@@ -68,9 +68,9 @@ CVE-2025-32357 (In Zammad 6.4.x before 6.4.2, an
authenticated agent with knowle
CVE-2025-1264 (The Broken Link Checker by AIOSEO \u2013 Easily Fix/Monitor
Internal a ...)
NOT-FOR-US: WordPress plugin
CVE-2024-58133 (In chainmaker-go (aka ChainMaker) before 2.4.0, when making
frequent u ...)
- TODO: check
+ NOT-FOR-US: chainmaker-go (aka ChainMaker)
CVE-2024-58132 (In chainmaker-go (aka ChainMaker) before 2.3.6, multiple
updates to a ...)
- TODO: check
+ NOT-FOR-US: chainmaker-go (aka ChainMaker)
CVE-2024-58131 (FISCO BCOS 3.11.0 has an issue with synchronization of the
transaction ...)
NOT-FOR-US: FISCO BCOS
CVE-2025-3299 (A vulnerability was found in PHPGurukul Men Salon Management
System 1. ...)
@@ -573,9 +573,9 @@ CVE-2025-3087 (Stored XSS in M-Files Web versions from
25.1.14445.5 to 25.2.1452
CVE-2025-3086 (Improper isolation of users in M-Files Server version before
25.3.1454 ...)
NOT-FOR-US: M-Files
CVE-2025-32111 (The Docker image from acme.sh before 40b6db6 is based on a
.github/wor ...)
- TODO: check
+ NOT-FOR-US: Docker image from acme.sh
CVE-2025-30370 (jupyterlab-git is a JupyterLab extension for version control
using Git ...)
- TODO: check
+ NOT-FOR-US: jupyterlab-git JupyterLab extension
CVE-2025-2836 (The RegistrationMagic \u2013 Custom Registration Forms, User
Registrat ...)
NOT-FOR-US: WordPress plugin
CVE-2025-2797 (The Woffice Core plugin for WordPress is vulnerable to
Cross-Site Requ ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/66dd2da068657eca39ffed2e439000435ee0198d
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/66dd2da068657eca39ffed2e439000435ee0198d
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
