Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
6bd30779 by security tracker role at 2025-09-11T08:13:01+00:00
automatic NOT-FOR-US entries update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -3,93 +3,93 @@ CVE-2025-9918 (A Path Traversal vulnerability in the archive
extraction componen
CVE-2025-9910 (Versions of the package jsondiffpatch before 0.7.2 are
vulnerable to C ...)
TODO: check
CVE-2025-9874 (The Ultimate Classified Listings plugin for WordPress is
vulnerable to ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9861 (The ThemeLoom Widgets plugin for WordPress is vulnerable to
Stored Cro ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9860 (The Mixtape plugin for WordPress is vulnerable to Stored
Cross-Site Sc ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9855 (The Enhanced BibliPlug plugin for WordPress is vulnerable to
Stored Cr ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9850 (The Evenium plugin for WordPress is vulnerable to Stored
Cross-Site Sc ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9776 (The CatFolders \u2013 Tame Your WordPress Media Library by
Category pl ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9693 (The User Meta \u2013 User Profile Builder and User management
plugin p ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9635 (The Analytics Reduce Bounce Rate plugin for WordPress is
vulnerable to ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9634 (The Plugin updates blocker plugin for WordPress is vulnerable
to Cross ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9633 (The LH Signing plugin for WordPress is vulnerable to Cross-Site
Reques ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9632 (The PhpList Subber plugin for WordPress is vulnerable to
Cross-Site Re ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9631 (The AutoCatSet plugin for WordPress is vulnerable to Cross-Site
Reques ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9628 (The The integration of the AMO.CRM plugin for WordPress is
vulnerable ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9627 (The Run Log plugin for WordPress is vulnerable to Cross-Site
Request F ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9623 (The Admin in English with Switch plugin for WordPress is
vulnerable to ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9620 (The Seo Monster plugin for WordPress is vulnerable to
Cross-Site Reque ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9617 (The Publish approval plugin for WordPress is vulnerable to
Cross-Site ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9451 (The Smartcat Translator for WPML plugin for WordPress is
vulnerable to ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9128 (The eID Easy plugin for WordPress is vulnerable to Stored
Cross-Site S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9123 (The CBX Map for Google Map & OpenStreetMap plugin for WordPress
is vul ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9073 (The All in one Minifier plugin for WordPress is vulnerable to
SQL Inje ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9059 (The Altiris Core Agent Updater package (AeXNSC.exe) is prone to
an ele ...)
- TODO: check
+ NOT-FOR-US: Symantec
CVE-2025-9034 (The Wp Edit Password Protected WordPress plugin before 1.3.5
does not ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-8721 (The Workable Api plugin for WordPress is vulnerable to Stored
Cross-Si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-8692 (The Coupon API plugin for WordPress is vulnerable to SQL
Injection via ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-8691 (The WP Scriptcase plugin for WordPress is vulnerable to Stored
Cross-S ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-8689 (The Elements Plus! plugin for WordPress is vulnerable to Stored
Cross- ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-8686 (The WP Easy FAQs plugin for WordPress is vulnerable to Stored
Cross-Si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-8570 (The BeyondCart Connector plugin for WordPress is vulnerable to
Privile ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-8492 (The Salon Booking System, Appointment Scheduling for Salons,
Spas & Sm ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-8481 (The Blog Designer For Elementor \u2013 Post Slider, Post
Carousel, Pos ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-8479 (The Zoho Flow plugin for WordPress is vulnerable to Cross-Site
Request ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-8445 (The Countdown Timer for Elementor plugin for WordPress is
vulnerable t ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-8425 (The My WP Translate plugin for WordPress is vulnerable to
unauthorized ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-8423 (The My WP Translate plugin for WordPress is vulnerable to
unauthorized ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-8422 (The Propovoice: All-in-One Client Management System plugin for
WordPre ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-8417 (The Catalog Importer, Scraper & Crawler plugin for WordPress is
vulner ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-8398 (The azurecurve BBCode plugin for WordPress is vulnerable to
Stored Cro ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-8392 (The Mitfahrgelegenheit plugin for WordPress is vulnerable to
Stored Cr ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-8318 (The Jobify plugin for WordPress is vulnerable to Stored
Cross-Site Scr ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-8316 (The Certifica WP plugin for WordPress is vulnerable to Stored
Cross-Si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-8215 (The Responsive Addons for Elementor plugin for WordPress is
vulnerable ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-6088 (In version 0.7.8 of danny-avila/librechat, improper
authorization cont ...)
TODO: check
CVE-2025-5801 (The Digital Events Calendar plugin for WordPress is vulnerable
to Stor ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-59052 (Angular is a development platform for building mobile and
desktop web ...)
TODO: check
CVE-2025-10247 (A security vulnerability has been detected in JEPaaS 7.2.8.
This vulne ...)
@@ -115,7 +115,7 @@ CVE-2025-10218 (A flaw has been found in lostvip-com
ruoyi-go 2.1. This affects
CVE-2025-10216 (A vulnerability was detected in GrandNode up to 2.3.0. The
impacted el ...)
TODO: check
CVE-2025-0763 (The Ultimate Classified Listings plugin for WordPress is
vulnerable to ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9997 (CWE-78: Improper Neutralization of Special Elements used in an
OS Comm ...)
NOT-FOR-US: Schneider Electric
CVE-2025-9996 (CWE-78: Improper Neutralization of Special Elements used in an
OS Comm ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6bd307798c29dbb0619e2c663d95ffa7d5c67f0c
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6bd307798c29dbb0619e2c663d95ffa7d5c67f0c
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
