[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) Thu, 02 Oct 2025 13:22:25 -0700


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
8e4ddd9e by Salvatore Bonaccorso at 2025-10-02T22:21:51+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,19 +1,19 @@
 CVE-2025-61735 (Server-Side Request Forgery (SSRF) vulnerability in Apache 
Kylin.  Thi ...)
-       TODO: check
+       NOT-FOR-US: Apache software not packaged in Debian
 CVE-2025-61734 (Files or Directories Accessible to External Parties 
vulnerability in A ...)
-       TODO: check
+       NOT-FOR-US: Apache software not packaged in Debian
 CVE-2025-61733 (Authentication Bypass Using an Alternate Path or Channel 
vulnerability ...)
-       TODO: check
+       NOT-FOR-US: Apache software not packaged in Debian
 CVE-2025-61603 (WeGIA is a Web manager for charitable institutions. Versions 
3.4.12 an ...)
        NOT-FOR-US: WeGIA
 CVE-2025-61595 (MANTRA is a purpose-built RWA Layer 1 Blockchain, capable of 
adherence ...)
-       TODO: check
+       NOT-FOR-US: MANTRA
 CVE-2025-61096 (PHPGurukul Online Shopping Portal Project v2.1 is vulnerable 
to SQL In ...)
        NOT-FOR-US: PHPGurukul
 CVE-2025-61087 (SourceCodester Pet Grooming Management Software 1.0 is 
vulnerable to C ...)
        NOT-FOR-US: SourceCodester
 CVE-2025-60782 (PHP Education Manager v1.0 is vulnerable to Cross Site 
Scripting (XSS) ...)
-       TODO: check
+       NOT-FOR-US: PHP Education Manager
 CVE-2025-60663 (Tenda AC18 V15.03.05.19 was discovered to contain a stack 
overflow via ...)
        NOT-FOR-US: Tenda
 CVE-2025-60662 (Tenda AC18 V15.03.05.19 was discovered to contain a stack 
overflow via ...)
@@ -23,87 +23,87 @@ CVE-2025-60661 (Tenda AC18 V15.03.05.19 was discovered to 
contain a stack overfl
 CVE-2025-60660 (Tenda AC18 V15.03.05.19 was discovered to contain a stack 
overflow via ...)
        NOT-FOR-US: Tenda
 CVE-2025-59835 (LangBot is a global IM bot platform designed for LLMs. In 
versions 4.1 ...)
-       TODO: check
+       NOT-FOR-US: LangBot
 CVE-2025-59774 (Cross-site scripting (XSS) vulnerability reflected in 
AndSoft's e-TMS  ...)
-       TODO: check
+       NOT-FOR-US: AndSoft
 CVE-2025-59773 (Cross-site scripting (XSS) vulnerability reflected in 
AndSoft's e-TMS  ...)
-       TODO: check
+       NOT-FOR-US: AndSoft
 CVE-2025-59772 (Cross-site scripting (XSS) vulnerability reflected in 
AndSoft's e-TMS  ...)
-       TODO: check
+       NOT-FOR-US: AndSoft
 CVE-2025-59771 (Cross-site scripting (XSS) vulnerability reflected in 
AndSoft's e-TMS  ...)
-       TODO: check
+       NOT-FOR-US: AndSoft
 CVE-2025-59770 (Cross-site scripting (XSS) vulnerability reflected in 
AndSoft's e-TMS  ...)
-       TODO: check
+       NOT-FOR-US: AndSoft
 CVE-2025-59769 (Cross-site scripting (XSS) vulnerability reflected in 
AndSoft's e-TMS  ...)
-       TODO: check
+       NOT-FOR-US: AndSoft
 CVE-2025-59768 (Cross-site scripting (XSS) vulnerability reflected in 
AndSoft's e-TMS  ...)
-       TODO: check
+       NOT-FOR-US: AndSoft
 CVE-2025-59767 (Cross-site scripting (XSS) vulnerability reflected in 
AndSoft's e-TMS  ...)
-       TODO: check
+       NOT-FOR-US: AndSoft
 CVE-2025-59766 (Cross-site scripting (XSS) vulnerability reflected in 
AndSoft's e-TMS  ...)
-       TODO: check
+       NOT-FOR-US: AndSoft
 CVE-2025-59765 (Cross-site scripting (XSS) vulnerability reflected in 
AndSoft's e-TMS  ...)
-       TODO: check
+       NOT-FOR-US: AndSoft
 CVE-2025-59764 (Cross-site scripting (XSS) vulnerability reflected in 
AndSoft's e-TMS  ...)
-       TODO: check
+       NOT-FOR-US: AndSoft
 CVE-2025-59763 (Cross-site scripting (XSS) vulnerability reflected in 
AndSoft's e-TMS  ...)
-       TODO: check
+       NOT-FOR-US: AndSoft
 CVE-2025-59762 (Cross-site scripting (XSS) vulnerability reflected in 
AndSoft's e-TMS  ...)
-       TODO: check
+       NOT-FOR-US: AndSoft
 CVE-2025-59761 (Cross-site scripting (XSS) vulnerability reflected in 
AndSoft's e-TMS  ...)
-       TODO: check
+       NOT-FOR-US: AndSoft
 CVE-2025-59760 (Cross-site scripting (XSS) vulnerability reflected in 
AndSoft's e-TMS  ...)
-       TODO: check
+       NOT-FOR-US: AndSoft
 CVE-2025-59759 (Cross-site scripting (XSS) vulnerability reflected in 
AndSoft's e-TMS  ...)
-       TODO: check
+       NOT-FOR-US: AndSoft
 CVE-2025-59758 (Cross-site scripting (XSS) vulnerability reflected in 
AndSoft's e-TMS  ...)
-       TODO: check
+       NOT-FOR-US: AndSoft
 CVE-2025-59757 (Cross-site scripting (XSS) vulnerability reflected in 
AndSoft's e-TMS  ...)
-       TODO: check
+       NOT-FOR-US: AndSoft
 CVE-2025-59756 (Cross-site scripting (XSS) vulnerability reflected in 
AndSoft's e-TMS  ...)
-       TODO: check
+       NOT-FOR-US: AndSoft
 CVE-2025-59755 (Cross-site scripting (XSS) vulnerability reflected in 
AndSoft's e-TMS  ...)
-       TODO: check
+       NOT-FOR-US: AndSoft
 CVE-2025-59754 (Cross-site scripting (XSS) vulnerability reflected in 
AndSoft's e-TMS  ...)
-       TODO: check
+       NOT-FOR-US: AndSoft
 CVE-2025-59753 (Cross-site scripting (XSS) vulnerability reflected in 
AndSoft's e-TMS  ...)
-       TODO: check
+       NOT-FOR-US: AndSoft
 CVE-2025-59752 (Cross-site scripting (XSS) vulnerability reflected in 
AndSoft's e-TMS  ...)
-       TODO: check
+       NOT-FOR-US: AndSoft
 CVE-2025-59751 (Cross-site scripting (XSS) vulnerability reflected in 
AndSoft's e-TMS  ...)
-       TODO: check
+       NOT-FOR-US: AndSoft
 CVE-2025-59750 (Cross-site scripting (XSS) vulnerability reflected in 
AndSoft's e-TMS  ...)
-       TODO: check
+       NOT-FOR-US: AndSoft
 CVE-2025-59749 (Cross-site scripting (XSS) vulnerability reflected in 
AndSoft's e-TMS  ...)
-       TODO: check
+       NOT-FOR-US: AndSoft
 CVE-2025-59748 (Cross-site scripting (XSS) vulnerability reflected in 
AndSoft's e-TMS  ...)
-       TODO: check
+       NOT-FOR-US: AndSoft
 CVE-2025-59747 (Cross-site scripting (XSS) vulnerability reflected in 
AndSoft's e-TMS  ...)
-       TODO: check
+       NOT-FOR-US: AndSoft
 CVE-2025-59746 (Cross-site scripting (XSS) vulnerability reflected in 
AndSoft's e-TMS  ...)
-       TODO: check
+       NOT-FOR-US: AndSoft
 CVE-2025-59745 (Vulnerability in the cryptographic algorithm of AndSoft's 
e-TMS v25.03 ...)
-       TODO: check
+       NOT-FOR-US: AndSoft
 CVE-2025-59744 (Path traversal vulnerability in AndSoft's e-TMS v25.03. This 
vulnerabi ...)
-       TODO: check
+       NOT-FOR-US: AndSoft
 CVE-2025-59743 (SQL injection vulnerability in AndSoft's e-TMS v25.03. This 
vulnerabil ...)
-       TODO: check
+       NOT-FOR-US: AndSoft
 CVE-2025-59742 (SQL injection vulnerability in AndSoft's e-TMS v25.03. This 
vulnerabil ...)
-       TODO: check
+       NOT-FOR-US: AndSoft
 CVE-2025-59741 (Operating system command injection vulnerability in AndSoft's 
e-TMS v2 ...)
-       TODO: check
+       NOT-FOR-US: AndSoft
 CVE-2025-59740 (Operating system command injection vulnerability in AndSoft's 
e-TMS v2 ...)
-       TODO: check
+       NOT-FOR-US: AndSoft
 CVE-2025-59739 (Operating system command injection vulnerability in AndSoft's 
e-TMS v2 ...)
-       TODO: check
+       NOT-FOR-US: AndSoft
 CVE-2025-59738 (Operating system command injection vulnerability in AndSoft's 
e-TMS v2 ...)
-       TODO: check
+       NOT-FOR-US: AndSoft
 CVE-2025-59737 (Operating system command injection vulnerability in AndSoft's 
e-TMS v2 ...)
-       TODO: check
+       NOT-FOR-US: AndSoft
 CVE-2025-59736 (Operating system command injection vulnerability in AndSoft's 
e-TMS v2 ...)
-       TODO: check
+       NOT-FOR-US: AndSoft
 CVE-2025-59735 (Operating system command injection vulnerability in AndSoft's 
e-TMS v2 ...)
-       TODO: check
+       NOT-FOR-US: AndSoft
 CVE-2025-59409 (Flock Safety Falcon and Sparrow License Plate Readers 
OPM1.171019.026  ...)
        TODO: check
 CVE-2025-59407 (The Flock Safety DetectionProcessing 
com.flocksafety.android.objects a ...)
@@ -265,7 +265,7 @@ CVE-2025-61583 (TS3 Manager is modern web interface for 
maintaining Teamspeak3 s
 CVE-2025-61582 (TS3 Manager is modern web interface for maintaining Teamspeak3 
servers ...)
        NOT-FOR-US: TS3 Manager
 CVE-2025-59951 (Termix is a web-based server management platform with SSH 
terminal, tu ...)
-       TODO: check
+       NOT-FOR-US: Termix
 CVE-2025-59538 (Argo CD is a declarative, GitOps continuous delivery tool for 
Kubernet ...)
        NOT-FOR-US: Argo CD
 CVE-2025-59537 (Argo CD is a declarative, GitOps continuous delivery tool for 
Kubernet ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8e4ddd9e89b463e70fcdf3921aa9ed707fa2bc6a

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8e4ddd9e89b463e70fcdf3921aa9ed707fa2bc6a
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Process some NFUs

Reply via email to