Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
929b6e58 by Salvatore Bonaccorso at 2021-08-23T22:28:34+02:00
Process some more NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -13655,7 +13655,7 @@ CVE-2021-33600
CVE-2021-33599
RESERVED
CVE-2021-33598 (A Denial-of-Service (DoS) vulnerability was discovered in all
versions ...)
- TODO: check
+ NOT-FOR-US: F-Secure
CVE-2021-33597 (A Denial-of-Service (DoS) vulnerability was discovered in
F-Secure Atl ...)
NOT-FOR-US: F-Secure
CVE-2021-33596 (Showing the legitimate URL in the address bar while loading
the conten ...)
@@ -23565,7 +23565,7 @@ CVE-2021-29706 (IBM AIX 7.1 could allow a
non-privileged local user to exploit a
CVE-2021-29705
RESERVED
CVE-2021-29704 (IBM Security SOAR uses weaker than expected cryptographic
algorithms t ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2021-29703 (Db2 for Linux, UNIX and Windows (includes Db2 Connect Server)
is vulne ...)
NOT-FOR-US: IBM
CVE-2021-29702 (Db2 for Linux, UNIX and Windows (includes Db2 Connect Server)
11.1.4 a ...)
@@ -35939,7 +35939,7 @@ CVE-2021-24660
CVE-2021-24659
RESERVED
CVE-2021-24658 (The Erident Custom Login and Dashboard WordPress plugin before
3.5.9 d ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24657
RESERVED
CVE-2021-24656
@@ -36051,7 +36051,7 @@ CVE-2021-24604
CVE-2021-24603
RESERVED
CVE-2021-24602 (The HM Multiple Roles WordPress plugin before 1.3 does not
have any ac ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24601
RESERVED
CVE-2021-24600
@@ -36107,13 +36107,13 @@ CVE-2021-24576
CVE-2021-24575
RESERVED
CVE-2021-24574 (The Simple Banner WordPress plugin before 2.10.4 does not
sanitise and ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24573
RESERVED
CVE-2021-24572
RESERVED
CVE-2021-24571 (The HD Quiz WordPress plugin before 1.8.4 does not escape some
of its ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24570
RESERVED
CVE-2021-24569
@@ -36125,43 +36125,43 @@ CVE-2021-24567
CVE-2021-24566
RESERVED
CVE-2021-24565 (The Contact Form 7 Captcha WordPress plugin before 0.0.9 does
not have ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24564 (The WPFront Scroll Top WordPress plugin before 2.0.6.07225
does not sa ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24563
RESERVED
CVE-2021-24562 (The LMS by LifterLMS – Online Course, Membership &
Learning ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24561 (The WP SMS WordPress plugin before 5.4.13 does not sanitise
the "wp_gr ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24560
RESERVED
CVE-2021-24559
RESERVED
CVE-2021-24558 (The pspin_duplicate_post_save_as_new_post function of the
Project Stat ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24557 (The update functionality in the rslider_page uses an rs_id
POST parame ...)
TODO: check
CVE-2021-24556 (The kento_email_subscriber_ajax AJAX action of the Email
Subscriber Wo ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24555 (The daac_delete_booking_callback function, hooked to the
daac_delete_b ...)
TODO: check
CVE-2021-24554 (The Paytm – Donation Plugin WordPress plugin through
1.3.2 does ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24553 (The Timeline Calendar WordPress plugin through 1.2 does not
sanitise, ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24552 (The Simple Events Calendar WordPress plugin through 1.4.0 does
not san ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24551 (The Edit Comments WordPress plugin through 0.3 does not
sanitise, vali ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24550 (The Broken Link Manager WordPress plugin through 0.6.5 does
not saniti ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24549 (The AceIDE WordPress plugin through 2.6.2 does not sanitise or
validat ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24548 (The Mimetic Books WordPress plugin through 0.2.13 was
vulnerable to Au ...)
NOT-FOR-US: WordPress plugin
CVE-2021-24547 (The KN Fix Your Title WordPress plugin through 1.0.1 was
vulnerable to ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24546
RESERVED
CVE-2021-24545
@@ -36189,15 +36189,15 @@ CVE-2021-24535 (The Light Messages WordPress plugin
through 1.0 is lacking CSRF
CVE-2021-24534 (The PhoneTrack Meu Site Manager WordPress plugin through 0.1
does not ...)
NOT-FOR-US: WordPress plugin
CVE-2021-24533 (The Maintenance WordPress plugin before 4.03 does not sanitise
or esca ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24532
RESERVED
CVE-2021-24531 (The Charitable – Donation Plugin WordPress plugin before
1.6.51 ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24530
RESERVED
CVE-2021-24529 (The Grid Gallery – Photo Image Grid Gallery WordPress
plugin bef ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24528
RESERVED
CVE-2021-24527 (The User Registration & User Profile – Profile
Builder WordP ...)
@@ -36207,7 +36207,7 @@ CVE-2021-24526 (The Form Maker by 10Web –
Mobile-Friendly Drag & Drop
CVE-2021-24525
RESERVED
CVE-2021-24524 (The GiveWP – Donation Plugin and Fundraising Platform
WordPress ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24523
RESERVED
CVE-2021-24522 (The User Registration, User Profile, Login & Membership
– Pr ...)
@@ -36243,7 +36243,7 @@ CVE-2021-24508
CVE-2021-24507 (The Astra Pro Addon WordPress plugin before 3.5.2 did not
properly san ...)
NOT-FOR-US: Wordpress plugin
CVE-2021-24506 (The Slider Hero with Animation, Video Background & Intro
Maker Wor ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24505 (The Forms WordPress plugin before 1.12.3 did not sanitise its
input fi ...)
NOT-FOR-US: Wordpress plugin
CVE-2021-24504 (The WP LMS – Best WordPress LMS Plugin WordPress plugin
through ...)
@@ -36261,7 +36261,7 @@ CVE-2021-24499 (The Workreap WordPress theme before
2.2.2 AJAX actions workreap_
CVE-2021-24498 (The Calendar Event Multi View WordPress plugin before 1.4.01
does not ...)
NOT-FOR-US: WordPress plugin
CVE-2021-24497 (The Giveaway WordPress plugin through 1.2.2 is vulnerable to
an SQL In ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24496 (The Community Events WordPress plugin before 1.4.8 does not
sanitise, ...)
NOT-FOR-US: WordPress plugin
CVE-2021-24495 (The Marmoset Viewer WordPress plugin before 1.9.3 does not
property sa ...)
@@ -36283,7 +36283,7 @@ CVE-2021-24488 (The slider import search feature and
tab parameter of the Post G
CVE-2021-24487
RESERVED
CVE-2021-24486 (The Simple Social Media Share Buttons – Social Sharing
for Every ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24485
RESERVED
CVE-2021-24484 (The get_reports() function in the Secure Copy Content
Protection and C ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/929b6e5897d2498d72fad91b6f714cd1504f1a76
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/929b6e5897d2498d72fad91b6f714cd1504f1a76
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
