Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
cdb48ee5 by security tracker role at 2025-08-02T08:12:10+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,85 @@
+CVE-2025-8317 (The Custom Word Cloud plugin for WordPress is vulnerable to
Stored Cro ...)
+ TODO: check
+CVE-2025-8212 (The Medical Addon for Elementor plugin for WordPress is
vulnerable to ...)
+ TODO: check
+CVE-2025-8152 (The WP CTA \u2013 Call To Action Plugin, Sticky CTA, Sticky
Buttons pl ...)
+ TODO: check
+CVE-2025-8146 (The Qi Addons For Elementor plugin for WordPress is vulnerable
to Stor ...)
+ TODO: check
+CVE-2025-7694 (The Woffice Core plugin for WordPress is vulnerable to
arbitrary file ...)
+ TODO: check
+CVE-2025-6754 (The SEO Metrics plugin for WordPress is vulnerable to Privilege
Escala ...)
+ TODO: check
+CVE-2025-6626 (The ShortPixel Adaptive Images \u2013 WebP, AVIF, CDN, Image
Optimizat ...)
+ TODO: check
+CVE-2025-6078 (Partner Software's Partner Software application and Partner Web
applic ...)
+ TODO: check
+CVE-2025-6077 (Partner Software's Partner Software Product and corresponding
Partner ...)
+ TODO: check
+CVE-2025-6076 (Partner Software's Partner Software application and Partner Web
applic ...)
+ TODO: check
+CVE-2025-54796 (Copyparty is a portable file server. Versions prior to 1.18.9,
the fil ...)
+ TODO: check
+CVE-2025-54792 (LocalSend is an open-source app to securely share files and
messages w ...)
+ TODO: check
+CVE-2025-54790 (Files is a module for managing files inside spaces and user
profiles. ...)
+ TODO: check
+CVE-2025-54789 (Files is a module for managing files inside spaces and user
profiles. ...)
+ TODO: check
+CVE-2025-54782 (Nest is a framework for building scalable Node.js server-side
applicat ...)
+ TODO: check
+CVE-2025-54781 (Himmelblau is an interoperability suite for Microsoft Azure
Entra ID a ...)
+ TODO: check
+CVE-2025-54424 (1Panel is a web interface and MCP Server that manages
websites, files, ...)
+ TODO: check
+CVE-2025-54386 (Traefik is an HTTP reverse proxy and load balancer. In
versions 2.11.2 ...)
+ TODO: check
+CVE-2025-54136 (Cursor is a code editor built for programming with AI. In
versions 1.2 ...)
+ TODO: check
+CVE-2025-54133 (Cursor is a code editor built for programming with AI. In
versions 1.1 ...)
+ TODO: check
+CVE-2025-54132 (Cursor is a code editor built for programming with AI. In
versions bel ...)
+ TODO: check
+CVE-2025-54131 (Cursor is a code editor built for programming with AI. In
versions bel ...)
+ TODO: check
+CVE-2025-4588 (The 360 Photo Spheres plugin for WordPress is vulnerable to
Stored Cro ...)
+ TODO: check
+CVE-2024-13978 (A vulnerability was found in LibTIFF up to 4.7.0. It has been
declared ...)
+ TODO: check
+CVE-2013-10063 (A path traversal vulnerability exists in the Netgear SPH200D
Skype pho ...)
+ TODO: check
+CVE-2013-10062 (A directory traversal vulnerability exists in Linksys router's
web int ...)
+ TODO: check
+CVE-2013-10061 (An authenticated OS command injection vulnerability exists in
Netgear ...)
+ TODO: check
+CVE-2013-10060 (An authenticated OS command injection vulnerability exists
inNetgear r ...)
+ TODO: check
+CVE-2013-10059 (An authenticated OS command injection vulnerability exists in
various ...)
+ TODO: check
+CVE-2013-10058 (An authenticated OS command injection vulnerability exists in
variousL ...)
+ TODO: check
+CVE-2013-10057 (A stack-based buffer overflow vulnerability exists
inSynactisPDF In-Th ...)
+ TODO: check
+CVE-2013-10055 (An unauthenticated arbitrary file upload vulnerability exists
in Haval ...)
+ TODO: check
+CVE-2013-10053 (A remote command execution vulnerability exists in ZPanel
version 10.0 ...)
+ TODO: check
+CVE-2013-10051 (A remote PHP code execution vulnerability exists in InstantCMS
version ...)
+ TODO: check
+CVE-2013-10050 (An OS command injection vulnerability exists in multiple
D-Link router ...)
+ TODO: check
+CVE-2013-10049 (An OS command injection vulnerability exists in multiple
Raidsonic NAS ...)
+ TODO: check
+CVE-2013-10048 (An OS command injection vulnerability exists in various legacy
D-Link ...)
+ TODO: check
+CVE-2013-10047 (An unrestricted file upload vulnerability exists in MiniWeb
HTTP Serve ...)
+ TODO: check
+CVE-2013-10046 (A local privilege escalation vulnerability exists in Agnitum
Outpost I ...)
+ TODO: check
+CVE-2013-10044 (An authenticated SQL injection vulnerability exists in OpenEMR
\u2264 ...)
+ TODO: check
+CVE-2012-10022 (Kloxo versions 6.1.12 and earlier contain two setuid root
binaries\u20 ...)
+ TODO: check
CVE-2025-8480 (Alpine iLX-507 Command Injection Remote Code Execution. This
vulnerabi ...)
NOT-FOR-US: Alpine iLX-507
CVE-2025-8477 (Alpine iLX-507 vCard Parsing Stack-based Buffer Overflow Remote
Code E ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cdb48ee5fc3c1c14ccfd0b70b1e51ea3ce00a3f7
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cdb48ee5fc3c1c14ccfd0b70b1e51ea3ce00a3f7
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
