[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) Wed, 05 Apr 2023 13:29:09 -0700


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
89139661 by Salvatore Bonaccorso at 2023-04-05T22:28:46+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -19,7 +19,7 @@ CVE-2023-29391
 CVE-2023-29390
        RESERVED
 CVE-2023-29389 (Toyota RAV4 2021 vehicles automatically trust messages from 
other ECUs ...)
-       TODO: check
+       NOT-FOR-US: Toyota
 CVE-2023-29388
        RESERVED
 CVE-2023-29387
@@ -43,29 +43,29 @@ CVE-2023-1889
 CVE-2023-1888
        RESERVED
 CVE-2023-1887 (Business Logic Errors in GitHub repository thorsten/phpmyfaq 
prior to  ...)
-       TODO: check
+       NOT-FOR-US: phpmyfaq
 CVE-2023-1886 (Authentication Bypass by Capture-replay in GitHub repository 
thorsten/ ...)
-       TODO: check
+       NOT-FOR-US: phpmyfaq
 CVE-2023-1885 (Cross-site Scripting (XSS) - Stored in GitHub repository 
thorsten/phpm ...)
-       TODO: check
+       NOT-FOR-US: phpmyfaq
 CVE-2023-1884 (Cross-site Scripting (XSS) - Generic in GitHub repository 
thorsten/php ...)
-       TODO: check
+       NOT-FOR-US: phpmyfaq
 CVE-2023-1883 (Improper Access Control in GitHub repository thorsten/phpmyfaq 
prior t ...)
-       TODO: check
+       NOT-FOR-US: phpmyfaq
 CVE-2023-1882 (Cross-site Scripting (XSS) - DOM in GitHub repository 
thorsten/phpmyfa ...)
-       TODO: check
+       NOT-FOR-US: phpmyfaq
 CVE-2023-1881 (Cross-site Scripting (XSS) - Stored in GitHub repository 
microweber/mi ...)
-       TODO: check
+       NOT-FOR-US: microweber
 CVE-2023-1880 (Cross-site Scripting (XSS) - Reflected in GitHub repository 
thorsten/p ...)
-       TODO: check
+       NOT-FOR-US: phpmyfaq
 CVE-2023-1879 (Cross-site Scripting (XSS) - Stored in GitHub repository 
thorsten/phpm ...)
-       TODO: check
+       NOT-FOR-US: phpmyfaq
 CVE-2023-1878 (Cross-site Scripting (XSS) - Stored in GitHub repository 
thorsten/phpm ...)
-       TODO: check
+       NOT-FOR-US: phpmyfaq
 CVE-2023-1877 (Command Injection in GitHub repository microweber/microweber 
prior to  ...)
-       TODO: check
+       NOT-FOR-US: microweber
 CVE-2023-1876 (Deserialization of Untrusted Data in GitHub repository 
microweber/micr ...)
-       TODO: check
+       NOT-FOR-US: microweber
 CVE-2023-1875
        RESERVED
 CVE-2023-1874
@@ -101,7 +101,7 @@ CVE-2022-4941 (The WCFM Membership plugin for WordPress is 
vulnerable to Cross-S
 CVE-2022-4940 (The WCFM Membership plugin for WordPress is vulnerable to 
unauthorized ...)
        NOT-FOR-US: WCFM Membership plugin for WordPress
 CVE-2022-4939 (THe WCFM Membership plugin for WordPress is vulnerable to 
privilege es ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2022-4938 (The WCFM Frontend Manager plugin for WordPress is vulnerable to 
Cross- ...)
        NOT-FOR-US: WCFM Frontend Manager plugin for WordPress
 CVE-2022-4937 (The WCFM Frontend Manager plugin for WordPress is vulnerable to 
unauth ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/89139661e0a3412b68110158a8fbcc3ac4fa8f93

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/89139661e0a3412b68110158a8fbcc3ac4fa8f93
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Process some NFUs

Reply via email to