Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
d012ddd0 by Salvatore Bonaccorso at 2022-01-10T21:57:04+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -4199,21 +4199,21 @@ CVE-2022-22123
CVE-2022-22122
RESERVED
CVE-2022-22121 (In NocoDB, versions 0.81.0 through 0.83.8 are affected by CSV
Injectio ...)
- TODO: check
+ NOT-FOR-US: NocoDB
CVE-2022-22120 (In NocoDB, versions 0.9 to 0.83.8 are vulnerable to Observable
Discrep ...)
- TODO: check
+ NOT-FOR-US: NocoDB
CVE-2022-22119
RESERVED
CVE-2022-22118
RESERVED
CVE-2022-22117 (In Directus, versions 9.0.0-alpha.4 through 9.4.1 allow
unrestricted f ...)
- TODO: check
+ NOT-FOR-US: Directus
CVE-2022-22116 (In Directus, versions 9.0.0-alpha.4 through 9.4.1 are
vulnerable to st ...)
- TODO: check
+ NOT-FOR-US: Directus
CVE-2022-22115 (In Teedy, versions v1.5 through v1.9 are vulnerable to Stored
Cross-Si ...)
- TODO: check
+ NOT-FOR-US: Teedy
CVE-2022-22114 (In Teedy, versions v1.5 through v1.9 are vulnerable to
Reflected Cross ...)
- TODO: check
+ NOT-FOR-US: Teedy
CVE-2022-22113
RESERVED
CVE-2022-22112
@@ -5381,7 +5381,7 @@ CVE-2021-4126
CVE-2021-26264
RESERVED
CVE-2021-23173 (The affected product is vulnerable to an improper access
control, whic ...)
- TODO: check
+ NOT-FOR-US: Philips
CVE-2021-23157
RESERVED
CVE-2021-23138
@@ -5957,7 +5957,7 @@ CVE-2021-45005
CVE-2021-45004
RESERVED
CVE-2021-45003 (Laundry Booking Management System 1.0 (Latest) and previous
versions a ...)
- TODO: check
+ NOT-FOR-US: Laundry Booking Management System
CVE-2021-45002
RESERVED
CVE-2021-45001
@@ -9171,11 +9171,11 @@ CVE-2021-43953
CVE-2021-43952
RESERVED
CVE-2021-43951 (Affected versions of Atlassian Jira Service Management Server
and Data ...)
- TODO: check
+ NOT-FOR-US: Atlassian
CVE-2021-43950
RESERVED
CVE-2021-43949 (Affected versions of Atlassian Jira Service Management Server
and Data ...)
- TODO: check
+ NOT-FOR-US: Atlassian
CVE-2021-43948
RESERVED
CVE-2021-43947 (Affected versions of Atlassian Jira Server and Data Center
allow remot ...)
@@ -56694,13 +56694,13 @@ CVE-2021-25993 (In Requarks wiki.js, versions
2.0.0-beta.147 to 2.5.255 are affe
CVE-2021-25992
RESERVED
CVE-2021-25991 (In Ifme, versions v5.0.0 to v7.32 are vulnerable against an
improper a ...)
- TODO: check
+ NOT-FOR-US: Ifme
CVE-2021-25990 (In “ifme”, versions v7.22.0 to v7.31.4 are
vulnerable agai ...)
- TODO: check
+ NOT-FOR-US: Ifme
CVE-2021-25989 (In “ifme”, versions 1.0.0 to v7.31.4 are
vulnerable agains ...)
- TODO: check
+ NOT-FOR-US: Ifme
CVE-2021-25988 (In “ifme”, versions 1.0.0 to v7.31.4 are
vulnerable agains ...)
- TODO: check
+ NOT-FOR-US: Ifme
CVE-2021-25987 (Hexo versions 0.0.1 to 5.4.0 are vulnerable against stored
XSS. The po ...)
NOT-FOR-US: hexo blog framework
CVE-2021-25986 (In Django-wiki, versions 0.0.20 to 0.7.8 are vulnerable to
Stored Cros ...)
@@ -59207,13 +59207,13 @@ CVE-2021-25056
CVE-2021-25055
RESERVED
CVE-2021-25054 (The WPcalc WordPress plugin through 2.1 does not sanitize user
input i ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-25053 (The WP Coder WordPress plugin before 2.5.2 within the
wow-company admi ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-25052 (The Button Generator WordPress plugin before 2.3.3 within the
wow-comp ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-25051 (The Modal Window WordPress plugin before 5.2.2 within the
wow-company ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-25050
RESERVED
CVE-2021-25049
@@ -59221,7 +59221,7 @@ CVE-2021-25049
CVE-2021-25048
RESERVED
CVE-2021-25047 (The 10Web Social Photo Feed WordPress plugin before 1.4.29 was
affecte ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-25046
RESERVED
CVE-2021-25045
@@ -59229,7 +59229,7 @@ CVE-2021-25045
CVE-2021-25044
RESERVED
CVE-2021-25043 (The WOOCS WordPress plugin before 1.3.7.3 does not sanitise
and escape ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-25042
RESERVED
CVE-2021-25041 (The Photo Gallery by 10Web WordPress plugin before 1.5.68 is
vulnerabl ...)
@@ -59251,7 +59251,7 @@ CVE-2021-25034
CVE-2021-25033
RESERVED
CVE-2021-25032 (The PublishPress Capabilities WordPress plugin before 2.3.1,
PublishPr ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-25031
RESERVED
CVE-2021-25030 (The Events Made Easy WordPress plugin before 2.2.36 does not
sanitise ...)
@@ -59417,9 +59417,9 @@ CVE-2021-24951 (The LearnPress WordPress plugin before
4.1.4 does not sanitise,
CVE-2021-24950
RESERVED
CVE-2021-24949 (The "WP Search Filters" widget of The Plus Addons for
Elementor - Pro ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24948 (The Plus Addons for Elementor - Pro WordPress plugin before
5.0.7 does ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24947
RESERVED
CVE-2021-24946 (The Modern Events Calendar Lite WordPress plugin before 6.1.5
does not ...)
@@ -59591,7 +59591,7 @@ CVE-2021-24864
CVE-2021-24863 (The WP Block and Stop Bad Bots Crawlers and Spiders and Anti
Spam Prot ...)
NOT-FOR-US: WordPress plugin
CVE-2021-24862 (The RegistrationMagic WordPress plugin before 5.0.1.6 does not
escape ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2021-24861 (The Quotes Collection WordPress plugin through 2.5.2 does not
validate ...)
NOT-FOR-US: WordPress plugin
CVE-2021-24860 (The BSK PDF Manager WordPress plugin before 3.1.2 does not
validate an ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d012ddd073ba8bc6ce7857e0450f15edc6b325fc
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d012ddd073ba8bc6ce7857e0450f15edc6b325fc
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
