Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
a8fb964f by Salvatore Bonaccorso at 2021-09-06T22:58:01+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -38307,15 +38307,15 @@ CVE-2021-24605
CVE-2021-24604
RESERVED
CVE-2021-24603 (The Site Reviews WordPress plugin before 5.13.1 does not
sanitise some ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24602 (The HM Multiple Roles WordPress plugin before 1.3 does not
have any ac ...)
NOT-FOR-US: WordPress plugin
CVE-2021-24601 (The WPFront Notification Bar WordPress plugin before
2.1.0.08087 does ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24600
RESERVED
CVE-2021-24599 (The Email Encoder – Protect Email Addresses WordPress
plugin bef ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24598
RESERVED
CVE-2021-24597
@@ -38331,13 +38331,13 @@ CVE-2021-24593 (The Business Hours Indicator
WordPress plugin before 2.3.5 does
CVE-2021-24592 (The Sitewide Notice WP WordPress plugin before 2.3 does not
sanitise s ...)
NOT-FOR-US: WordPress plugin
CVE-2021-24591 (The Highlight WordPress plugin before 0.9.3 does not sanitise
its Cust ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24590 (The Cookie Notice & Consent Banner for GDPR & CCPA
Compliance ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24589
RESERVED
CVE-2021-24588 (The SMS Alert Order Notifications WordPress plugin before
3.4.7 is aff ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24587
RESERVED
CVE-2021-24586
@@ -38377,7 +38377,7 @@ CVE-2021-24570
CVE-2021-24569
RESERVED
CVE-2021-24568 (The AddToAny Share Buttons WordPress plugin before 1.7.46 does
not san ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24567
RESERVED
CVE-2021-24566
@@ -38479,7 +38479,7 @@ CVE-2021-24519 (The VikRentCar Car Rental Management
System WordPress plugin bef
CVE-2021-24518 (The WPFront Notification Bar WordPress plugin before
2.0.0.07176 does ...)
NOT-FOR-US: WordPress plugin
CVE-2021-24517 (The Stop Spammers Security | Block Spam Users, Comments, Forms
WordPre ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24516
RESERVED
CVE-2021-24515
@@ -38487,7 +38487,7 @@ CVE-2021-24515
CVE-2021-24514
RESERVED
CVE-2021-24513 (The Form Builder | Create Responsive Contact Forms WordPress
plugin be ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24512 (The Video Posts Webcam Recorder WordPress plugin before 3.2.4
has an a ...)
NOT-FOR-US: WordPress plugin
CVE-2021-24511
@@ -38723,17 +38723,17 @@ CVE-2021-24397
CVE-2021-24396
RESERVED
CVE-2021-24395 (The editid GET parameter of the Embed Youtube Video WordPress
plugin t ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24394 (An id GET parameter of the Easy Testimonial Manager WordPress
plugin t ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24393 (A c GET parameter of the Comment Highlighter WordPress plugin
through ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24392 (An id GET parameter of the WordPress Membership SwiftCloud.io
WordPres ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24391 (An editid GET parameter of the Cashtomer WordPress plugin
through 1.0. ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24390 (A proid GET parameter of the
WordPress支付宝Alipay|& ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24389 (The WP Foodbakery WordPress plugin before 2.2, used in the
FoodBakery ...)
NOT-FOR-US: Wordpress plugin
CVE-2021-24388 (In the VikRentCar Car Rental Management System WordPress
plugin before ...)
@@ -38907,7 +38907,7 @@ CVE-2021-24305 (The Target First WordPress Plugin v2.0,
also previously known as
CVE-2021-24304 (The Newsmag WordPress theme before 5.0 does not sanitise the
td_block_ ...)
NOT-FOR-US: Wordpress theme
CVE-2021-24303 (The JiangQie Official Website Mini Program WordPress plugin
before 1.1 ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24302 (The Hana Flv Player WordPress plugin through 3.1.3 is
vulnerable to an ...)
NOT-FOR-US: WordPress plugin
CVE-2021-24301 (The Hotjar Connecticator WordPress plugin through 1.1.1 is
vulnerable ...)
@@ -39542,7 +39542,7 @@ CVE-2021-24008
CVE-2021-24007 (Multiple improper neutralization of special elements of SQL
commands v ...)
NOT-FOR-US: Fortiguard
CVE-2021-24006 (An improper access control vulnerability in FortiManager
versions 6.4. ...)
- TODO: check
+ NOT-FOR-US: FortiGuard
CVE-2021-24005 (Usage of hard-coded cryptographic keys to encrypt
configuration files ...)
NOT-FOR-US: FortiGuard
CVE-2021-24004
@@ -87893,7 +87893,7 @@ CVE-2020-15941
CVE-2020-15940
RESERVED
CVE-2020-15939 (An improper access control vulnerability (CWE-284) in
FortiSandbox ver ...)
- TODO: check
+ NOT-FOR-US: FortiGuard
CVE-2020-15938 (When traffic other than HTTP/S (eg: SSH traffic, etc...)
traverses the ...)
NOT-FOR-US: FortiGate FortiGuard
CVE-2020-15937 (An improper neutralization of input vulnerability in FortiGate
version ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a8fb964f6820b18d4a46823cd540e2ceb5440ff7
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a8fb964f6820b18d4a46823cd540e2ceb5440ff7
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
