Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
8bcaae93 by security tracker role at 2025-01-02T20:12:00+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,4 +1,438 @@
-CVE-2022-49035 [media: s5p_cec: limit msg.len to CEC_MAX_MSG_SIZE]
+CVE-2025-0173 (A vulnerability was found in SourceCodester Online Eyewear Shop
1.0 an ...)
+ TODO: check
+CVE-2025-0172 (A vulnerability has been found in code-projects Chat System 1.0
and cl ...)
+ TODO: check
+CVE-2025-0171 (A vulnerability, which was classified as critical, was found in
code-p ...)
+ TODO: check
+CVE-2024-9950 (A vulnerability in Forescout SecureConnector v11.3.07.0109on
Windows a ...)
+ TODO: check
+CVE-2024-56414 (Web installer integrity check used weak hash algorithm. The
following ...)
+ TODO: check
+CVE-2024-56413 (Missing session invalidation after user deletion. The
following produc ...)
+ TODO: check
+CVE-2024-56302 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-56268 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-56267 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-56266 (Missing Authorization vulnerability in Sonaar Music MP3 Audio
Player f ...)
+ TODO: check
+CVE-2024-56264 (Unrestricted Upload of File with Dangerous Type vulnerability
in Beee ...)
+ TODO: check
+CVE-2024-56263 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-56262 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-56261 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-56260 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-56259 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-56258 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-56257 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-56255 (Missing Authorization vulnerability in AyeCode AyeCode Connect
allows ...)
+ TODO: check
+CVE-2024-56254 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-56253 (Missing Authorization vulnerability in supsystic.com Data
Tables Gener ...)
+ TODO: check
+CVE-2024-56252 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-56251 (Cross-Site Request Forgery (CSRF) vulnerability in Event
Espresso Even ...)
+ TODO: check
+CVE-2024-56250 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2024-56249 (Unrestricted Upload of File with Dangerous Type vulnerability
in Webde ...)
+ TODO: check
+CVE-2024-56248 (Improper Limitation of a Pathname to a Restricted Directory
('Path Tra ...)
+ TODO: check
+CVE-2024-56247 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2024-56246 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-56245 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-56244 (Missing Authorization vulnerability in WP Royal Ashe Extra
allows Expl ...)
+ TODO: check
+CVE-2024-56243 (Missing Authorization vulnerability in JS Morisset WPSSO Core
allows E ...)
+ TODO: check
+CVE-2024-56242 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-56241 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-56240 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-56239 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-56238 (Missing Authorization vulnerability in QunatumCloud Floating
Action Bu ...)
+ TODO: check
+CVE-2024-56237 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-56236 (Missing Authorization vulnerability in Jakob Bouchard Hestia
Nginx Cac ...)
+ TODO: check
+CVE-2024-56199 (phpMyFAQ is an open source FAQ web application. Starting no
later than ...)
+ TODO: check
+CVE-2024-56137 (MaxKB, which stands for Max Knowledge Base, is an open source
knowledg ...)
+ TODO: check
+CVE-2024-56069 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-56060 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-56038 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-56037 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-56036 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-56035 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-56034 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-56033 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-56032 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-56030 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-56029 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-56028 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-56027 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-56026 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-56025 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-56024 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-56023 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-56022 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-56019 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-56018 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-56014 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-55543 (Local privilege escalation due to DLL hijacking vulnerability.
The fol ...)
+ TODO: check
+CVE-2024-55542 (Local privilege escalation due to excessive permissions
assigned to Tr ...)
+ TODO: check
+CVE-2024-55541 (Stored cross-site scripting (XSS) vulnerability due to missing
origin ...)
+ TODO: check
+CVE-2024-55540 (Local privilege escalation due to DLL hijacking vulnerability.
The fol ...)
+ TODO: check
+CVE-2024-55538 (Sensitive information disclosure due to missing
authentication. The fo ...)
+ TODO: check
+CVE-2024-49385 (Sensitive information disclosure due to insecure folder
permissions. T ...)
+ TODO: check
+CVE-2024-48197 (Cross Site Scripting vulnerability in Audiocodes MP-202b
v.4.4.3 allow ...)
+ TODO: check
+CVE-2024-43927 (Cross-Site Request Forgery (CSRF) vulnerability in Till
Kr\xfcss Email ...)
+ TODO: check
+CVE-2024-39623 (Cross-Site Request Forgery (CSRF) vulnerability in
CridioStudio Listin ...)
+ TODO: check
+CVE-2024-38790 (Cross-Site Request Forgery (CSRF) vulnerability in Smartsupp
Smartsupp ...)
+ TODO: check
+CVE-2024-38789 (Cross-Site Request Forgery (CSRF) vulnerability in Marco
Milesi Telegr ...)
+ TODO: check
+CVE-2024-38778 (Cross-Site Request Forgery (CSRF) vulnerability in Epsiloncool
WP Fast ...)
+ TODO: check
+CVE-2024-38766 (Cross-Site Request Forgery (CSRF) vulnerability in Matomo
Matomo Analy ...)
+ TODO: check
+CVE-2024-38765 (Cross-Site Request Forgery (CSRF) vulnerability in
Freelancelot Oceani ...)
+ TODO: check
+CVE-2024-38764 (Cross-Site Request Forgery (CSRF) vulnerability in Marsian
allows Cros ...)
+ TODO: check
+CVE-2024-38763 (Cross-Site Request Forgery (CSRF) vulnerability in Themes4WP
Popularis ...)
+ TODO: check
+CVE-2024-38762 (Cross-Site Request Forgery (CSRF) vulnerability in The Events
Calendar ...)
+ TODO: check
+CVE-2024-38754 (Cross-Site Request Forgery (CSRF) vulnerability in Tagbox
Taggbox allo ...)
+ TODO: check
+CVE-2024-38753 (Cross-Site Request Forgery (CSRF) vulnerability in Labib Ahmed
Animate ...)
+ TODO: check
+CVE-2024-38751 (Cross-Site Request Forgery (CSRF) vulnerability in Magazine3
Google Ad ...)
+ TODO: check
+CVE-2024-38732 (Cross-Site Request Forgery (CSRF) vulnerability in VolThemes
Patricia ...)
+ TODO: check
+CVE-2024-38731 (Cross-Site Request Forgery (CSRF) vulnerability in Marsian
i-amaze all ...)
+ TODO: check
+CVE-2024-38729 (Cross-Site Request Forgery (CSRF) vulnerability in MBE
Worldwide S.p.A ...)
+ TODO: check
+CVE-2024-38691 (Cross-Site Request Forgery (CSRF) vulnerability in Metorik
Metorik \u2 ...)
+ TODO: check
+CVE-2024-37937 (Cross-Site Request Forgery (CSRF) vulnerability in Rara Theme
Rara Bus ...)
+ TODO: check
+CVE-2024-37931 (Cross-Site Request Forgery (CSRF) vulnerability in
Creativthemes Point ...)
+ TODO: check
+CVE-2024-37925 (Cross-Site Request Forgery (CSRF) vulnerability in BUDDYBOSS
LLC Buddy ...)
+ TODO: check
+CVE-2024-37543 (Cross-Site Request Forgery (CSRF) vulnerability in Nitesh
Singh Ultima ...)
+ TODO: check
+CVE-2024-37540 (Cross-Site Request Forgery (CSRF) vulnerability in Leaky
Paywall Leaky ...)
+ TODO: check
+CVE-2024-37518 (Cross-Site Request Forgery (CSRF) vulnerability in The Events
Calendar ...)
+ TODO: check
+CVE-2024-37511 (Cross-Site Request Forgery (CSRF) vulnerability in SWTE Swift
Performa ...)
+ TODO: check
+CVE-2024-37508 (Cross-Site Request Forgery (CSRF) vulnerability in Rara Theme
Construc ...)
+ TODO: check
+CVE-2024-37503 (Cross-Site Request Forgery (CSRF) vulnerability in Rara Theme
Lawyer L ...)
+ TODO: check
+CVE-2024-37493 (Cross-Site Request Forgery (CSRF) vulnerability in SKT Themes
Posterit ...)
+ TODO: check
+CVE-2024-37491 (Cross-Site Request Forgery (CSRF) vulnerability in
Apollo13Themes Rife ...)
+ TODO: check
+CVE-2024-37490 (Cross-Site Request Forgery (CSRF) vulnerability in WP Royal
Bard allow ...)
+ TODO: check
+CVE-2024-37478 (Cross-Site Request Forgery (CSRF) vulnerability in WP Royal
Ashe allow ...)
+ TODO: check
+CVE-2024-37473 (Cross-Site Request Forgery (CSRF) vulnerability in BlazeThemes
Trendy ...)
+ TODO: check
+CVE-2024-37469 (Cross-Site Request Forgery (CSRF) vulnerability in
CreativeThemes Bloc ...)
+ TODO: check
+CVE-2024-37467 (Cross-Site Request Forgery (CSRF) vulnerability in ThemeIsle
Hestia al ...)
+ TODO: check
+CVE-2024-37458 (Cross-Site Request Forgery (CSRF) vulnerability in
ExtendThemes Highli ...)
+ TODO: check
+CVE-2024-37452 (Cross-Site Request Forgery (CSRF) vulnerability in MyThemeShop
Schema ...)
+ TODO: check
+CVE-2024-37451 (Cross-Site Request Forgery (CSRF) vulnerability in Rara Theme
Travel A ...)
+ TODO: check
+CVE-2024-37450 (Cross-Site Request Forgery (CSRF) vulnerability in Rara Theme
Benevole ...)
+ TODO: check
+CVE-2024-37448 (Cross-Site Request Forgery (CSRF) vulnerability in FameThemes
OnePress ...)
+ TODO: check
+CVE-2024-37441 (Cross-Site Request Forgery (CSRF) vulnerability in
DesertThemes NewsMa ...)
+ TODO: check
+CVE-2024-37438 (Cross-Site Request Forgery (CSRF) vulnerability in Uncanny Owl
Uncanny ...)
+ TODO: check
+CVE-2024-37435 (Cross-Site Request Forgery (CSRF) vulnerability in Rara Theme
Perfect ...)
+ TODO: check
+CVE-2024-37431 (Cross-Site Request Forgery (CSRF) vulnerability in Horea Radu
Mesmeriz ...)
+ TODO: check
+CVE-2024-37426 (Cross-Site Request Forgery (CSRF) vulnerability in Rara Theme
Elegant ...)
+ TODO: check
+CVE-2024-37421 (Cross-Site Request Forgery (CSRF) vulnerability in Rara Theme
JobScout ...)
+ TODO: check
+CVE-2024-37417 (Cross-Site Request Forgery (CSRF) vulnerability in Coachify
Coachify a ...)
+ TODO: check
+CVE-2024-37413 (Cross-Site Request Forgery (CSRF) vulnerability in Rara Theme
Preschoo ...)
+ TODO: check
+CVE-2024-37412 (Cross-Site Request Forgery (CSRF) vulnerability in Blossom
Themes Blos ...)
+ TODO: check
+CVE-2024-37274 (Cross-Site Request Forgery (CSRF) vulnerability in Freshlight
Lab WP M ...)
+ TODO: check
+CVE-2024-37272 (Cross-Site Request Forgery (CSRF) vulnerability in WP Travel
Engine Tr ...)
+ TODO: check
+CVE-2024-37243 (Cross-Site Request Forgery (CSRF) vulnerability in Blossom
Themes Vand ...)
+ TODO: check
+CVE-2024-37242 (Cross-Site Request Forgery (CSRF) vulnerability in Automattic
Newspack ...)
+ TODO: check
+CVE-2024-37241 (Cross-Site Request Forgery (CSRF) vulnerability in Automattic
WP Job M ...)
+ TODO: check
+CVE-2024-37240 (Cross-Site Request Forgery (CSRF) vulnerability in Faboba
Falang multi ...)
+ TODO: check
+CVE-2024-37238 (Cross-Site Request Forgery (CSRF) vulnerability in Greg
Winiarski WPAd ...)
+ TODO: check
+CVE-2024-37237 (Cross-Site Request Forgery (CSRF) vulnerability in FS-code FS
Poster a ...)
+ TODO: check
+CVE-2024-37236 (Cross-Site Request Forgery (CSRF) vulnerability in Tim
Whitlock Loco T ...)
+ TODO: check
+CVE-2024-37235 (Cross-Site Request Forgery (CSRF) vulnerability in Groundhogg
Inc. Gro ...)
+ TODO: check
+CVE-2024-37104 (Cross-Site Request Forgery (CSRF) vulnerability in Rara Theme
Chic Lit ...)
+ TODO: check
+CVE-2024-37103 (Cross-Site Request Forgery (CSRF) vulnerability in Rara Theme
Educatio ...)
+ TODO: check
+CVE-2024-37102 (Cross-Site Request Forgery (CSRF) vulnerability in Blossom
Themes Vilv ...)
+ TODO: check
+CVE-2024-37093 (Cross-Site Request Forgery (CSRF) vulnerability in
StylemixThemes Mast ...)
+ TODO: check
+CVE-2024-13111 (A vulnerability classified as critical was found in Beijing
Yunfan Int ...)
+ TODO: check
+CVE-2024-13110 (A vulnerability classified as problematic has been found in
Beijing Yu ...)
+ TODO: check
+CVE-2024-13109 (A vulnerability was found in Beijing Yunfan Internet
Technology Yunfan ...)
+ TODO: check
+CVE-2024-13108 (A vulnerability was found in D-Link DIR-816 A2
1.10CNB05_R1B011D88210. ...)
+ TODO: check
+CVE-2024-13107 (A vulnerability was found in D-Link DIR-816 A2
1.10CNB05_R1B011D88210. ...)
+ TODO: check
+CVE-2024-13106 (A vulnerability was found in D-Link DIR-816 A2
1.10CNB05_R1B011D88210 ...)
+ TODO: check
+CVE-2024-13105 (A vulnerability has been found in D-Link DIR-816 A2
1.10CNB05_R1B011D8 ...)
+ TODO: check
+CVE-2024-13104 (A vulnerability, which was classified as critical, was found
in D-Link ...)
+ TODO: check
+CVE-2024-13103 (A vulnerability, which was classified as critical, has been
found in D ...)
+ TODO: check
+CVE-2024-13102 (A vulnerability classified as critical was found in D-Link
DIR-816 A2 ...)
+ TODO: check
+CVE-2024-13093 (A vulnerability, which was classified as critical, has been
found in c ...)
+ TODO: check
+CVE-2024-13092 (A vulnerability classified as critical was found in
code-projects Job ...)
+ TODO: check
+CVE-2024-13062 (An unintended entry point vulnerability has been identified in
certain ...)
+ TODO: check
+CVE-2024-12912 (An improper input insertion vulnerability in AiCloud on
certain router ...)
+ TODO: check
+CVE-2024-12907 (Kentico CMS in version 7 is vulnerable to a Reflected XSS
attacks thro ...)
+ TODO: check
+CVE-2024-11717 (Tokens in CTFd used for account activation and password
resetting can ...)
+ TODO: check
+CVE-2024-11716 (While assignment of a user to a team (bracket) inCTFd should
be possi ...)
+ TODO: check
+CVE-2023-48758 (Missing Authorization vulnerability in Crocoblock JetEngine
allows Exp ...)
+ TODO: check
+CVE-2023-48739 (Missing Authorization vulnerability in Porto Theme Porto Theme
- Funct ...)
+ TODO: check
+CVE-2023-47807 (Missing Authorization vulnerability in 10Web 10WebAnalytics
allows Exp ...)
+ TODO: check
+CVE-2023-47778 (Missing Authorization vulnerability in LuckyWP LuckyWP Scripts
Control ...)
+ TODO: check
+CVE-2023-47693 (Missing Authorization vulnerability in Themefic Ultimate
Addons for Co ...)
+ TODO: check
+CVE-2023-47692 (Missing Authorization vulnerability in Flothemes Flo Forms
allows Expl ...)
+ TODO: check
+CVE-2023-47689 (Missing Authorization vulnerability in Toast Plugins Animator
allows E ...)
+ TODO: check
+CVE-2023-47661 (Missing Authorization vulnerability in Dragfy Dragfy Addons
for Elemen ...)
+ TODO: check
+CVE-2023-47648 (Missing Authorization vulnerability in spider-themes EazyDocs
allows E ...)
+ TODO: check
+CVE-2023-47647 (Missing Authorization vulnerability in LearningTimes BadgeOS
allows Ex ...)
+ TODO: check
+CVE-2023-47557 (Missing Authorization vulnerability in wp-buy Visitors Traffic
Real Ti ...)
+ TODO: check
+CVE-2023-47523 (Missing Authorization vulnerability in Ecreate Infotech Auto
Tag Creat ...)
+ TODO: check
+CVE-2023-47515 (Missing Authorization vulnerability in Seers Seers allows
Exploiting I ...)
+ TODO: check
+CVE-2023-47241 (Missing Authorization vulnerability in CoCart Headless, LLC
CoCart \u2 ...)
+ TODO: check
+CVE-2023-47225 (Missing Authorization vulnerability in KaizenCoders Short URL
allows E ...)
+ TODO: check
+CVE-2023-47224 (Missing Authorization vulnerability in WP Travel WP Travel
allows Expl ...)
+ TODO: check
+CVE-2023-47188 (Missing Authorization vulnerability in PressTigers Simple Job
Board al ...)
+ TODO: check
+CVE-2023-47187 (Missing Authorization vulnerability in Labib Ahmed Animated
Rotating W ...)
+ TODO: check
+CVE-2023-47183 (Missing Authorization vulnerability in GiveWP GiveWP allows
Exploiting ...)
+ TODO: check
+CVE-2023-47180 (Missing Authorization vulnerability in XLPlugins Finale Lite
allows Ex ...)
+ TODO: check
+CVE-2023-47179 (Missing Authorization vulnerability in ByConsole WooODT Lite
allows Ex ...)
+ TODO: check
+CVE-2023-46644 (Missing Authorization vulnerability in WP CTA PRO WordPress
CTA allows ...)
+ TODO: check
+CVE-2023-46639 (Missing Authorization vulnerability in FeedbackWP kk Star
Ratings allo ...)
+ TODO: check
+CVE-2023-46637 (Missing Authorization vulnerability in Saurav Sharma Generate
Dummy Po ...)
+ TODO: check
+CVE-2023-46635 (Missing Authorization vulnerability in YITH YITH WooCommerce
Product A ...)
+ TODO: check
+CVE-2023-46633 (Missing Authorization vulnerability in TCBarrett Glossary
allows Explo ...)
+ TODO: check
+CVE-2023-46632 (Missing Authorization vulnerability in David Cramer My
Shortcodes allo ...)
+ TODO: check
+CVE-2023-46631 (Missing Authorization vulnerability in RevenueHunt Product
Recommendat ...)
+ TODO: check
+CVE-2023-46628 (Missing Authorization vulnerability in RedLettuce Plugins WP
Word Coun ...)
+ TODO: check
+CVE-2023-46616 (Missing Authorization vulnerability in NSquared Draw Attention
allows ...)
+ TODO: check
+CVE-2023-46612 (Missing Authorization vulnerability in codedrafty Mediabay
allows Expl ...)
+ TODO: check
+CVE-2023-46611 (Authentication Bypass by Primary Weakness vulnerability in
yourownprog ...)
+ TODO: check
+CVE-2023-46610 (Missing Authorization vulnerability in quillforms.com Quill
Forms allo ...)
+ TODO: check
+CVE-2023-46609 (Missing Authorization vulnerability in FeedFocal FeedFocal
allows Expl ...)
+ TODO: check
+CVE-2023-46608 (Missing Authorization vulnerability in WPDO DoLogin Security
allows Ex ...)
+ TODO: check
+CVE-2023-46607 (Missing Authorization vulnerability in WP iCal Availability WP
iCal Av ...)
+ TODO: check
+CVE-2023-46606 (Missing Authorization vulnerability in AtomChat AtomChat
allows Exploi ...)
+ TODO: check
+CVE-2023-46605 (Missing Authorization vulnerability in Ruslan Suhar Convertful
\u2013 ...)
+ TODO: check
+CVE-2023-46309 (Missing Authorization vulnerability in gVectors Team wpDiscuz
allows E ...)
+ TODO: check
+CVE-2023-46206 (Missing Authorization vulnerability in websoudan MW WP Form
allows Exp ...)
+ TODO: check
+CVE-2023-46203 (Missing Authorization vulnerability in JustCoded / Alex
Prokopenko Jus ...)
+ TODO: check
+CVE-2023-46196 (Missing Authorization vulnerability in Repuso Social proof
testimonial ...)
+ TODO: check
+CVE-2023-46195 (Missing Authorization vulnerability in CoSchedule Headline
Analyzer al ...)
+ TODO: check
+CVE-2023-46188 (Missing Authorization vulnerability in Jose Mortellaro
Freesoul Deacti ...)
+ TODO: check
+CVE-2023-46083 (Missing Authorization vulnerability in Kali Forms Contact Form
builder ...)
+ TODO: check
+CVE-2023-46082 (Missing Authorization vulnerability in Cyberlord92 Broken Link
Checker ...)
+ TODO: check
+CVE-2023-46080 (Missing Authorization vulnerability in Farhan Noor ApplyOnline
\u2013 ...)
+ TODO: check
+CVE-2023-46079 (Missing Authorization vulnerability in WP Royal Ashe Extra
allows Expl ...)
+ TODO: check
+CVE-2023-46073 (Missing Authorization vulnerability in nofearinc DX Delete
Attached Me ...)
+ TODO: check
+CVE-2023-45828 (Missing Authorization vulnerability in RumbleTalk Ltd
RumbleTalk Live ...)
+ TODO: check
+CVE-2023-45766 (Missing Authorization vulnerability in Poll Maker Team Poll
Maker allo ...)
+ TODO: check
+CVE-2023-45765 (Missing Authorization vulnerability in weDevs WP ERP allows
Exploiting ...)
+ TODO: check
+CVE-2023-45760 (Missing Authorization vulnerability in gVectors Team wpDiscuz
allows E ...)
+ TODO: check
+CVE-2023-45649 (Missing Authorization vulnerability in CodePeople Appointment
Hour Boo ...)
+ TODO: check
+CVE-2023-45636 (Missing Authorization vulnerability in WebToffee WordPress
Backup & Mi ...)
+ TODO: check
+CVE-2023-45633 (Missing Authorization vulnerability in IDX IMPress Listings
allows Exp ...)
+ TODO: check
+CVE-2023-45631 (Missing Authorization vulnerability in wpdevart Responsive
Image Galle ...)
+ TODO: check
+CVE-2023-45275 (Missing Authorization vulnerability in Kali Forms Contact Form
builder ...)
+ TODO: check
+CVE-2023-45272 (Missing Authorization vulnerability in 10Web 10Web Map Builder
for Goo ...)
+ TODO: check
+CVE-2023-45271 (Missing Authorization vulnerability in WowStore Team ProductX
\u2013 G ...)
+ TODO: check
+CVE-2023-45110 (Missing Authorization vulnerability in BoldThemes Bold
Timeline Lite a ...)
+ TODO: check
+CVE-2023-45104 (Missing Authorization vulnerability in WPDeveloper BetterLinks
allows ...)
+ TODO: check
+CVE-2023-45101 (Missing Authorization vulnerability in CusRev Customer Reviews
for Woo ...)
+ TODO: check
+CVE-2023-45061 (Missing Authorization vulnerability in AWSM Innovations WP Job
Opening ...)
+ TODO: check
+CVE-2023-45045 (Missing Authorization vulnerability in Kishor Khambu WP Custom
Widget ...)
+ TODO: check
+CVE-2023-45002 (Missing Authorization vulnerability in weDevs WP User Frontend
allows ...)
+ TODO: check
+CVE-2023-44988 (Missing Authorization vulnerability in Martin Gibson WP Custom
Admin I ...)
+ TODO: check
+CVE-2023-44258 (Missing Authorization vulnerability in Schema App Schema App
Structure ...)
+ TODO: check
+CVE-2023-40327 (Missing Authorization vulnerability in Putler / Storeapps
Putler Conne ...)
+ TODO: check
+CVE-2023-39994 (Missing Authorization vulnerability in Repute InfoSystems
ARMember Pre ...)
+ TODO: check
+CVE-2023-32240 (Missing Authorization vulnerability in Xtemos WoodMart allows
Exploiti ...)
+ TODO: check
+CVE-2022-49035 (In the Linux kernel, the following vulnerability has been
resolved: m ...)
- linux 6.0.8-1
[bullseye] - linux 5.10.158-1
NOTE:
https://git.kernel.org/linus/93f65ce036863893c164ca410938e0968964b26c (6.1-rc2)
@@ -159326,8 +159760,8 @@ CVE-2023-23674 (Auth. (admin+) Stored Cross-Site
Scripting (XSS) vulnerability i
NOT-FOR-US: WordPress plugin
CVE-2023-23673 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability
in Hari ...)
NOT-FOR-US: WordPress plugin
-CVE-2023-23672
- RESERVED
+CVE-2023-23672 (Missing Authorization vulnerability in Liquid Web / StellarWP
GiveWP.T ...)
+ TODO: check
CVE-2023-23671 (Cross-Site Request Forgery (CSRF) vulnerability in Muneeb
Layer Slider ...)
NOT-FOR-US: WordPress plugin
CVE-2023-23670 (Auth. (contributor+) Cross-Site Scripting (XSS) vulnerability
in Team ...)
@@ -165924,8 +166358,8 @@ CVE-2022-47603 (Unauth. Reflected Cross-Site
Scripting (XSS) vulnerability in wp
NOT-FOR-US: WordPress plugin
CVE-2022-47602 (Auth. (contributor+) Stored Cross-Site Scripting (XSS)
vulnerability i ...)
NOT-FOR-US: WordPress plugin
-CVE-2022-47601
- RESERVED
+CVE-2022-47601 (Missing Authorization vulnerability in JoomUnited WP Table
Manager all ...)
+ TODO: check
CVE-2022-47600 (Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in
I Thirte ...)
NOT-FOR-US: WordPress plugin
CVE-2022-47599 (Deserialization of Untrusted Data vulnerability in File
Manager by Bit ...)
@@ -172806,8 +173240,8 @@ CVE-2022-45832 (Missing Authorization vulnerability
in Hennessey Digital Attorne
NOT-FOR-US: WordPress plugin
CVE-2022-45831 (Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in
biplob01 ...)
NOT-FOR-US: WordPress plugin
-CVE-2022-45830
- RESERVED
+CVE-2022-45830 (Missing Authorization vulnerability in Analytify.This issue
affects An ...)
+ TODO: check
CVE-2022-45829 (Auth. Path Traversal vulnerability inEasy WP SMTP plugin <=
1.5.1 atWo ...)
NOT-FOR-US: WordPress plugin
CVE-2022-45828 (Cross-Site Request Forgery (CSRF) vulnerability in NooTheme
Noo Timeta ...)
@@ -172844,8 +173278,8 @@ CVE-2022-45813
RESERVED
CVE-2022-45812 (Auth. (subscriber+) Stored Cross-Site Scripting (XSS)
vulnerability in ...)
NOT-FOR-US: WordPress plugin
-CVE-2022-45811
- RESERVED
+CVE-2022-45811 (Missing Authorization vulnerability in WeyHan Ng Post
Teaser.This issu ...)
+ TODO: check
CVE-2022-45810 (Improper Neutralization of Formula Elements in a CSV File
vulnerabilit ...)
NOT-FOR-US: WordPress plugin
CVE-2022-45809 (Time-of-check Time-of-use (TOCTOU) Race Condition
vulnerability in Ric ...)
@@ -182254,8 +182688,8 @@ CVE-2022-43480 (Auth. (admin+) Stored Cross-Site
Scripting (XSS) vulnerability i
NOT-FOR-US: WordPress plugin
CVE-2022-43479 (Open redirect vulnerability in SHIRASAGI v1.14.4 to v1.15.0
allows a r ...)
NOT-FOR-US: SHIRASAGI
-CVE-2022-43476
- RESERVED
+CVE-2022-43476 (Missing Authorization vulnerability in Daniel S\xf6derstr\xf6m
/ Sidne ...)
+ TODO: check
CVE-2022-43472 (Missing Authorization vulnerability in StylemixThemes eRoom
\u2013 Zoo ...)
NOT-FOR-US: WordPress plugin
CVE-2022-43471
@@ -182324,8 +182758,8 @@ CVE-2022-42459 (Auth. WordPress Options Change
vulnerability in Image Hover Effe
NOT-FOR-US: WordPress plugin
CVE-2022-41996 (Cross-Site Request Forgery (CSRF) vulnerability in ThemeFusion
Avada p ...)
NOT-FOR-US: WordPress theme
-CVE-2022-41995
- RESERVED
+CVE-2022-41995 (Missing Authorization vulnerability in Galleryape Gallery
Images Ape a ...)
+ TODO: check
CVE-2022-41992 (A memory corruption vulnerability exists in the VHD File
Format parsin ...)
NOT-FOR-US: PowerISO
CVE-2022-41990 (Cross-Site Request Forgery (CSRF) vulnerability in Vinoj
Cardoza 3D Ta ...)
@@ -236549,7 +236983,7 @@ CVE-2022-24497 (Windows Network File System Remote
Code Execution Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-24496 (Windows Local Security Authority (LSA) Elevation of Privilege
Vulnerab ...)
NOT-FOR-US: Microsoft
-CVE-2022-24495 (Windows Direct Show - Remote Code Execution Vulnerability)
+CVE-2022-24495 (Windows Direct Show Remote Code Execution Vulnerability)
NOT-FOR-US: Microsoft
CVE-2022-24494 (Windows Ancillary Function Driver for WinSock Elevation of
Privilege V ...)
NOT-FOR-US: Microsoft
@@ -236565,7 +236999,7 @@ CVE-2022-24489 (Cluster Client Failover (CCF)
Elevation of Privilege Vulnerabili
NOT-FOR-US: Microsoft
CVE-2022-24488 (Windows Desktop Bridge Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
-CVE-2022-24487 (Windows Local Security Authority (LSA) Remote Code Execution
Vulnerabi ...)
+CVE-2022-24487 (Windows Local Security Authority Subsystem Service (LSASS)
Remote Code ...)
NOT-FOR-US: Microsoft
CVE-2022-24486 (Windows Kerberos Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8bcaae93a3d84e49988d165c90d2c596aceaa7aa
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8bcaae93a3d84e49988d165c90d2c596aceaa7aa
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
