[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update

Salvatore Bonaccorso (@carnil) Sat, 27 Sep 2025 01:14:13 -0700


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
a5ad528f by security tracker role at 2025-09-27T08:13:38+00:00
automatic NOT-FOR-US entries update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,23 +1,23 @@
 CVE-2025-9944 (The Professional Contact Form plugin for WordPress is 
vulnerable to Cr ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2025-9899 (The Trust Reviews plugin for Google, Tripadvisor, Yelp, Airbnb 
and oth ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2025-9898 (The cForms \u2013 Light speed fast Form Builder plugin for 
WordPress i ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2025-9896 (The HidePost plugin for WordPress is vulnerable to Cross-Site 
Request  ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2025-9894 (The Sync Feedly plugin for WordPress is vulnerable to 
Cross-Site Reque ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2025-9893 (The VM Menu Reorder plugin plugin for WordPress is vulnerable 
to Cross ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2025-9816 (The WP Statistics \u2013 The Most Popular Privacy-Friendly 
Analytics P ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2025-8440 (The Team Members plugin for WordPress is vulnerable to Stored 
Cross-Si ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2025-59945 (SysReptor is a fully customizable pentest reporting platform. 
In versi ...)
        TODO: check
 CVE-2025-59939 (WeGIA is a Web manager for charitable institutions. Prior to 
version 3 ...)
-       TODO: check
+       NOT-FOR-US: WeGIA
 CVE-2025-59938 (Wazuh is a free and open source platform used for threat 
prevention, d ...)
        TODO: check
 CVE-2025-59936 (get-jwks contains fetch utils for JWKS keys. In versions prior 
to 11.0 ...)
@@ -33,21 +33,21 @@ CVE-2025-50879
 CVE-2025-3193 (Versions of the package algoliasearch-helper from 2.0.0-rc1 and 
before ...)
        TODO: check
 CVE-2025-36239 (IBM Storage TS4500 Library 1.11.0.0 and 2.11.0.0   is 
vulnerable to cr ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2025-36144 (IBM Lakehouse (watsonx.data 2.2) stores potentially sensitive 
informat ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2025-11052 (A security flaw has been discovered in kidaze 
CourseSelectionSystem 1. ...)
        TODO: check
 CVE-2025-11051 (A vulnerability has been found in SourceCodester Pet Grooming 
Manageme ...)
-       TODO: check
+       NOT-FOR-US: SourceCodester
 CVE-2025-11050 (A flaw has been found in Portabilis i-Educar up to 2.10. This 
affects  ...)
-       TODO: check
+       NOT-FOR-US: Portabilis
 CVE-2025-11049 (A vulnerability was detected in Portabilis i-Educar up to 
2.10. Affect ...)
-       TODO: check
+       NOT-FOR-US: Portabilis
 CVE-2025-11048 (A security vulnerability has been detected in Portabilis 
i-Educar up t ...)
-       TODO: check
+       NOT-FOR-US: Portabilis
 CVE-2025-11047 (A weakness has been identified in Portabilis i-Educar up to 
2.10. Affe ...)
-       TODO: check
+       NOT-FOR-US: Portabilis
 CVE-2025-11046 (A security flaw has been discovered in Tencent WeKnora 0.1.0. 
This imp ...)
        TODO: check
 CVE-2025-11045 (A vulnerability was identified in WAYOS LQ_04, LQ_05, LQ_06, 
LQ_07 and ...)
@@ -55,17 +55,17 @@ CVE-2025-11045 (A vulnerability was identified in WAYOS 
LQ_04, LQ_05, LQ_06, LQ_
 CVE-2025-11041 (A vulnerability has been found in itsourcecode Open Source Job 
Portal  ...)
        TODO: check
 CVE-2025-11040 (A vulnerability was detected in code-projects Hostel 
Management System ...)
-       TODO: check
+       NOT-FOR-US: code-projects
 CVE-2025-10954 (Versions of the package github.com/nyaruka/phonenumbers before 
1.2.2 a ...)
        TODO: check
 CVE-2025-10657 (In a hardened Docker environment, with Enhanced Container 
Isolation (  ...)
-       TODO: check
+       NOT-FOR-US: Docker products not packaged in Debian
 CVE-2025-10499 (The Ninja Forms \u2013 The Contact Form Builder That Grows 
With You pl ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2025-10498 (The Ninja Forms \u2013 The Contact Form Builder That Grows 
With You pl ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-43192 (IBM Storage TS4500 Library 1.11.0.0 and 2.11.0.0 is vulnerable 
to cros ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2025-9958 (An issue has been discovered in GitLab CE/EE affecting all 
versions fr ...)
        - gitlab <unfixed>
 CVE-2025-9642 (An issue has been discovered in GitLab CE/EE affecting all 
versions fr ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a5ad528f591a65a06f4da90c8dcd8bc5b7afcdd1

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a5ad528f591a65a06f4da90c8dcd8bc5b7afcdd1
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update

Reply via email to