Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
ea9cedf5 by Salvatore Bonaccorso at 2024-09-24T22:24:47+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,43 +1,43 @@
CVE-2024-9148 (Flowise < 2.1.1 suffers from a Stored Cross-Site vulnerability
due to ...)
TODO: check
CVE-2024-9142 (External Control of File Name or Path, : Incorrect Permission
Assignme ...)
- TODO: check
+ NOT-FOR-US: Olgu Computer Systems e-Belediye
CVE-2024-9141 (Cross-Site Scripting (XSS) vulnerability in the Oct8ne system.
This fl ...)
- TODO: check
+ NOT-FOR-US: Oct8ne system
CVE-2024-9063
REJECTED
CVE-2024-8942 (Vulnerability in Scriptcase version 9.4.019 that consists of a
Cross-S ...)
TODO: check
CVE-2024-8941 (Path traversal vulnerability in Scriptcase version 9.4.019, in
/script ...)
- TODO: check
+ NOT-FOR-US: Scriptcase
CVE-2024-8940 (Vulnerability in the Scriptcase application version 9.4.019,
which inv ...)
- TODO: check
+ NOT-FOR-US: Scriptcase
CVE-2024-8878 (The password recovery mechanism for the forgotten password in
Riello N ...)
- TODO: check
+ NOT-FOR-US: Riello Netman
CVE-2024-8877 (Improper neutralization of special elements results in a SQL
Injection ...)
- TODO: check
+ NOT-FOR-US: Riello Netman
CVE-2024-8801 (The Happy Addons for Elementor plugin for WordPress is
vulnerable to S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-8067 (In versions of Helix Core prior to 2024.1 Patch 2
(2024.1/2655224) a W ...)
TODO: check
CVE-2024-47048 (Rocket.Chat 6.12.0, 6.11.2, 6.10.5, 6.9.6, 6.8.6, 6.7.8, and
earlier a ...)
- TODO: check
+ NOT-FOR-US: Rocket.Chat
CVE-2024-46936 (Rocket.Chat 6.12.0, 6.11.2, 6.10.5, 6.9.6, 6.8.6, 6.7.8, and
before is ...)
- TODO: check
+ NOT-FOR-US: Rocket.Chat
CVE-2024-46935 (Rocket.Chat 6.12.0, 6.11.2, 6.10.5, 6.9.6, 6.8.6, 6.7.8, and
earlier i ...)
- TODO: check
+ NOT-FOR-US: Rocket.Chat
CVE-2024-46934 (Rocket.Chat 6.12.0, 6.11.2, 6.10.5, 6.9.6, 6.8.6, 6.7.8, and
earlier i ...)
- TODO: check
+ NOT-FOR-US: Rocket.Chat
CVE-2024-46610 (An access control issue in IceCMS v3.4.7 and before allows
attackers t ...)
- TODO: check
+ NOT-FOR-US: IceCMS
CVE-2024-46609 (An access control issue in the CheckVip function in
UserController.jav ...)
- TODO: check
+ NOT-FOR-US: IceCMS
CVE-2024-46607 (Incorrect access control in IceCMS v3.4.7 and before allows
attackers ...)
- TODO: check
+ NOT-FOR-US: IceCMS
CVE-2024-45599 (Cursor is an artificial intelligence code editor. Prior to
version 0.4 ...)
TODO: check
CVE-2024-42797 (An Incorrect Access Control vulnerability was found in
/music/ajax.php ...)
- TODO: check
+ NOT-FOR-US: Kashipara Music Management System
CVE-2024-42507 (Command injection vulnerabilities in the underlying CLI
service could ...)
TODO: check
CVE-2024-42506 (Command injection vulnerabilities in the underlying CLI
service could ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ea9cedf57050c2fef2398f3517a7af915edc4f46
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ea9cedf57050c2fef2398f3517a7af915edc4f46
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
