[Git][security-tracker-team/security-tracker][master] automatic update

Sun, 23 Apr 2023 13:11:05 -0700 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
8408670a by security tracker role at 2023-04-23T20:10:21+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,11 @@
+CVE-2023-31042
+       RESERVED
+CVE-2023-31041
+       RESERVED
+CVE-2023-31040
+       RESERVED
+CVE-2023-2246 (A vulnerability has been found in SourceCodester Online Pizza 
Ordering ...)
+       TODO: check
 CVE-2023-31039
        RESERVED
 CVE-2023-31038
@@ -10264,8 +10272,8 @@ CVE-2023-27616
        RESERVED
 CVE-2023-27615
        RESERVED
-CVE-2023-27614
-       RESERVED
+CVE-2023-27614 (Auth. (admin+) Cross-Site Scripting (XSS) vulnerability in Ian 
Haycox  ...)
+       TODO: check
 CVE-2023-27613
        RESERVED
 CVE-2023-27612
@@ -10870,8 +10878,8 @@ CVE-2023-27427
        RESERVED
 CVE-2023-27426
        RESERVED
-CVE-2023-27425
-       RESERVED
+CVE-2023-27425 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability 
in Jame ...)
+       TODO: check
 CVE-2023-27424
        RESERVED
 CVE-2023-27423
@@ -16487,8 +16495,8 @@ CVE-2023-25453
        RESERVED
 CVE-2023-25452
        RESERVED
-CVE-2023-25451
-       RESERVED
+CVE-2023-25451 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability 
in WPCh ...)
+       TODO: check
 CVE-2023-25450
        RESERVED
 CVE-2023-25449
@@ -19473,8 +19481,8 @@ CVE-2023-24406
        RESERVED
 CVE-2023-24405
        RESERVED
-CVE-2023-24404
-       RESERVED
+CVE-2023-24404 (Reflected Cross-Site Scripting (XSS) vulnerability in VryaSage 
Marketi ...)
+       TODO: check
 CVE-2023-24403 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability 
in WP F ...)
        NOT-FOR-US: WordPress plugin
 CVE-2023-24402 (Auth. (admin+) Cross-Site Scripting (XSS) vulnerability in 
Veribo, Rol ...)
@@ -19509,8 +19517,8 @@ CVE-2023-24388 (Cross-Site Request Forgery (CSRF) 
vulnerability in WpDevArt Book
        NOT-FOR-US: WpDevArt Booking calendar, Appointment Booking System plugin
 CVE-2023-24387 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability 
in WPde ...)
        NOT-FOR-US: WordPress plugin
-CVE-2023-24386
-       RESERVED
+CVE-2023-24386 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability 
in Kari ...)
+       TODO: check
 CVE-2023-24385
        RESERVED
 CVE-2023-24384 (Cross-Site Request Forgery (CSRF) vulnerability in WpDevArt 
Organizati ...)
@@ -20760,8 +20768,8 @@ CVE-2023-23881
        RESERVED
 CVE-2023-23880
        RESERVED
-CVE-2023-23879
-       RESERVED
+CVE-2023-23879 (Cross-Site Request Forgery (CSRF) vulnerability in Nicolas Zeh 
PHP Exe ...)
+       TODO: check
 CVE-2023-23878 (Auth. (editor+) Stored Cross-Site Scripting (XSS) 
vulnerability in fli ...)
        NOT-FOR-US: WordPress plugin
 CVE-2023-23877
@@ -20912,8 +20920,8 @@ CVE-2023-23834
        RESERVED
 CVE-2023-23833
        RESERVED
-CVE-2023-23832
-       RESERVED
+CVE-2023-23832 (Auth. (contributor+) Cross-Site Scripting (XSS) vulnerability 
in TC Ul ...)
+       TODO: check
 CVE-2023-23831
        RESERVED
 CVE-2023-23830
@@ -20922,8 +20930,8 @@ CVE-2023-23829
        RESERVED
 CVE-2023-23828
        RESERVED
-CVE-2023-23827
-       RESERVED
+CVE-2023-23827 (Auth. (contributor+) Cross-Site Scripting (XSS) vulnerability 
in Googl ...)
+       TODO: check
 CVE-2023-23826
        RESERVED
 CVE-2023-23825
@@ -20942,10 +20950,10 @@ CVE-2023-23819
        RESERVED
 CVE-2023-23818
        RESERVED
-CVE-2023-23817
-       RESERVED
-CVE-2023-23816
-       RESERVED
+CVE-2023-23817 (Auth. (contrinbutor+) Cross-Site Scripting (XSS) vulnerability 
in WebA ...)
+       TODO: check
+CVE-2023-23816 (Auth. (admin+) Cross-Site Scripting (XSS) vulnerability in 
Twardes Sit ...)
+       TODO: check
 CVE-2023-23815 (Auth. (contributor+) Stored Cross-Site Scripting (XSS) 
vulnerability i ...)
        NOT-FOR-US: WordPress plugin
 CVE-2023-23814
@@ -20964,8 +20972,8 @@ CVE-2023-23808
        RESERVED
 CVE-2023-23807
        RESERVED
-CVE-2023-23806
-       RESERVED
+CVE-2023-23806 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability 
in Davi ...)
+       TODO: check
 CVE-2023-23805
        RESERVED
 CVE-2023-23804
@@ -21296,8 +21304,8 @@ CVE-2023-23719
        RESERVED
 CVE-2023-23718 (Auth. (admin+) Cross-Site Scripting (XSS) vulnerability in 
Esstat17 Pa ...)
        NOT-FOR-US: Esstat17
-CVE-2023-23717
-       RESERVED
+CVE-2023-23717 (Auth. (contributor+) Cross-Site Scripting (XSS) vulnerability 
in Georg ...)
+       TODO: check
 CVE-2023-23716
        RESERVED
 CVE-2023-23715
@@ -24696,8 +24704,8 @@ CVE-2023-22720
        RESERVED
 CVE-2023-22719
        RESERVED
-CVE-2023-22718
-       RESERVED
+CVE-2023-22718 (Reflected Cross-Site Scripting (XSS) vulnerability in Jason 
Lau User M ...)
+       TODO: check
 CVE-2023-22717
        RESERVED
 CVE-2023-22716 (Auth. (admin+) Cross-Site Scripting vulnerability in OOPSpam 
OOPSpam A ...)
@@ -24736,8 +24744,8 @@ CVE-2023-22700 (Cross-Site Request Forgery (CSRF) 
vulnerability in PixelYourSite
        NOT-FOR-US: PixelYourSite
 CVE-2023-22699
        RESERVED
-CVE-2023-22698
-       RESERVED
+CVE-2023-22698 (Auth. (contributor+) Cross-Site Scripting (XSS) vulnerability 
in Jason ...)
+       TODO: check
 CVE-2023-22697
        RESERVED
 CVE-2023-22696
@@ -24760,8 +24768,8 @@ CVE-2023-22688
        RESERVED
 CVE-2023-22687 (Insecure Storage of Sensitive Information vulnerability in 
Jose Mortel ...)
        NOT-FOR-US: Jose Mortellaro Freesoul Deactivate
-CVE-2023-22686
-       RESERVED
+CVE-2023-22686 (Cross-Site Request Forgery (CSRF) vulnerability in TriniTronic 
Nice Pa ...)
+       TODO: check
 CVE-2023-22685
        RESERVED
 CVE-2023-22684
@@ -29678,8 +29686,8 @@ CVE-2022-47437
        RESERVED
 CVE-2022-47436
        RESERVED
-CVE-2022-47435
-       RESERVED
+CVE-2022-47435 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability 
in Oliv ...)
+       TODO: check
 CVE-2022-47434
        RESERVED
 CVE-2022-47433 (Unauth. Reflected Cross-Site Scripting vulnerability in Daniel 
Powney  ...)
@@ -36179,8 +36187,8 @@ CVE-2022-45363 (Auth. (subscriber+) Stored Cross-Site 
Scripting (XSS) in Muffing
        NOT-FOR-US: WordPress plugin
 CVE-2022-45362
        RESERVED
-CVE-2022-45361
-       RESERVED
+CVE-2022-45361 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability 
in Bori ...)
+       TODO: check
 CVE-2022-45360
        RESERVED
 CVE-2022-45359 (Unauth. Arbitrary File Upload vulnerability in YITH 
WooCommerce Gift C ...)
@@ -36944,8 +36952,8 @@ CVE-2022-45082 (Multiple Auth. (admin+) Stored 
Cross-Site Scripting (XSS) vulner
        NOT-FOR-US: WordPress plugin
 CVE-2022-45081
        RESERVED
-CVE-2022-45080
-       RESERVED
+CVE-2022-45080 (Cross-Site Request Forgery (CSRF) vulnerability in KrishaWeb 
Add Multi ...)
+       TODO: check
 CVE-2022-45079
        RESERVED
 CVE-2022-45078
@@ -36956,8 +36964,8 @@ CVE-2022-45076
        RESERVED
 CVE-2022-45075
        RESERVED
-CVE-2022-45074
-       RESERVED
+CVE-2022-45074 (Cross-Site Request Forgery (CSRF) vulnerability in Paramveer 
Singh for ...)
+       TODO: check
 CVE-2022-45073 (Cross-Site Request Forgery (CSRF) vulnerability in REST API 
Authentica ...)
        NOT-FOR-US: WordPress plugin
 CVE-2022-45072 (Cross-Site Request Forgery (CSRF) vulnerability in WPML 
Multilingual C ...)
@@ -37816,8 +37824,8 @@ CVE-2022-44745 (Sensitive information leak through log 
files. The following prod
        NOT-FOR-US: Acronis
 CVE-2022-44744 (Local privilege escalation due to DLL hijacking vulnerability. 
The fol ...)
        NOT-FOR-US: Acronis
-CVE-2022-44743
-       RESERVED
+CVE-2022-44743 (Auth. (author+) Stored Cross-Site Scripting (XSS) 
vulnerability in Blu ...)
+       TODO: check
 CVE-2022-44742 (Auth. (admin+) Stored Cross-Site Scripting vulnerability in 
Yannick Le ...)
        NOT-FOR-US: WordPress plugin
 CVE-2022-44741 (Cross-Site Request Forgery (CSRF) vulnerability leading to 
Cross-Site  ...)
@@ -39166,8 +39174,8 @@ CVE-2022-44633
        RESERVED
 CVE-2022-44632 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability 
in Deni ...)
        NOT-FOR-US: WordPress plugin
-CVE-2022-44631
-       RESERVED
+CVE-2022-44631 (Auth. (author+) Stored Cross-Site Scripting (XSS) 
vulnerability in 1ap ...)
+       TODO: check
 CVE-2022-44630
        RESERVED
 CVE-2022-44629
@@ -39411,8 +39419,8 @@ CVE-2022-44596
        RESERVED
 CVE-2022-44595
        RESERVED
-CVE-2022-44594
-       RESERVED
+CVE-2022-44594 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability 
in Code ...)
+       TODO: check
 CVE-2022-44593
        RESERVED
 CVE-2022-44592
@@ -39435,8 +39443,8 @@ CVE-2022-44584 (Unauth. Arbitrary File Deletion 
vulnerability in WatchTowerHQ pl
        NOT-FOR-US: WordPress plugin
 CVE-2022-44583 (Unauth. Arbitrary File Download vulnerability in WatchTowerHQ 
plugin & ...)
        NOT-FOR-US: WordPress plugin
-CVE-2022-44582
-       RESERVED
+CVE-2022-44582 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability 
in Appt ...)
+       TODO: check
 CVE-2022-44581
        RESERVED
 CVE-2022-44580 (SQL Injection (SQLi) vulnerability in RichPlugins Plugin for 
Google Re ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8408670a1dc2bc32507e78320694282475fd8649

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8408670a1dc2bc32507e78320694282475fd8649
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to