Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
4c889829 by Salvatore Bonaccorso at 2024-10-28T21:17:54+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,137 +1,137 @@
CVE-2024-9825 (The Chef Habitat builder-api on-prem-builder package with any
version ...)
TODO: check
CVE-2024-9629 (The Contact Form 7 + Telegram plugin for WordPress is
vulnerable to un ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-8013 (A bug in query analysis of certain complex self-referential
$lookup su ...)
TODO: check
CVE-2024-6245 (Use of Default Credentials vulnerability in Maruti Suzuki
SmartPlay on ...)
- TODO: check
+ NOT-FOR-US: Maruti Suzuki SmartPlay
CVE-2024-5532 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: OpenText
CVE-2024-50582 (In JetBrains YouTrack before 2024.3.47707 stored XSS was
possible due ...)
- TODO: check
+ NOT-FOR-US: JetBrains YouTrack
CVE-2024-50581 (In JetBrains YouTrack before 2024.3.47707 improper HTML
sanitization c ...)
- TODO: check
+ NOT-FOR-US: JetBrains YouTrack
CVE-2024-50580 (In JetBrains YouTrack before 2024.3.47707 multiple XSS were
possible d ...)
- TODO: check
+ NOT-FOR-US: JetBrains YouTrack
CVE-2024-50579 (In JetBrains YouTrack before 2024.3.47707 reflected XSS due to
insecur ...)
- TODO: check
+ NOT-FOR-US: JetBrains YouTrack
CVE-2024-50578 (In JetBrains YouTrack before 2024.3.47707 stored XSS was
possible via ...)
- TODO: check
+ NOT-FOR-US: JetBrains YouTrack
CVE-2024-50577 (In JetBrains YouTrack before 2024.3.47707 stored XSS was
possible via ...)
- TODO: check
+ NOT-FOR-US: JetBrains YouTrack
CVE-2024-50576 (In JetBrains YouTrack before 2024.3.47707 stored XSS was
possible via ...)
- TODO: check
+ NOT-FOR-US: JetBrains YouTrack
CVE-2024-50575 (In JetBrains YouTrack before 2024.3.47707 reflected XSS was
possible i ...)
- TODO: check
+ NOT-FOR-US: JetBrains YouTrack
CVE-2024-50574 (In JetBrains YouTrack before 2024.3.47707 potential ReDoS
exploit was ...)
- TODO: check
+ NOT-FOR-US: JetBrains YouTrack
CVE-2024-50573 (In JetBrains Hub before 2024.3.47707 improper access control
allowed u ...)
- TODO: check
+ NOT-FOR-US: JetBrains Hub
CVE-2024-50502 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50501 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50498 (Improper Control of Generation of Code ('Code Injection')
vulnerabilit ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50497 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50492 (Improper Control of Generation of Code ('Code Injection')
vulnerabilit ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50491 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50489 (Authentication Bypass Using an Alternate Path or Channel
vulnerability ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50488 (Authentication Bypass Using an Alternate Path or Channel
vulnerability ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50487 (Authentication Bypass Using an Alternate Path or Channel
vulnerability ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50486 (Authentication Bypass Using an Alternate Path or Channel
vulnerability ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50483 (Authorization Bypass Through User-Controlled Key vulnerability
in Meet ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50479 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50478 (Authentication Bypass by Primary Weakness vulnerability in
Swoop 1-Cli ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50477 (Authentication Bypass Using an Alternate Path or Channel
vulnerability ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50472 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50471 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50470 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50469 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50468 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50467 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50465 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50464 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50463 (URL Redirection to Untrusted Site ('Open Redirect')
vulnerability in W ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50462 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50461 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50460 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50458 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50457 (: Improper Control of Filename for Include/Require Statement
in PHP Pr ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50453 (Relative Path Traversal vulnerability in Webangon The Pack
Elementor a ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50451 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50450 (Improper Control of Generation of Code ('Code Injection')
vulnerabilit ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50449 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50448 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50447 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50446 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50445 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50443 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50442 (Improper Restriction of XML External Entity Reference
vulnerability in ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50441 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50440 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50439 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50438 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50437 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50436 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50435 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50434 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50433 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50432 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50431 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50429 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50416 (Deserialization of Untrusted Data vulnerability in WPClever
WPC Shop a ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-50408 (Deserialization of Untrusted Data vulnerability in Kiboko Labs
Namaste ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-49771 (MPXJ is an open source library to read and write project plans
from a ...)
TODO: check
CVE-2024-49761 (REXML is an XML toolkit for Ruby. The REXML gem before 3.3.9
has a ReD ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4c8898292e8947d5d68209925f3cbc2b9fe0b8a5
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4c8898292e8947d5d68209925f3cbc2b9fe0b8a5
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
