Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
73a68a87 by Salvatore Bonaccorso at 2024-02-08T09:53:43+01:00
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -10,37 +10,37 @@ CVE-2024-24806 (libuv is a multi-platform support library
with a focus on asynch
NOTE:
https://github.com/libuv/libuv/commit/0f2d7e784a256b54b2385043438848047bc2a629
(v1.48.0)
NOTE:
https://github.com/libuv/libuv/commit/3530bcc30350d4a6ccf35d2f7b33e23292b9de70
(v1.48.0)
CVE-2024-24350 (File Upload vulnerability in Software Publico e-Sic Livre
v.2.0 and be ...)
- TODO: check
+ NOT-FOR-US: Software Publico e-Sic Livre
CVE-2024-24216 (Zentao v18.0 to v18.10 was discovered to contain a remote code
executi ...)
- TODO: check
+ NOT-FOR-US: Zentao
CVE-2024-24202 (An arbitrary file upload vulnerability in /upgrade/control.php
of ZenT ...)
- TODO: check
+ NOT-FOR-US: Zentao
CVE-2024-24091 (Yealink Meeting Server before v26.0.0.66 was discovered to
contain an ...)
- TODO: check
+ NOT-FOR-US: Yealink Meeting Server
CVE-2024-24026 (An arbitrary File upload vulnerability exists in Novel-Plus
v4.3.0-RC1 ...)
- TODO: check
+ NOT-FOR-US: Novel-Plus
CVE-2024-24025 (An arbitrary File upload vulnerability exists in Novel-Plus
v4.3.0-RC1 ...)
- TODO: check
+ NOT-FOR-US: Novel-Plus
CVE-2024-24024 (An arbitrary File download vulnerability exists in Novel-Plus
v4.3.0-R ...)
- TODO: check
+ NOT-FOR-US: Novel-Plus
CVE-2024-24023 (A SQL injection vulnerability exists in Novel-Plus v4.3.0-RC1
and prio ...)
- TODO: check
+ NOT-FOR-US: Novel-Plus
CVE-2024-24021 (A SQL injection vulnerability exists in Novel-Plus v4.3.0-RC1
and prio ...)
- TODO: check
+ NOT-FOR-US: Novel-Plus
CVE-2024-24018 (A SQL injection vulnerability exists in Novel-Plus v4.3.0-RC1
and prio ...)
- TODO: check
+ NOT-FOR-US: Novel-Plus
CVE-2024-24017 (A SQL injection vulnerability exists in Novel-Plus v4.3.0-RC1
and prio ...)
- TODO: check
+ NOT-FOR-US: Novel-Plus
CVE-2024-24014 (A SQL injection vulnerability exists in Novel-Plus v4.3.0-RC1
and prio ...)
- TODO: check
+ NOT-FOR-US: Novel-Plus
CVE-2024-24003 (jshERP v3.3 is vulnerable to SQL Injection. The
com.jsh.erp.controller ...)
- TODO: check
+ NOT-FOR-US: jshERP
CVE-2024-23448 (An issue was discovered whereby APM Server could log at ERROR
level, a ...)
TODO: check
CVE-2024-22394 (An improper authentication vulnerability has been identified
in SonicW ...)
- TODO: check
+ NOT-FOR-US: SonicWall
CVE-2024-0511 (The Royal Elementor Addons and Templates plugin for WordPress
is vulne ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2023-6736 (An issue has been discovered in GitLab EE affecting all
versions start ...)
TODO: check
CVE-2023-5665 (The Payment Forms for Paystack plugin for WordPress is
vulnerable to S ...)
@@ -92,7 +92,7 @@ CVE-2024-24812 (Frappe is a full-stack web application
framework that uses Pytho
CVE-2024-24811 (SQLAlchemyDA is a generic database adapter for ZSQL methods. A
vulnera ...)
TODO: check
CVE-2024-24771 (Open Forms allows users create and publish smart forms.
Versions prior ...)
- TODO: check
+ NOT-FOR-US: Open Forms
CVE-2024-24706 (Cross-Site Request Forgery (CSRF) vulnerability in Forum One
WP-CFM wp ...)
NOT-FOR-US: WordPress plugin
CVE-2024-24563 (Vyper is a Pythonic Smart Contract Language for the Ethereum
Virtual M ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/73a68a8734e4ded651ece763f3cacebf53c7af0e
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/73a68a8734e4ded651ece763f3cacebf53c7af0e
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
