Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
b69ba8e3 by security tracker role at 2024-10-05T20:12:13+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,143 @@
+CVE-2024-9536 (A vulnerability was found in ESAFENET CDG V5. It has been rated
as cri ...)
+ TODO: check
+CVE-2024-9535 (A vulnerability was found in D-Link DIR-605L 2.13B01 BETA. It
has been ...)
+ TODO: check
+CVE-2024-9534 (A vulnerability was found in D-Link DIR-605L 2.13B01 BETA. It
has been ...)
+ TODO: check
+CVE-2024-9533 (A vulnerability was found in D-Link DIR-605L 2.13B01 BETA and
classifi ...)
+ TODO: check
+CVE-2024-9417 (The Hash Form \u2013 Drag & Drop Form Builder plugin for
WordPress is ...)
+ TODO: check
+CVE-2024-9314 (The Rank Math SEO \u2013 AI SEO Tools to Dominate SEO Rankings
plugin ...)
+ TODO: check
+CVE-2024-9161 (The Rank Math SEO \u2013 AI SEO Tools to Dominate SEO Rankings
plugin ...)
+ TODO: check
+CVE-2024-9146 (Improper Limitation of a Pathname to a Restricted Directory
('Path Tra ...)
+ TODO: check
+CVE-2024-47647 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47646 (URL Redirection to Untrusted Site ('Open Redirect')
vulnerability in P ...)
+ TODO: check
+CVE-2024-47644 (Cross-Site Request Forgery (CSRF) vulnerability in Copyscape /
Indigo ...)
+ TODO: check
+CVE-2024-47643 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47642 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47639 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47638 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47635 (Cross-Site Request Forgery (CSRF) vulnerability in
TinyPNG.This issue ...)
+ TODO: check
+CVE-2024-47633 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47632 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47631 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47630 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47629 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47628 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47627 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47626 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47625 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47624 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47623 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47622 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47621 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47395 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47394 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47393 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47392 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47391 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47390 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47389 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47388 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47387 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47386 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47385 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47384 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47383 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47382 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47381 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47380 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47379 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47378 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47377 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47376 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47375 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47374 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47373 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47372 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47371 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47370 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47369 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
+ TODO: check
+CVE-2024-47324 (Improper Limitation of a Pathname to a Restricted Directory
('Path Tra ...)
+ TODO: check
+CVE-2024-47323 (Improper Limitation of a Pathname to a Restricted Directory
('Path Tra ...)
+ TODO: check
+CVE-2024-47319 (Unrestricted Upload of File with Dangerous Type vulnerability
in Bit A ...)
+ TODO: check
+CVE-2024-47316 (Authorization Bypass Through User-Controlled Key vulnerability
in Salo ...)
+ TODO: check
+CVE-2024-47309 (Improper Limitation of a Pathname to a Restricted Directory
('Path Tra ...)
+ TODO: check
+CVE-2024-44034 (Improper Limitation of a Pathname to a Restricted Directory
('Path Tra ...)
+ TODO: check
+CVE-2024-44023 (Improper Limitation of a Pathname to a Restricted Directory
('Path Tra ...)
+ TODO: check
+CVE-2024-44018 (Improper Limitation of a Pathname to a Restricted Directory
('Path Tra ...)
+ TODO: check
+CVE-2024-44016 (Improper Limitation of a Pathname to a Restricted Directory
('Path Tra ...)
+ TODO: check
+CVE-2024-44015 (Improper Limitation of a Pathname to a Restricted Directory
('Path Tra ...)
+ TODO: check
+CVE-2024-44014 (Improper Limitation of a Pathname to a Restricted Directory
('Path Tra ...)
+ TODO: check
+CVE-2024-44013 (Improper Limitation of a Pathname to a Restricted Directory
('Path Tra ...)
+ TODO: check
+CVE-2024-44012 (Improper Limitation of a Pathname to a Restricted Directory
('Path Tra ...)
+ TODO: check
+CVE-2024-44011 (Improper Limitation of a Pathname to a Restricted Directory
('Path Tra ...)
+ TODO: check
CVE-2024-9532 (A vulnerability has been found in D-Link DIR-605L 2.13B01 BETA
and cla ...)
NOT-FOR-US: D-Link
CVE-2024-9528 (The Contact Form Plugin by Fluent Forms for Quiz, Survey, and
Drag & D ...)
@@ -11,6 +151,7 @@ CVE-2024-8743 (The Bit File Manager \u2013 100% Free & Open
Source File Manager
CVE-2024-8486 (The Shortcodes and extra features for Phlox theme plugin for
WordPress ...)
NOT-FOR-US: WordPress plugin
CVE-2024-47913 (An issue was discovered in the AbuseFilter extension for
MediaWiki bef ...)
+ {DSA-5785-1}
- mediawiki 1:1.39.10-1
[bullseye] - mediawiki <not-affected> (AbuseFilter extension bundled
since 1.38)
NOTE: https://phabricator.wikimedia.org/T372998
@@ -271,6 +412,7 @@ CVE-2024-45871 (Bandisoft BandiView 7.05 is Incorrect
Access Control via sub_0x2
CVE-2024-45870 (Bandisoft BandiView 7.05 is vulnerable to Incorrect Access
Control in ...)
NOT-FOR-US: Bandisoft BandiView
CVE-2024-42415 (An integer overflow vulnerability exists in the Compound
Document Bina ...)
+ {DSA-5786-1}
- libgsf <unfixed> (bug #1084056)
NOTE:
https://talosintelligence.com/vulnerability_reports/TALOS-2024-2069
NOTE: https://gitlab.gnome.org/GNOME/libgsf/-/issues/34
@@ -314,6 +456,7 @@ CVE-2024-41163 (A directory traversal vulnerability exists
in the archive downlo
CVE-2024-39755 (A privilege escalation vulnerability exists in the Veertu Anka
Build 1 ...)
NOT-FOR-US: Veertu Anka
CVE-2024-36474 (An integer overflow vulnerability exists in the Compound
Document Bina ...)
+ {DSA-5786-1}
- libgsf <unfixed> (bug #1084056)
NOTE:
https://talosintelligence.com/vulnerability_reports/TALOS-2024-2068
NOTE: https://gitlab.gnome.org/GNOME/libgsf/-/issues/34
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b69ba8e30a6cb8fac27061b7dbb5d5c6c594ea5f
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b69ba8e30a6cb8fac27061b7dbb5d5c6c594ea5f
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
