Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
e9abcfe1 by security tracker role at 2025-05-19T20:12:31+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,393 @@
+CVE-2025-4948 (A flaw was found in the soup_multipart_new_from_message()
function of ...)
+ TODO: check
+CVE-2025-4945 (A flaw was found in the cookie parsing logic of the libsoup
HTTP libra ...)
+ TODO: check
+CVE-2025-4941 (A vulnerability, which was classified as critical, was found in
PHPGur ...)
+ TODO: check
+CVE-2025-4940 (A vulnerability, which was classified as critical, has been
found in 1 ...)
+ TODO: check
+CVE-2025-4939 (A vulnerability classified as problematic was found in
PHPGurukul Cred ...)
+ TODO: check
+CVE-2025-4938 (A vulnerability was found in PHPGurukul Employee Record
Management Sys ...)
+ TODO: check
+CVE-2025-4937 (A vulnerability was found in SourceCodester Apartment Visitor
Manageme ...)
+ TODO: check
+CVE-2025-4936 (A vulnerability was found in projectworlds Online Food Ordering
System ...)
+ TODO: check
+CVE-2025-4935 (A vulnerability was found in SourceCodester Stock Management
System 1. ...)
+ TODO: check
+CVE-2025-4934 (A vulnerability has been found in PHPGurukul User Registration
& Login ...)
+ TODO: check
+CVE-2025-4933 (A vulnerability, which was classified as critical, was found in
ponara ...)
+ TODO: check
+CVE-2025-4932 (A vulnerability, which was classified as critical, has been
found in p ...)
+ TODO: check
+CVE-2025-4931 (A vulnerability classified as critical was found in
projectworlds Onli ...)
+ TODO: check
+CVE-2025-4930 (A vulnerability classified as critical has been found in
Campcodes Onl ...)
+ TODO: check
+CVE-2025-4929 (A vulnerability was found in Campcodes Online Shopping Portal
1.0. It ...)
+ TODO: check
+CVE-2025-4928 (A vulnerability was found in projectworlds Online Lawyer
Management Sy ...)
+ TODO: check
+CVE-2025-4927 (A vulnerability was found in PHPGurukul Online Marriage
Registration S ...)
+ TODO: check
+CVE-2025-4926 (A vulnerability was found in PHPGurukul Car Rental Project 1.0
and cla ...)
+ TODO: check
+CVE-2025-4925 (A vulnerability has been found in PHPGurukul Daily Expense
Tracker Sys ...)
+ TODO: check
+CVE-2025-4924 (A vulnerability, which was classified as critical, was found in
Source ...)
+ TODO: check
+CVE-2025-4876 (ConnectWise-Password-Encryption-Utility.exe in ConnectWise Risk
Assess ...)
+ TODO: check
+CVE-2025-48346 (Missing Authorization vulnerability in Etsy360 Embed and
Integrate Ets ...)
+ TODO: check
+CVE-2025-48344 (Cross-Site Request Forgery (CSRF) vulnerability in ed4becky
Rootsperso ...)
+ TODO: check
+CVE-2025-48342 (Cross-Site Request Forgery (CSRF) vulnerability in
RedefiningTheWeb Dy ...)
+ TODO: check
+CVE-2025-48341 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-48288 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-48285 (Cross-Site Request Forgery (CSRF) vulnerability in sbouey
Falang multi ...)
+ TODO: check
+CVE-2025-48284 (Cross-Site Request Forgery (CSRF) vulnerability in
shohei.tanaka Japan ...)
+ TODO: check
+CVE-2025-48282 (Missing Authorization vulnerability in Majestic Support
Majestic Suppo ...)
+ TODO: check
+CVE-2025-48280 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2025-48278 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2025-48277 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-48276 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-48272 (Missing Authorization vulnerability in wpjobportal WP Job
Portal allow ...)
+ TODO: check
+CVE-2025-48270 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-48269 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-48268 (Missing Authorization vulnerability in Guru Team Bot for
Telegram on W ...)
+ TODO: check
+CVE-2025-48266 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-48265 (Cross-Site Request Forgery (CSRF) vulnerability in Pektsekye
Year Make ...)
+ TODO: check
+CVE-2025-48264 (Cross-Site Request Forgery (CSRF) vulnerability in artiosmedia
Product ...)
+ TODO: check
+CVE-2025-48263 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-48262 (Missing Authorization vulnerability in Michael Revellin-Clerc
Url Rewr ...)
+ TODO: check
+CVE-2025-48260 (Missing Authorization vulnerability in Ninja Team GDPR CCPA
Compliance ...)
+ TODO: check
+CVE-2025-48259 (Cross-Site Request Forgery (CSRF) vulnerability in Juan Carlos
WP Mapa ...)
+ TODO: check
+CVE-2025-48258 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-48257 (Missing Authorization vulnerability in Projectopia Projectopia
allows ...)
+ TODO: check
+CVE-2025-48256 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-48255 (Cross-Site Request Forgery (CSRF) vulnerability in
videowhisper Broadc ...)
+ TODO: check
+CVE-2025-48254 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-48253 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-48252 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-48251 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-48250 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-48249 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-48248 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-48247 (Missing Authorization vulnerability in Blair Williams
Shortlinks by Pr ...)
+ TODO: check
+CVE-2025-48246 (Missing Authorization vulnerability in The Events Calendar The
Events ...)
+ TODO: check
+CVE-2025-48244 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-48243 (Cross-Site Request Forgery (CSRF) vulnerability in Bill
Minozzi reCAPT ...)
+ TODO: check
+CVE-2025-48242 (Missing Authorization vulnerability in wpWax Legal Pages
allows Exploi ...)
+ TODO: check
+CVE-2025-48240 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-48239 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-48238 (Cross-Site Request Forgery (CSRF) vulnerability in awcode
AWcode Toolk ...)
+ TODO: check
+CVE-2025-48237 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-48236 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-48235 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-48234 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-48233 (Cross-Site Request Forgery (CSRF) vulnerability in affmngr
Affiliates ...)
+ TODO: check
+CVE-2025-48232 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-47949 (samlify is a Node.js library for SAML single sign-on. A
Signature Wrap ...)
+ TODO: check
+CVE-2025-47946 (Symfony UX is an initiative and set of libraries to integrate
JavaScri ...)
+ TODO: check
+CVE-2025-47944 (Multer is a node.js middleware for handling
`multipart/form-data`. A v ...)
+ TODO: check
+CVE-2025-47935 (Multer is a node.js middleware for handling
`multipart/form-data`. Ver ...)
+ TODO: check
+CVE-2025-47934 (OpenPGP.js is a JavaScript implementation of the OpenPGP
protocol. Sta ...)
+ TODO: check
+CVE-2025-47583 (Unauthenticated Cross Site Request Forgery (CSRF) in Salon
booking sys ...)
+ TODO: check
+CVE-2025-47582 (Deserialization of Untrusted Data vulnerability in
QuantumCloud WPBot ...)
+ TODO: check
+CVE-2025-47581 (Deserialization of Untrusted Data vulnerability in Elbisnero
WordPress ...)
+ TODO: check
+CVE-2025-47577 (Unrestricted Upload of File with Dangerous Type vulnerability
in Templ ...)
+ TODO: check
+CVE-2025-47576 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
+ TODO: check
+CVE-2025-47284 (Gardener implements the automated management and operation of
Kubernet ...)
+ TODO: check
+CVE-2025-47283 (Gardener implements the automated management and operation of
Kubernet ...)
+ TODO: check
+CVE-2025-47282 (Gardener External DNS Management is an environment to manage
external ...)
+ TODO: check
+CVE-2025-46543 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-46441 (Path Traversal: '.../...//' vulnerability in ctltwp Section
Widget all ...)
+ TODO: check
+CVE-2025-46263 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-46262 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-44108 (A stored Cross-Site Scripting (XSS) vulnerability exists in
the admini ...)
+ TODO: check
+CVE-2025-43841 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-43840 (Cross-Site Request Forgery (CSRF) vulnerability in Ref
CheckBot allows ...)
+ TODO: check
+CVE-2025-43839 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-43838 (Missing Authorization vulnerability in ChoPlugins Custom PC
Builder Li ...)
+ TODO: check
+CVE-2025-43837 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-43836 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-43835 (Cross-Site Request Forgery (CSRF) vulnerability in ktsvetkov
allows Cr ...)
+ TODO: check
+CVE-2025-43834 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-43833 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2025-43832 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-43714 (The ChatGPT system through 2025-03-30 performs inline
rendering of SVG ...)
+ TODO: check
+CVE-2025-41429 (a-blog cms multiple versions neutralize logs improperly. If
this vulne ...)
+ TODO: check
+CVE-2025-3908 (The configuration initialization tool in OpenVPN 3 Linux v20
through v ...)
+ TODO: check
+CVE-2025-39460 (Missing Authorization vulnerability in ThimPress Eduma allows
Exploiti ...)
+ TODO: check
+CVE-2025-39459 (Incorrect Privilege Assignment vulnerability in Contempo
Themes Real E ...)
+ TODO: check
+CVE-2025-39458 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
+ TODO: check
+CVE-2025-39454 (Missing Authorization vulnerability in Jeroen Peters Name
Directory.Th ...)
+ TODO: check
+CVE-2025-39451 (Missing Authorization vulnerability in Crocoblock JetBlocks
For Elemen ...)
+ TODO: check
+CVE-2025-39450 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-39449 (Missing Authorization vulnerability in Crocoblock
JetWooBuilder allows ...)
+ TODO: check
+CVE-2025-39448 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-39447 (Missing Authorization vulnerability in Crocoblock JetElements
For Elem ...)
+ TODO: check
+CVE-2025-39446 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-39445 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2025-39412 (Missing Authorization vulnerability in Averta Master
Slider.This issue ...)
+ TODO: check
+CVE-2025-39411 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
+ TODO: check
+CVE-2025-39410 (Deserialization of Untrusted Data vulnerability in themegusta
Smart Se ...)
+ TODO: check
+CVE-2025-39409 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-39407 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-39406 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
+ TODO: check
+CVE-2025-39405 (Incorrect Privilege Assignment vulnerability in mojoomla WPAMS
allows ...)
+ TODO: check
+CVE-2025-39403 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2025-39402 (Unrestricted Upload of File with Dangerous Type vulnerability
in mojoo ...)
+ TODO: check
+CVE-2025-39401 (Unrestricted Upload of File with Dangerous Type vulnerability
in mojoo ...)
+ TODO: check
+CVE-2025-39398 (Missing Authorization vulnerability in Themovation Hotel + Bed
and Bre ...)
+ TODO: check
+CVE-2025-39396 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
+ TODO: check
+CVE-2025-39395 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2025-39394 (Exposure of Sensitive System Information to an Unauthorized
Control Sp ...)
+ TODO: check
+CVE-2025-39393 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-39392 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-39389 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2025-39388 (Missing Authorization vulnerability in Solid Plugins
AnalyticsWP allow ...)
+ TODO: check
+CVE-2025-39386 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2025-39380 (Unrestricted Upload of File with Dangerous Type vulnerability
in mojoo ...)
+ TODO: check
+CVE-2025-39376 (Missing Authorization vulnerability in QuanticaLabs Car Park
Booking S ...)
+ TODO: check
+CVE-2025-39375 (Cross-Site Request Forgery (CSRF) vulnerability in Ashok G
Easy Child ...)
+ TODO: check
+CVE-2025-39374 (Cross-Site Request Forgery (CSRF) vulnerability in aseem1234
Best Post ...)
+ TODO: check
+CVE-2025-39373 (Missing Authorization vulnerability in jegtheme JNews.This
issue affec ...)
+ TODO: check
+CVE-2025-39372 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-39371 (Cross-Site Request Forgery (CSRF) vulnerability in Sanjeev
Mohindra Au ...)
+ TODO: check
+CVE-2025-39370 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2025-39369 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-39368 (Missing Authorization vulnerability in ed4becky Rootspersona
allows Ex ...)
+ TODO: check
+CVE-2025-39366 (Incorrect Privilege Assignment vulnerability in Rocket Apps
wProject.T ...)
+ TODO: check
+CVE-2025-39365 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-39364 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
+ TODO: check
+CVE-2025-39357 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2025-39356 (Deserialization of Untrusted Data vulnerability in Chimpstudio
Foodbak ...)
+ TODO: check
+CVE-2025-39355 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2025-39354 (Deserialization of Untrusted Data vulnerability in ThemeGoods
Grand Co ...)
+ TODO: check
+CVE-2025-39353 (Missing Authorization vulnerability in ThemeGoods Grand
Restaurant Wor ...)
+ TODO: check
+CVE-2025-39352 (Missing Authorization vulnerability in ThemeGoods Grand
Restaurant Wor ...)
+ TODO: check
+CVE-2025-39351 (Cross-Site Request Forgery (CSRF) vulnerability in ThemeGoods
Grand Re ...)
+ TODO: check
+CVE-2025-39350 (Missing Authorization vulnerability in Rocket Apps
wProject.This issue ...)
+ TODO: check
+CVE-2025-39349 (Deserialization of Untrusted Data vulnerability in
Potenzaglobalsoluti ...)
+ TODO: check
+CVE-2025-39348 (Deserialization of Untrusted Data vulnerability in ThemeGoods
Grand Re ...)
+ TODO: check
+CVE-2025-36560 (Server-side request forgery vulnerability exists in a-blog cms
multipl ...)
+ TODO: check
+CVE-2025-32999 (Cross-site scripting vulnerability exists in a-blog cms
versions prior ...)
+ TODO: check
+CVE-2025-32928 (Deserialization of Untrusted Data vulnerability in ThemeGoods
Altair a ...)
+ TODO: check
+CVE-2025-32927 (Deserialization of Untrusted Data vulnerability in Chimpstudio
FoodBak ...)
+ TODO: check
+CVE-2025-32926 (Improper Limitation of a Pathname to a Restricted Directory
('Path Tra ...)
+ TODO: check
+CVE-2025-32925 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
+ TODO: check
+CVE-2025-32924 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2025-32920 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-31262 (A permissions issue was addressed with additional
restrictions. This i ...)
+ TODO: check
+CVE-2025-31185 (A logic issue was addressed with improved checks. This issue
is fixed ...)
+ TODO: check
+CVE-2025-31027 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-30072 (Tiiwee X1 Alarm System TWX1HAKV2 allows Authentication Bypass
by Captu ...)
+ TODO: check
+CVE-2025-2099 (A vulnerability in the `preprocess_string()` function of the
`transfor ...)
+ TODO: check
+CVE-2025-28371 (EnGenius ENH500 AP 2T2R V3.0 FW3.7.22 is vulnerable to
Incorrect Acces ...)
+ TODO: check
+CVE-2025-27566 (Path traversal vulnerability exists in a-blog cms versions
prior to Ve ...)
+ TODO: check
+CVE-2025-27010 (Path Traversal: '.../...//' vulnerability in bslthemes Tastyc
allows P ...)
+ TODO: check
+CVE-2025-26997 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-26920 (Missing Authorization vulnerability in PressMaximum Customify
allows E ...)
+ TODO: check
+CVE-2025-26892 (Unrestricted Upload of File with Dangerous Type vulnerability
in dkszo ...)
+ TODO: check
+CVE-2025-26872 (Unrestricted Upload of File with Dangerous Type vulnerability
in dkszo ...)
+ TODO: check
+CVE-2025-26867 (Missing Authorization vulnerability in Themes4WP Bulk allows
Accessing ...)
+ TODO: check
+CVE-2025-26735 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
+ TODO: check
+CVE-2025-26621 (OpenCTI is an open source platform for managing cyber threat
intellige ...)
+ TODO: check
+CVE-2025-24189 (The issue was addressed with improved checks. This issue is
fixed in S ...)
+ TODO: check
+CVE-2025-24184 (The issue was addressed with improved memory handling. This
issue is f ...)
+ TODO: check
+CVE-2025-24183 (The issue was addressed with improved checks. This issue is
fixed in m ...)
+ TODO: check
+CVE-2025-23988 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23986 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23983 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23981 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23979 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-22792 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-22791 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-22790 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-22789 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-22687 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-22678 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-22287 (Missing Authorization vulnerability in Eniture Technology LTL
Freight ...)
+ TODO: check
+CVE-2024-55063 (Multiple Code Injection vulnerabilities in EasyVirt DC
NetScope <= 8.7 ...)
+ TODO: check
+CVE-2024-51106 (A cross-site scripting (XSS) vulnerability in the component
mcgs/admin ...)
+ TODO: check
+CVE-2024-4878
+ REJECTED
+CVE-2024-33939 (Authentication Bypass Using an Alternate Path or Channel
vulnerability ...)
+ TODO: check
CVE-2025-4923 (A vulnerability, which was classified as critical, has been
found in S ...)
NOT-FOR-US: SourceCodester
CVE-2025-4917 (A vulnerability classified as critical has been found in
PHPGurukul Au ...)
@@ -155,7 +545,7 @@ CVE-2025-4868 (A vulnerability was found in merikbest
ecommerce-spring-reactjs u
NOT-FOR-US: ecommerce-spring-reactjs
CVE-2025-4867 (A vulnerability was found in Tenda A15 15.13.07.13. It has been
declar ...)
NOT-FOR-US: Tenda
-CVE-2025-48219 (O2 UK through 2025-05-17 allows subscribers to determine the
Cell ID o ...)
+CVE-2025-48219 (O2 UK before 2025-05-19 allows subscribers to determine the
Cell ID of ...)
NOT-FOR-US: O2 UK
CVE-2025-4919 (An attacker was able to perform an out-of-bounds read or write
on a Ja ...)
{DSA-5922-1}
@@ -4707,7 +5097,7 @@ CVE-2025-45236 (A stored cross-site scripting (XSS)
vulnerability in the Edit Pr
NOT-FOR-US: DBSyncer
CVE-2025-45042 (Tenda AC9 v15.03.05.14 was discovered to contain a command
injection v ...)
NOT-FOR-US: Tenda
-CVE-2025-43915 (In Buoyant Edge releases before edge-25.2.1 and Enterprise for
Linkerd ...)
+CVE-2025-43915 (In Linkerd edge releases before edge-25.2.1, and Buoyant
Enterprise fo ...)
NOT-FOR-US: Buoyant Edge
CVE-2025-43852 (Retrieval-based-Voice-Conversion-WebUI is a voice changing
framework b ...)
NOT-FOR-US: Retrieval-based-Voice-Conversion-WebUI
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e9abcfe191cc0f264c74309c3e712b754d8f4f05
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e9abcfe191cc0f264c74309c3e712b754d8f4f05
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
