Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
fbc27a0a by Salvatore Bonaccorso at 2025-03-11T22:12:16+01:00
Add new hoteldruid issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -128,11 +128,14 @@ CVE-2025-25927 (A Cross-Site Request Forgery (CSRF) in
Openmrs 2.4.3 Build 0ff0e
CVE-2025-25925 (A stored cross-scripting (XSS) vulnerability in Openmrs v2.4.3
Build 0 ...)
NOT-FOR-US: Openmrs
CVE-2025-25749 (An issue in HotelDruid version 3.0.7 and earlier allows users
to set w ...)
- TODO: check
+ - hoteldruid <unfixed>
+ NOTE:
https://www.huyvo.net/post/cve-2025-25749-weak-password-policy-in-hoteldruid-3-0-7
CVE-2025-25748 (A CSRF vulnerability in the gestione_utenti.php endpoint of
HotelDruid ...)
- TODO: check
+ - hoteldruid <unfixed>
+ NOTE:
https://www.huyvo.net/post/cve-2025-25748-cross-site-request-forgery-csrf-vulnerability-in-hoteldruid-3-0-7
CVE-2025-25747 (Cross Site Scripting vulnerability in DigitalDruid HotelDruid
v.3.0.7 ...)
- TODO: check
+ - hoteldruid <unfixed>
+ NOTE:
https://www.huyvo.net/post/cve-2025-25747-reflected-xss-vulnerability-in-hoteldruid-3-0-7
CVE-2025-25680 (LSC Smart Connect LSC Indoor PTZ Camera 7.6.32 is contains a
RCE vulne ...)
NOT-FOR-US: LSC Smart Connect LSC Indoor PTZ Camera
CVE-2025-25267 (A vulnerability has been identified in Tecnomatix Plant
Simulation V23 ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fbc27a0a292341e3052efb1efb15adb783c011e4
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fbc27a0a292341e3052efb1efb15adb783c011e4
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
