Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
dcf098c8 by security tracker role at 2025-10-04T08:13:29+00:00
automatic NOT-FOR-US entries update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,17 +1,17 @@
CVE-2025-9952 (The Trinity Audio \u2013 Text to Speech AI audio player to
convert con ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9886 (The Trinity Audio \u2013 Text to Speech AI audio player to
convert con ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9485 (The OAuth Single Sign On \u2013 SSO (OAuth Client) plugin for
WordPres ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9243 (The Cost Calculator Builder plugin for WordPress is vulnerable
to unau ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9030 (The Majestic Before After Image plugin for WordPress is
vulnerable to ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9029 (The WDesignKit \u2013 Elementor & Gutenberg Starter Templates,
Pattern ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-8726 (The WP Photo Album Plus plugin for WordPress is vulnerable to
Cross-Si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-61962 (In fetchmail before 6.5.6, the SMTP client can crash when
authenticati ...)
TODO: check
CVE-2025-61895
@@ -51,7 +51,7 @@ CVE-2025-59944 (Cursor is a code editor built for programming
with AI. Versions
CVE-2025-59943 (phpMyFAQ is an open source FAQ web application. Versions
4.0-nightly-2 ...)
TODO: check
CVE-2025-43825 (A vulnerability in Liferay Portal 7.4.0 through 7.4.3.132, and
Liferay ...)
- TODO: check
+ NOT-FOR-US: Liferay
CVE-2025-39953 (In the Linux kernel, the following vulnerability has been
resolved: c ...)
TODO: check
CVE-2025-39952 (In the Linux kernel, the following vulnerability has been
resolved: w ...)
@@ -101,13 +101,13 @@ CVE-2025-39931 (In the Linux kernel, the following
vulnerability has been resolv
CVE-2025-39929 (In the Linux kernel, the following vulnerability has been
resolved: s ...)
TODO: check
CVE-2025-11228 (The GiveWP \u2013 Donation Plugin and Fundraising Platform
plugin for ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-11227 (The GiveWP \u2013 Donation Plugin and Fundraising Platform
plugin for ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-10751 (MacForge contains an insecure XPC service that allows local,
unprivile ...)
TODO: check
CVE-2025-10746 (The Integrate Dynamics 365 CRM plugin for WordPress is
vulnerable to u ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-10696 (OpenSupports exposes an endpoint that allows the list of
'supervised u ...)
TODO: check
CVE-2025-10695 (Two unauthenticated diagnostic endpoints allow arbitrary
backend-initi ...)
@@ -115,7 +115,7 @@ CVE-2025-10695 (Two unauthenticated diagnostic endpoints
allow arbitrary backend
CVE-2025-10692 (The endpoint POST /api/staff/get-new-tickets concatenates the
user-con ...)
TODO: check
CVE-2025-10383 (The Contest Gallery \u2013 Upload, Vote & Sell with PayPal and
Stripe ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-9945 (The Optimize More! \u2013 CSS plugin for WordPress is
vulnerable to Cr ...)
NOT-FOR-US: WordPress plugin
CVE-2025-9897 (The AP Background plugin for WordPress is vulnerable to
Cross-Site Req ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dcf098c8204e55849c78b02499b5d6db35bf1041
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dcf098c8204e55849c78b02499b5d6db35bf1041
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
