Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
de37cbd6 by Salvatore Bonaccorso at 2025-03-24T21:27:51+01:00
Process some more NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -5,19 +5,19 @@ CVE-2025-30621 (Cross-Site Request Forgery (CSRF)
vulnerability in kornelly Tran
CVE-2025-30620 (Cross-Site Request Forgery (CSRF) vulnerability in coderscom
WP Odoo F ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-30619 (Cross-Site Request Forgery (CSRF) vulnerability in SpeakPipe
SpeakPipe ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30617 (Cross-Site Request Forgery (CSRF) vulnerability in takien
Rewrite allo ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30615 (Cross-Site Request Forgery (CSRF) vulnerability in Jacob
Schwartz WP e ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-30612 (Cross-Site Request Forgery (CSRF) vulnerability in mandegarweb
Replace ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-30610 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30609 (Insertion of Sensitive Information Into Sent Data
vulnerability in App ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30608 (Cross-Site Request Forgery (CSRF) vulnerability in Anthony
WordPress S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30606 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-30605 (Missing Authorization vulnerability in ldwin79
sourceplay-navermap all ...)
@@ -35,19 +35,19 @@ CVE-2025-30600 (Improper Neutralization of Input During Web
Page Generation ('Cr
CVE-2025-30599 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-30598 (Cross-Site Request Forgery (CSRF) vulnerability in Link OSS
Upload all ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30597 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30595 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30593 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30592 (Missing Authorization vulnerability in westerndeal Advanced
Dewplayer ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30591 (Missing Authorization vulnerability in tuyennv Music Press Pro
allows ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30590 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30588 (Cross-Site Request Forgery (CSRF) vulnerability in ryan_xantoo
Map Con ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-30587 (Cross-Site Request Forgery (CSRF) vulnerability in shawfactor
LH OGP M ...)
@@ -55,41 +55,41 @@ CVE-2025-30587 (Cross-Site Request Forgery (CSRF)
vulnerability in shawfactor LH
CVE-2025-30586 (Cross-Site Request Forgery (CSRF) vulnerability in bbodine1
cTabs allo ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-30585 (Cross-Site Request Forgery (CSRF) vulnerability in marynixie
Generate ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30584 (Cross-Site Request Forgery (CSRF) vulnerability in
alphaomegaplugins A ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-30583 (Cross-Site Request Forgery (CSRF) vulnerability in
ProRankTracker Pro ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-30581 (Missing Authorization vulnerability in PluginOps Top Bar
allows Exploi ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30578 (Cross-Site Request Forgery (CSRF) vulnerability in hotvanrod
AdSense P ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-30577 (Cross-Site Request Forgery (CSRF) vulnerability in mendibass
Browser A ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-30576 (Cross-Site Request Forgery (CSRF) vulnerability in HuangYe
WuDeng Hack ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30575 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30574 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30573 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30572 (Cross-Site Request Forgery (CSRF) vulnerability in Igor Yavych
Simple ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-30571 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30570 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30569 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30568 (Cross-Site Request Forgery (CSRF) vulnerability in hitoy Super
Static ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30566 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30565 (Cross-Site Request Forgery (CSRF) vulnerability in karrikas
banner-man ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-30564 (Cross-Site Request Forgery (CSRF) vulnerability in wpwox
Custom Script ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30561 (Cross-Site Request Forgery (CSRF) vulnerability in Henrique
Mouta CAS ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-30560 (Cross-Site Request Forgery (CSRF) vulnerability in Sana Ullah
jQuery D ...)
@@ -129,7 +129,7 @@ CVE-2025-30539 (Improper Neutralization of Input During Web
Page Generation ('Cr
CVE-2025-30538 (Cross-Site Request Forgery (CSRF) vulnerability in ChrisHurst
Simple O ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-30537 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-30536 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
NOT-FOR-US: WordPress plugin or theme
CVE-2025-30535 (Cross-Site Request Forgery (CSRF) vulnerability in muro
External image ...)
@@ -169,7 +169,7 @@ CVE-2025-30163 (Cilium is a networking, observability, and
security solution wit
CVE-2025-30162 (Cilium is a networking, observability, and security solution
with an e ...)
TODO: check
CVE-2025-30112 (On 70mai Dash Cam 1S devices, by connecting directly to the
dashcam's ...)
- TODO: check
+ NOT-FOR-US: 70mai Dash Cam 1S devices
CVE-2025-2749 (An authenticated remote code execution in Kentico Xperience
allows aut ...)
TODO: check
CVE-2025-2748 (TheKentico Xperience application does not fully validate or
filter fil ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/de37cbd6cc0708162e5da53ad5ac730b3904a23c
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/de37cbd6cc0708162e5da53ad5ac730b3904a23c
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
