Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
f8ede013 by Salvatore Bonaccorso at 2025-03-07T21:20:50+01:00
Process some more NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,15 +1,15 @@
CVE-2025-2090 (A vulnerability was found in PHPGurukul Pre-School Enrollment
System 1 ...)
NOT-FOR-US: PHPGurukul
CVE-2025-2089 (A vulnerability has been found in StarSea99 starsea-mall
1.0/2.X and c ...)
- TODO: check
+ NOT-FOR-US: StarSea99 starsea-mall
CVE-2025-2088 (A vulnerability, which was classified as critical, was found in
PHPGur ...)
NOT-FOR-US: PHPGurukul
CVE-2025-2087 (A vulnerability, which was classified as problematic, has been
found i ...)
- TODO: check
+ NOT-FOR-US: StarSea99 starsea-mall
CVE-2025-2086 (A vulnerability classified as problematic was found in
StarSea99 stars ...)
- TODO: check
+ NOT-FOR-US: StarSea99 starsea-mall
CVE-2025-2085 (A vulnerability classified as problematic has been found in
StarSea99 ...)
- TODO: check
+ NOT-FOR-US: StarSea99 starsea-mall
CVE-2025-2084 (A vulnerability was found in PHPGurukul Human Metapneumovirus
Testing ...)
NOT-FOR-US: PHPGurukul
CVE-2025-2024 (Trimble SketchUp SKP File Parsing Uninitialized Variable Remote
Code E ...)
@@ -17,9 +17,9 @@ CVE-2025-2024 (Trimble SketchUp SKP File Parsing
Uninitialized Variable Remote C
CVE-2025-27607 (Python JSON Logger is a JSON Formatter for Python Logging.
Between 30 ...)
TODO: check
CVE-2025-27604 (XWiki Confluence Migrator Pro helps admins to import
confluence packag ...)
- TODO: check
+ NOT-FOR-US: XWiki
CVE-2025-27603 (XWiki Confluence Migrator Pro helps admins to import
confluence packag ...)
- TODO: check
+ NOT-FOR-US: XWiki
CVE-2025-27597 (Vue I18n is the internationalization plugin for Vue.js.
@intlify/messa ...)
TODO: check
CVE-2025-27519 (Cognita is a RAG (Retrieval Augmented Generation) Framework
for buildi ...)
@@ -29,11 +29,11 @@ CVE-2025-27518 (Cognita is a RAG (Retrieval Augmented
Generation) Framework for
CVE-2025-27152 (axios is a promise based HTTP client for the browser and
node.js. The ...)
TODO: check
CVE-2025-26643 (No cwe for this issue in Microsoft Edge (Chromium-based)
allows an una ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2025-26331 (Dell ThinOS 2411 and prior, contains an Improper
Neutralization of Spe ...)
- TODO: check
+ NOT-FOR-US: Dell
CVE-2025-25617 (Incorrect Access Control in Unifiedtransform 2.X leads to
Privilege Es ...)
- TODO: check
+ NOT-FOR-US: Unifiedtransform
CVE-2025-1887 (SMB forced authentication vulnerability in versions prior to
2025.35.0 ...)
TODO: check
CVE-2025-1886 (Pass-Back vulnerability in versions prior to 2025.35.000 of
Sage 200 S ...)
@@ -45,7 +45,7 @@ CVE-2025-1315 (The InWave Jobs plugin for WordPress is
vulnerable to privilege e
CVE-2025-0959 (The Eventer - WordPress Event & Booking Manager Plugin plugin
for Word ...)
NOT-FOR-US: WordPress plugin
CVE-2025-0162 (IBM Aspera Shares 1.9.9 through 1.10.0 PL7 is vulnerable to an
XML ext ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2024-9658 (The School Management System for Wordpress plugin for WordPress
is vul ...)
NOT-FOR-US: WordPress plugin
CVE-2024-9458 (The Reservit Hotel WordPress plugin before 3.0 does not
sanitise and e ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f8ede01348cdf663c95b07c66ffa4bc07a4a2e55
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f8ede01348cdf663c95b07c66ffa4bc07a4a2e55
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
