Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
b19d3069 by Moritz Muehlenhoff at 2024-06-05T11:01:47+02:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,75 +1,75 @@
CVE-2024-5636 (A vulnerability was found in itsourcecode Bakery Online
Ordering Syste ...)
- TODO: check
+ NOT-FOR-US: Bakery Online Ordering System
CVE-2024-5635 (A vulnerability was found in itsourcecode Bakery Online
Ordering Syste ...)
- TODO: check
+ NOT-FOR-US: Bakery Online Ordering System
CVE-2024-5483 (The LearnPress \u2013 WordPress LMS Plugin plugin for WordPress
is vul ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-5453 (The ProfileGrid \u2013 User Profiles, Groups and Communities
plugin fo ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-5439 (The Blocksy theme for WordPress is vulnerable to Reflected
Cross-Site ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-5317 (The Newsletter plugin for WordPress is vulnerable to Stored
Cross-Site ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-5262 (Files or Directories Accessible to External Parties
vulnerability in s ...)
- TODO: check
+ NOT-FOR-US: ProjectDiscovery Interactsh
CVE-2024-5222 (The Responsive Addons \u2013 Starter Templates, Advanced
Features and ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-5149 (The BuddyForms plugin for WordPress is vulnerable to Email
Verificatio ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-5006 (The Boostify Header Footer Builder for Elementor plugin for
WordPress ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-4939 (The Weaver Xtreme Theme Support plugin for WordPress is
vulnerable to ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-4886 (The contains an IDOR vulnerability that allows a user to
comment on a ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-4295 (The Email Subscribers by Icegram Express plugin for WordPress
is vulne ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-4220 (Prior to 23.1, an information disclosure vulnerability exists
within B ...)
- TODO: check
+ NOT-FOR-US: BeyondTrust
CVE-2024-4219 (Prior to 23.2, it is possible to perform arbitrary Server-Side
request ...)
- TODO: check
+ NOT-FOR-US: BeyondTrust
CVE-2024-4088 (The Gutenberg Blocks and Page Layouts \u2013 Attire Blocks
plugin for ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-4084 (A Server-Side Request Forgery (SSRF) vulnerability exists in
the lates ...)
- TODO: check
+ NOT-FOR-US: anything-llm
CVE-2024-3667 (The Brizy \u2013 Page Builder plugin for WordPress is
vulnerable to St ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-36675 (LyLme_spage v1.9.5 is vulnerable to Server-Side Request
Forgery (SSRF) ...)
- TODO: check
+ NOT-FOR-US: LyLme_spage
CVE-2024-36121 (netty-incubator-codec-ohttp is the OHTTP implementation for
netty. Bor ...)
- TODO: check
+ NOT-FOR-US: netty-incubator-codec-ohttp
CVE-2024-34364 (Envoy is a cloud-native, open source edge and service proxy.
Envoy exp ...)
- TODO: check
+ - envoyproxy <itp> (bug #987544)
CVE-2024-34363 (Envoy is a cloud-native, open source edge and service proxy.
Due to ho ...)
- TODO: check
+ - envoyproxy <itp> (bug #987544)
CVE-2024-34362 (Envoy is a cloud-native, open source edge and service proxy.
There is ...)
- TODO: check
+ - envoyproxy <itp> (bug #987544)
CVE-2024-32976 (Envoy is a cloud-native, open source edge and service proxy.
Envoyprox ...)
- TODO: check
+ - envoyproxy <itp> (bug #987544)
CVE-2024-32975 (Envoy is a cloud-native, open source edge and service proxy.
There is ...)
- TODO: check
+ - envoyproxy <itp> (bug #987544)
CVE-2024-32974 (Envoy is a cloud-native, open source edge and service proxy. A
crash w ...)
- TODO: check
+ - envoyproxy <itp> (bug #987544)
CVE-2024-32464 (Action Text brings rich text content and editing to Rails.
Instances o ...)
TODO: check
CVE-2024-30889 (Cross Site Scripting vulnerability in audimex audimexEE
v.15.1.2 and f ...)
- TODO: check
+ NOT-FOR-US: audimexEE
CVE-2024-2368 (The Mollie Forms plugin for WordPress is vulnerable to
Cross-Site Requ ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-2087 (The Brizy \u2013 Page Builder plugin for WordPress is
vulnerable to St ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-28103 (Action Pack is a framework for handling and responding to web
requests ...)
TODO: check
CVE-2024-23669 (An improper authorization in Fortinet FortiWebManager version
7.2.0 an ...)
- TODO: check
+ NOT-FOR-US: Fortinet
CVE-2024-23326 (Envoy is a cloud-native, open source edge and service proxy. A
theoret ...)
- TODO: check
+ - envoyproxy <itp> (bug #987544)
CVE-2024-1940 (The Brizy \u2013 Page Builder plugin for WordPress is
vulnerable to St ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-1164 (The Brizy \u2013 Page Builder plugin for WordPress is
vulnerable to St ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-1161 (The Brizy \u2013 Page Builder plugin for WordPress is
vulnerable to St ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-34055 (Cyrus IMAP before 3.8.3 and 3.10.x before 3.10.0-rc1 allows
authentica ...)
- cyrus-imapd 3.8.3-1
NOTE:
https://cyrus.topicbox.com/groups/announce/Ta8e3998446caf7f8/cyrus-imap-3-8-3-3-6-5-and-3-4-8-released
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b19d306929d1bfb50a23d3e946bc80c26c34c820
--
This project does not include diff previews in email notifications.
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b19d306929d1bfb50a23d3e946bc80c26c34c820
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
