Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
e818614b by Salvatore Bonaccorso at 2025-04-24T22:17:10+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,57 +1,57 @@
CVE-2025-46542 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46541 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46540 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46538 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46536 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46534 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46533 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46532 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46531 (Server-Side Request Forgery (SSRF) vulnerability in Ankur
Vishwakarma ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46530 (Cross-Site Request Forgery (CSRF) vulnerability in HuangYe
WuDeng Hack ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46529 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46528 (Cross-Site Request Forgery (CSRF) vulnerability in Steve
Availability ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46525 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46524 (Cross-Site Request Forgery (CSRF) vulnerability in stesvis WP
Filter P ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-46523 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46522 (Cross-Site Request Forgery (CSRF) vulnerability in Billy
Bryant Tabs a ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-46521 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46520 (Cross-Site Request Forgery (CSRF) vulnerability in alphasis
Related Po ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-46519 (Missing Authorization vulnerability in Michael Revellin-Clerc
Media Li ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46517 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46516 (Cross-Site Request Forgery (CSRF) vulnerability in silencecm
Twitter C ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-46514 (Cross-Site Request Forgery (CSRF) vulnerability in milat Milat
jQuery ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-46513 (Cross-Site Request Forgery (CSRF) vulnerability in Codebangers
All in ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46512 (Cross-Site Request Forgery (CSRF) vulnerability in Shamim
Hasan Custom ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-46511 (Server-Side Request Forgery (SSRF) vulnerability in Derek
Springer Bee ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46510 (Cross-Site Request Forgery (CSRF) vulnerability in harrysudana
Contact ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-46509 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46508 (Cross-Site Request Forgery (CSRF) vulnerability in kasonzhao
Advanced ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-46507 (Cross-Site Request Forgery (CSRF) vulnerability in ldrumm
Unsafe Mimet ...)
@@ -59,99 +59,99 @@ CVE-2025-46507 (Cross-Site Request Forgery (CSRF)
vulnerability in ldrumm Unsafe
CVE-2025-46506 (Cross-Site Request Forgery (CSRF) vulnerability in Lora77
WpZon \u2013 ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-46505 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46504 (Cross-Site Request Forgery (CSRF) vulnerability in Olar Marius
Vasaio ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-46503 (Server-Side Request Forgery (SSRF) vulnerability in josheli
Simple Goo ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46502 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-46501 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46499 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-46498 (Cross-Site Request Forgery (CSRF) vulnerability in nghialuu
Zalo Offic ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46497 (Cross-Site Request Forgery (CSRF) vulnerability in Navegg
Navegg Analy ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-46496 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46495 (Cross-Site Request Forgery (CSRF) vulnerability in tomontoast
Drop Cap ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-46492 (Cross-Site Request Forgery (CSRF) vulnerability in Pham Thanh
Call Now ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-46491 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46489 (Missing Authorization vulnerability in vinodvaswani9 Bulk
Assign Linke ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46485 (Missing Authorization vulnerability in Carlo La Pera WP
Customize Logi ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46484 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46483 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46481 (Deserialization of Untrusted Data vulnerability in Michael
Cannon Flic ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46480 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46479 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46478 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46477 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46476 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46475 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46473 (Deserialization of Untrusted Data vulnerability in djjmz
Social Counte ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46472 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46471 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46470 (Missing Authorization vulnerability in Peter Raschendorfer
Smart Hasht ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46469 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46467 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46466 (Cross-Site Request Forgery (CSRF) vulnerability in felixtz
Modern Poll ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-46465 (Cross-Site Request Forgery (CSRF) vulnerability in John
Weissberg Prin ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-46462 (Cross-Site Request Forgery (CSRF) vulnerability in Tr\xe2n
Minh-Qu\xe2 ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46461 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46459 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46457 (Cross-Site Request Forgery (CSRF) vulnerability in
digontoahsan Wp Cus ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-46453 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46452 (Cross-Site Request Forgery (CSRF) vulnerability in Olav Kolbu
Google N ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-46451 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46450 (Cross-Site Request Forgery (CSRF) vulnerability in x000x
occupancyplan ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-46449 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46447 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46445 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46443 (Server-Side Request Forgery (SSRF) vulnerability in Adam Pery
Animate ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46442 (Cross-Site Request Forgery (CSRF) vulnerability in Casey
Johnson Loan ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-46439 (Cross-Site Request Forgery (CSRF) vulnerability in Vladimir
Prelovac P ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-46438 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46436 (Cross-Site Request Forgery (CSRF) vulnerability in Sebastian
Echeverry ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46435 (Cross-Site Request Forgery (CSRF) vulnerability in Yash Binani
Time Ba ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-46421 (A flaw was found in libsoup. When libsoup clients encounter an
HTTP re ...)
@@ -159,17 +159,17 @@ CVE-2025-46421 (A flaw was found in libsoup. When libsoup
clients encounter an H
CVE-2025-46420 (A flaw was found in libsoup. It is vulnerable to memory leaks
in the s ...)
TODO: check
CVE-2025-46264 (Unrestricted Upload of File with Dangerous Type vulnerability
in Angel ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46261 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-46260 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-46248 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-46234 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-46230 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-44135 (A vulnerability was found in code-projects Online Class and
Exam Sched ...)
NOT-FOR-US: code-projects
CVE-2025-44134 (A vulnerability was found in Code-Projects Online Class and
Exam Sched ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e818614b1dcb28e77de5524db2fa8fb14c291faa
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e818614b1dcb28e77de5524db2fa8fb14c291faa
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
