Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
33f20bfd by Salvatore Bonaccorso at 2024-08-30T22:21:54+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,63 +1,63 @@
CVE-2024-8345 (A vulnerability was found in SourceCodester Music Gallery Site
1.0 and ...)
- TODO: check
+ NOT-FOR-US: SourceCodester Music Gallery Site
CVE-2024-8344 (A vulnerability has been found in Campcodes Supplier Management
System ...)
- TODO: check
+ NOT-FOR-US: Campcodes Supplier Management System
CVE-2024-8343 (A vulnerability, which was classified as critical, was found in
Source ...)
- TODO: check
+ NOT-FOR-US: SourceCodester Sentiment Based Movie Rating System
CVE-2024-8342 (A vulnerability, which was classified as critical, has been
found in S ...)
- TODO: check
+ NOT-FOR-US: SourceCodester Petshop Management System
CVE-2024-8341 (A vulnerability classified as critical was found in
SourceCodester Pet ...)
- TODO: check
+ NOT-FOR-US: SourceCodester Petshop Management System
CVE-2024-8340 (A vulnerability classified as critical has been found in
SourceCodeste ...)
- TODO: check
+ NOT-FOR-US: SourceCodester Electric Billing Management System
CVE-2024-8339 (A vulnerability was found in SourceCodester Electric Billing
Managemen ...)
- TODO: check
+ NOT-FOR-US: SourceCodester Electric Billing Management System
CVE-2024-8338 (A vulnerability was found in HFO4 shudong-share 2.4.7. It has
been dec ...)
- TODO: check
+ NOT-FOR-US: HFO4 shudong-share
CVE-2024-8337 (A vulnerability, which was classified as problematic, has been
found i ...)
- TODO: check
+ NOT-FOR-US: SourceCodester Contact Manager with Export to VCF
CVE-2024-8336 (A vulnerability classified as critical was found in
SourceCodester Mus ...)
- TODO: check
+ NOT-FOR-US: SourceCodester Music Gallery Site
CVE-2024-8335 (A vulnerability classified as critical has been found in
OpenRapid Rap ...)
- TODO: check
+ NOT-FOR-US: OpenRapid RapidCMS
CVE-2024-8334 (A vulnerability was found in master-nan Sweet-CMS up to
5f441e022b8876 ...)
- TODO: check
+ NOT-FOR-US: master-nan Sweet-CMS
CVE-2024-8332 (A vulnerability was found in master-nan Sweet-CMS up to
5f441e022b8876 ...)
- TODO: check
+ NOT-FOR-US: master-nan Sweet-CMS
CVE-2024-8331 (A vulnerability was found in OpenRapid RapidCMS up to 1.3.1. It
has be ...)
- TODO: check
+ NOT-FOR-US: OpenRapid RapidCMS
CVE-2024-8274 (The WP Booking Calendar plugin for WordPress is vulnerable to
Reflecte ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-8260 (A SMB force-authentication vulnerability exists in all versions
of OPA ...)
- TODO: check
+ NOT-FOR-US: OPA for Windows
CVE-2024-8252 (The Clean Login plugin for WordPress is vulnerable to Local
File Inclu ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-8235 (A flaw was found in libvirt. A refactor of the code fetching
the list ...)
TODO: check
CVE-2024-8064
REJECTED
CVE-2024-7858 (The Media Library Folders plugin for WordPress is vulnerable to
unauth ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-7712
REJECTED
CVE-2024-7122 (The Elementor Addon Elements plugin for WordPress is vulnerable
to Sto ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-7051
REJECTED
CVE-2024-6204 (Zohocorp ManageEngine Exchange Reporter Plus versions
before5715 are v ...)
- TODO: check
+ NOT-FOR-US: Zohocorp ManageEngine
CVE-2024-45047 (svelte performance oriented web framework. A potential mXSS
vulnerabil ...)
TODO: check
CVE-2024-44918 (A cross-site scripting (XSS) vulnerability in the component
admin_data ...)
- TODO: check
+ NOT-FOR-US: SeaCMS
CVE-2024-44916 (Vulnerability in admin_ip.php in Seacms v13.1, when
action=set, allows ...)
- TODO: check
+ NOT-FOR-US: SeaCMS
CVE-2024-42379
REJECTED
CVE-2024-38868 (Zohocorp ManageEngine Endpoint Central affected byIncorrect
authorizat ...)
- TODO: check
+ NOT-FOR-US: Zohocorp ManageEngine
CVE-2024-21658 (discourse-calendar is a discourse plugin which adds the
ability to cre ...)
- TODO: check
+ NOT-FOR-US: discourse-calendar plugin
CVE-2022-48944 (In the Linux kernel, the following vulnerability has been
resolved: s ...)
- linux 5.16.14-1
NOTE:
https://git.kernel.org/linus/b1e8206582f9d680cff7d04828708c8b6ab32957 (5.17-rc5)
@@ -116,7 +116,7 @@ CVE-2024-44944 (In the Linux kernel, the following
vulnerability has been resolv
CVE-2024-42412 (Cross-site scripting vulnerability exists in WAB-I1750-PS and
WAB-S116 ...)
NOT-FOR-US: WAB-I1750-PS and WAB-S1167-PS
CVE-2024-41349 (unmark 1.9.2 is vulnerable to Cross Site Scripting (XSS) via
applicati ...)
- TODO: check
+ NOT-FOR-US: unmark
CVE-2024-3998 (The Betheme theme for WordPress is vulnerable to Stored
Cross-Site Scr ...)
NOT-FOR-US: WordPress plugin
CVE-2024-3673 (The Web Directory Free WordPress plugin before 1.7.3 does not
validate ...)
@@ -130,7 +130,7 @@ CVE-2024-2881 (Fault Injection vulnerability
inwc_ed25519_sign_msg function in w
CVE-2024-2694 (The Betheme theme for WordPress is vulnerable to PHP Object
Injection ...)
NOT-FOR-US: WordPress theme
CVE-2024-2502 (An application can be configured to block boot attempts after
consecut ...)
- TODO: check
+ NOT-FOR-US: Silabs
CVE-2024-1545 (Fault Injection vulnerability in RsaPrivateDecryption function
in wolf ...)
TODO: check
CVE-2024-1543 (The side-channel protected T-Table implementation in wolfSSL up
to ver ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/33f20bfdcdaacac9ce3b9d31779a61247484314f
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/33f20bfdcdaacac9ce3b9d31779a61247484314f
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
