Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
002305b5 by Salvatore Bonaccorso at 2024-08-29T10:58:17+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -12,43 +12,43 @@ CVE-2024-8193 (Heap buffer overflow in Skia in Google
Chrome prior to 128.0.6613
- chromium <unfixed>
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2024-7857 (The Media Library Folders plugin for WordPress is vulnerable to
second ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-7856 (The MP3 Audio Player \u2013 Music Player, Podcast Player &
Radio by So ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-7607 (The Front End Users plugin for WordPress is vulnerable to
time-based S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-7606 (The Front End Users plugin for WordPress is vulnerable to
Stored Cross ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-7418 (The The Post Grid \u2013 Shortcode, Gutenberg Blocks and
Elementor Add ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-7132 (The Page Builder Gutenberg Blocks WordPress plugin before
3.1.13 does ...)
TODO: check
CVE-2024-6927 (The Viral Signup WordPress plugin through 2.1 does not
sanitise and e ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-5987 (The WP Accessibility Helper (WAH) plugin for WordPress is
vulnerable t ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-5857 (The Interactive Contact Form and Multi Step Form Builder with
Drag & D ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-5417 (The Gutentor WordPress plugin before 3.3.6 does not validate
and esca ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-4428 (Improper Privilege Management vulnerability in Menulux
Information Tec ...)
- TODO: check
+ NOT-FOR-US: Menulux Information Technologies Managment Portal
CVE-2024-45440 (core/authorize.php in Drupal 11.x-dev allows Full Path
Disclosure (eve ...)
TODO: check
CVE-2024-45436 (extractFromZipFile in model.go in Ollama before 0.1.47 can
extract mem ...)
- TODO: check
+ NOT-FOR-US: Ollama
CVE-2024-45435 (Chartist 1.x through 1.3.0 allows Prototype Pollution via the
extend f ...)
- TODO: check
+ NOT-FOR-US: Chartist
CVE-2024-45233 (An issue was discovered in powermail extension through 12.3.5
for TYPO ...)
- TODO: check
+ NOT-FOR-US: TYPO3 extension
CVE-2024-45232 (An issue was discovered in powermail extension through 12.3.5
for TYPO ...)
- TODO: check
+ NOT-FOR-US: TYPO3 extension
CVE-2024-45059 (i-Educar is free, completely online school management software
that al ...)
- TODO: check
+ NOT-FOR-US: i-Educar
CVE-2024-45058 (i-Educar is free, completely online school management software
that al ...)
- TODO: check
+ NOT-FOR-US: i-Educar
CVE-2024-45057 (i-Educar is free, completely online school management software
that al ...)
- TODO: check
+ NOT-FOR-US: i-Educar
CVE-2024-45048 (PHPSpreadsheet is a pure PHP library for reading and writing
spreadshe ...)
TODO: check
CVE-2024-45046 (PHPSpreadsheet is a pure PHP library for reading and writing
spreadshe ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/002305b5d55cea6938d80b151122d28e11b90eae
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/002305b5d55cea6938d80b151122d28e11b90eae
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
