Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 03f3945a by Salvatore Bonaccorso at 2024-05-03T22:33:26+02:00 Process more NFUs - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -21,143 +21,143 @@ CVE-2024-4216 (pgAdmin <= 8.5 is affected by XSS vulnerability in /settings/stor CVE-2024-4215 (pgAdmin <= 8.5 is affected by a multi-factor authentication bypass vul ...) - pgadmin4 <itp> (bug #834129) CVE-2024-4203 (The Premium Addons Pro for Elementor plugin for WordPress is vulnerabl ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-4156 (The Essential Addons for Elementor \u2013 Best Elementor Templates, Wi ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-4133 (The ARMember \u2013 Membership Plugin, Content Restriction, Member Lev ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-4128 (This vulnerability was a potential CSRF attack.When running the Fireba ...) TODO: check CVE-2024-4097 (The Cost Calculator Builder plugin for WordPress is vulnerable to Stor ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-4092 (The Slider Revolution plugin for WordPress is vulnerable to Stored Cro ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-4086 (The CM Tooltip Glossary \u2013 Powerful Glossary Plugin plugin for Wor ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-4085 (The Tabellen von faustball.com plugin for WordPress is vulnerable to S ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-4083 (The Easy Restaurant Table Booking plugin for WordPress is vulnerable t ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-4036 (The Sydney Toolbox plugin for WordPress is vulnerable to Stored Cross- ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-4034 (The Virtue theme for WordPress is vulnerable to Stored Cross-Site Scri ...) - TODO: check + NOT-FOR-US: WordPress theme CVE-2024-4033 (The All-in-One Video Gallery plugin for WordPress is vulnerable to arb ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-4003 (The Essential Addons for Elementor \u2013 Best Elementor Templates, Wi ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-4000 (The WordPress Header Builder Plugin \u2013 Pearl plugin for WordPress ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3991 (The ShopLentor \u2013 WooCommerce Builder for Elementor & Gutenberg +1 ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3985 (The Exclusive Addons for Elementor plugin for WordPress is vulnerable ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3957 (The Booster for WooCommerce plugin is vulnerable to Unauthenticated Ar ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3955 (URL GET parameter "logtime" utilized within the "downloadlog" function ...) TODO: check CVE-2024-3942 (The MasterStudy LMS WordPress Plugin \u2013 for Online Courses and Edu ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3936 (The The Post Grid \u2013 Shortcode, Gutenberg Blocks and Elementor Add ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3897 (The Popup Box \u2013 Best WordPress Popup Plugin plugin for WordPress ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3895 (The WP Datepicker plugin for WordPress is vulnerable to unauthorized m ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3891 (The Happy Addons for Elementor plugin for WordPress is vulnerable to S ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3885 (The Premium Addons for Elementor plugin for WordPress is vulnerable to ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3883 (The 3D FlipBook plugin for WordPress is vulnerable to Stored Cross-Sit ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3870 (The Contact Form 7 Database Addon \u2013 CFDB7 plugin for WordPress is ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3849 (The Click to Chat \u2013 HoliThemes plugin for WordPress is vulnerable ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3819 (The Jeg Elementor Kit plugin for WordPress is vulnerable to Stored Cro ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3747 (The Blocksy theme for WordPress is vulnerable to Stored Cross-Site Scr ...) - TODO: check + NOT-FOR-US: WordPress theme CVE-2024-3743 (The Elementor Addon Elements plugin for WordPress is vulnerable to Sto ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3734 (The FOX \u2013 Currency Switcher Professional for WooCommerce plugin i ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3729 (The Frontend Admin by DynamiApps plugin for WordPress is vulnerable to ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3728 (The Essential Addons for Elementor \u2013 Best Elementor Templates, Wi ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3725 (The Otter Blocks \u2013 Gutenberg Blocks, Page Builder for Gutenberg E ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3724 (The Happy Addons for Elementor plugin for WordPress is vulnerable to S ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3717 (The Drag and Drop Multiple File Upload \u2013 Contact Form 7 plugin fo ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3715 (The Database for Contact Form 7, WPforms, Elementor forms plugin for W ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3703 (The Carousel Slider WordPress plugin before 2.2.10 does not validate a ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3692 (The Gutenverse WordPress plugin before 1.9.1 does not validate the ht ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3681 (The Interactive World Maps plugin for WordPress is vulnerable to Refle ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3677 (The Ultimate 410 Gone Status Code plugin for WordPress is vulnerable t ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3675 (The Royal Elementor Addons and Templates plugin for WordPress is vulne ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3674 (The Inline Google Spreadsheet Viewer plugin for WordPress is vulnerabl ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3670 (The Leaflet Maps Marker (Google Maps, OpenStreetMap, Bing Maps) plugin ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3650 (The ElementsKit Elementor addons plugin for WordPress is vulnerable to ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3649 (The Contact Form by WPForms \u2013 Drag & Drop Form Builder for WordPr ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3647 (The Premium Addons for Elementor plugin for WordPress is vulnerable to ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3637 (The Responsive Contact Form Builder & Lead Generation Plugin WordPress ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3607 (The PropertyHive plugin for WordPress is vulnerable to unauthorized lo ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3606 (The ProfileGrid \u2013 User Profiles, Memberships, Groups and Communit ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3601 (The Poll Maker \u2013 Best WordPress Poll Plugin plugin for WordPress ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3599 (The WP Cookie Consent ( for GDPR, CCPA & ePrivacy ) plugin for WordPre ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3588 (The Getwid \u2013 Gutenberg Blocks plugin for WordPress is vulnerable ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3585 (The Send PDF for Contact Form 7 plugin for WordPress is vulnerable to ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3581 (The MaxGalleria plugin for WordPress is vulnerable to unauthorized ima ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3554 (The All in One SEO \u2013 Best WordPress SEO Plugin \u2013 Easily Impr ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3553 (The Tutor LMS \u2013 eLearning and online course solution plugin for W ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3550 (The WP Shortcodes Plugin \u2014 Shortcodes Ultimate plugin for WordPre ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3546 (The WordPress Backup & Migration plugin for WordPress is vulnerable to ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3544 (Unauthenticated attackers can perform actions, using SSH private keys, ...) TODO: check CVE-2024-3543 (Use of reversible password encryption algorithm allows attackers to de ...) TODO: check CVE-2024-3520 (The Country State City Dropdown CF7 plugin for WordPress is vulnerable ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3517 (The Shortcodes and extra features for Phlox theme plugin for WordPress ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3500 (The ElementsKit Pro plugin for WordPress is vulnerable to Local File I ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3499 (The ElementsKit Elementor addons plugin for WordPress is vulnerable to ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3489 (The Exclusive Addons for Elementor plugin for WordPress is vulnerable ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3480 (An Implicit intent vulnerability was reported in the Motorola framewor ...) - TODO: check + NOT-FOR-US: Motorola CVE-2024-3479 (An improper export vulnerability was reported in the Motorola Enterpri ...) - TODO: check + NOT-FOR-US: Motorola CVE-2024-3473 (The Header Footer Code Manager Pro plugin for WordPress is vulnerable ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2024-3341 (The Shortcodes and extra features for Phlox theme plugin for WordPress ...) TODO: check CVE-2024-3340 (The Colibri Page Builder plugin for WordPress is vulnerable to Stored ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/03f3945a57c3510613d666bbdc9cede5771c2c49 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/03f3945a57c3510613d666bbdc9cede5771c2c49 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits