Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
efe2d010 by security tracker role at 2025-11-17T20:13:42+00:00
automatic NOT-FOR-US entries update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -19,15 +19,15 @@ CVE-2025-63748 (QaTraq 6.9.2 allows authenticated users to
upload arbitrary file
CVE-2025-63747 (QaTraq 6.9.2 ships with administrative account credentials
which are e ...)
TODO: check
CVE-2025-63708 (Cross-Site Scripting (XSS) vulnerability exists in
SourceCodester AI F ...)
- TODO: check
+ NOT-FOR-US: SourceCodester
CVE-2025-63292 (Freebox v5 HD (firmware = 1.7.20), Freebox v5 Crystal
(firmware = 1.7. ...)
TODO: check
CVE-2025-62519 (phpMyFAQ is an open source FAQ web application. Prior to
version 4.0.1 ...)
TODO: check
CVE-2025-58410 (Software installed and run as a non-privileged user may
conduct improp ...)
- TODO: check
+ NOT-FOR-US: Imagination Technologies
CVE-2025-58407 (Kernel or driver software installed on a Guest VM may post
improper co ...)
- TODO: check
+ NOT-FOR-US: Imagination Technologies
CVE-2025-55059 (CWE-79 Improper Neutralization of Input During Web Page
Generation (XS ...)
TODO: check
CVE-2025-55058 (CWE-20 Improper Input Validation)
@@ -39,89 +39,89 @@ CVE-2025-55056 (Multiple CWE-79 Improper Neutralization of
Input During Web Page
CVE-2025-55055 (CWE-78 Improper Neutralization of Special Elements used in an
OS Comma ...)
TODO: check
CVE-2025-4321 (In a Bluetooth device, using RS9116-WiseConnect SDK experiences
a Deni ...)
- TODO: check
+ NOT-FOR-US: Silicon Labs
CVE-2025-40936 (A vulnerability has been identified in PS/IGES Parasolid
Translator Co ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2025-40834 (A vulnerability has been identified in Mendix RichText (All
versions > ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2025-34323 (Nagios Log Server versions prior to 2026R1.0.1 are vulnerable
to local ...)
TODO: check
CVE-2025-34322 (Nagios Log Server versions prior to 2026R1.0.1 contain an
authenticate ...)
TODO: check
CVE-2025-13319 (An injection vulnerability has been discovered in the API
feature in D ...)
- TODO: check
+ NOT-FOR-US: Digi
CVE-2025-13310
REJECTED
CVE-2025-13299 (A flaw has been found in itsourcecode Web-Based Internet
Laboratory Ma ...)
- TODO: check
+ NOT-FOR-US: itsourcecode System
CVE-2025-13298 (A vulnerability was detected in itsourcecode Web-Based
Internet Labora ...)
- TODO: check
+ NOT-FOR-US: itsourcecode System
CVE-2025-13297 (A security vulnerability has been detected in itsourcecode
Web-Based I ...)
- TODO: check
+ NOT-FOR-US: itsourcecode System
CVE-2025-13291 (A vulnerability was found in Campcodes Supplier Management
System 1.0. ...)
- TODO: check
+ NOT-FOR-US: Campcodes
CVE-2025-13290 (A vulnerability has been found in code-projects Simple Food
Ordering S ...)
- TODO: check
+ NOT-FOR-US: code-projects
CVE-2025-13289 (A vulnerability was detected in 1000projects Design &
Development of S ...)
TODO: check
CVE-2025-13288 (A security vulnerability has been detected in Tenda CH22
1.0.0.1. This ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2025-13287 (A weakness has been identified in itsourcecode Online Voting
System 1. ...)
- TODO: check
+ NOT-FOR-US: itsourcecode System
CVE-2025-13286 (A security flaw has been discovered in itsourcecode Online
Voting Syst ...)
- TODO: check
+ NOT-FOR-US: itsourcecode System
CVE-2025-13285 (A vulnerability was identified in itsourcecode Online Voting
System 1. ...)
- TODO: check
+ NOT-FOR-US: itsourcecode System
CVE-2025-13280 (A vulnerability was determined in CodeAstro Simple Inventory
System 1. ...)
- TODO: check
+ NOT-FOR-US: CodeAstro
CVE-2025-13279 (A vulnerability was found in code-projects Nero Social
Networking Site ...)
- TODO: check
+ NOT-FOR-US: code-projects
CVE-2025-13278 (A vulnerability has been found in projectworlds Advanced
Library Manag ...)
- TODO: check
+ NOT-FOR-US: Project Worlds
CVE-2025-13277 (A flaw has been found in code-projects Nero Social Networking
Site 1.0 ...)
- TODO: check
+ NOT-FOR-US: code-projects
CVE-2025-13276 (A vulnerability was detected in g33kyrash
Online-Banking-System up to ...)
TODO: check
CVE-2025-13275 (A security vulnerability has been detected in Iqbolshoh
php-business-w ...)
TODO: check
CVE-2025-13274 (A weakness has been identified in Campcodes School Fees
Payment Manage ...)
- TODO: check
+ NOT-FOR-US: Campcodes
CVE-2025-13273 (A security flaw has been discovered in Campcodes School Fees
Payment M ...)
- TODO: check
+ NOT-FOR-US: Campcodes
CVE-2025-13272 (A vulnerability was identified in Campcodes School Fees
Payment Manage ...)
- TODO: check
+ NOT-FOR-US: Campcodes
CVE-2025-13271 (A vulnerability was determined in Campcodes School Fees
Payment Manage ...)
- TODO: check
+ NOT-FOR-US: Campcodes
CVE-2025-13216
REJECTED
CVE-2025-11681 (Denial-of-service condition in M-Files Server versions before
25.11.15 ...)
- TODO: check
+ NOT-FOR-US: M-Files
CVE-2024-46336 (kashipara School Management System 1.0 is vulnerable to Cross
Site Scr ...)
TODO: check
CVE-2024-46335 (PHPGurukul Complaint Management System 2.0 is vulnerble to
Cross Site ...)
- TODO: check
+ NOT-FOR-US: PHPGurukul
CVE-2024-46334 (kashipara School Management System 1.0 is vulnerable to Cross
Site Scr ...)
TODO: check
CVE-2024-44664 (PHPGurukul Online Shopping Portal 2.0 is vulnerable to SQL
Injection v ...)
- TODO: check
+ NOT-FOR-US: PHPGurukul
CVE-2024-44663 (PHPGurukul Online Shopping Portal 2.0 is vulnerable to SQL
Injection v ...)
- TODO: check
+ NOT-FOR-US: PHPGurukul
CVE-2024-44662 (PHPGurukul Online Shopping Portal 2.0 is vulnerable to SQL
Injection v ...)
- TODO: check
+ NOT-FOR-US: PHPGurukul
CVE-2024-44661 (PHPGurukul Online Shopping Portal 2.0 is vulnerable to Cross
Site Scri ...)
- TODO: check
+ NOT-FOR-US: PHPGurukul
CVE-2024-44660 (PHPGurukul Online Shopping Portal 2.0 is vulnerable to SQL
Injection v ...)
- TODO: check
+ NOT-FOR-US: PHPGurukul
CVE-2024-44659 (PHPGurukul Online Shopping Portal 2.0 is vulnerable to SQL
Injection v ...)
- TODO: check
+ NOT-FOR-US: PHPGurukul
CVE-2024-44658 (PHPGurukul Complaint Management System 2.0 is vulnerable to
SQL Inject ...)
- TODO: check
+ NOT-FOR-US: PHPGurukul
CVE-2024-44657 (PHPGurukul Complaint Management System 2.0 is vulnerable to
SQL Inject ...)
- TODO: check
+ NOT-FOR-US: PHPGurukul
CVE-2024-44655 (PHPGurukul Complaint Management System 2.0 is vulnerable to
Cross Site ...)
- TODO: check
+ NOT-FOR-US: PHPGurukul
CVE-2024-44654 (PHPGurukul Complaint Management System 2.0 is vulnerable to
SQL Inject ...)
- TODO: check
+ NOT-FOR-US: PHPGurukul
CVE-2024-44653 (Kashipara Ecommerce Website 1.0 is vulnerable to SQL Injection
via the ...)
TODO: check
CVE-2024-44652 (Kashipara Ecommerce Website 1.0 is vulnerable to SQL Injection
via the ...)
@@ -129,13 +129,13 @@ CVE-2024-44652 (Kashipara Ecommerce Website 1.0 is
vulnerable to SQL Injection v
CVE-2024-44651 (Kashipara Ecommerce Website 1.0 is vulnerable to SQL Injection
via the ...)
TODO: check
CVE-2024-44648 (PHPGurukul Small CRM 3.0 is vulnerable to SQL Injection via id
and adm ...)
- TODO: check
+ NOT-FOR-US: PHPGurukul
CVE-2024-44647 (PHPGurukul Small CRM 3.0 is vulnerable to Cross Site Scripting
(XSS) v ...)
- TODO: check
+ NOT-FOR-US: PHPGurukul
CVE-2024-44644 (PHPGurukul Small CRM 3.0 is vulnerable to SQL Injection via
the frm_id ...)
- TODO: check
+ NOT-FOR-US: PHPGurukul
CVE-2024-44641 (PHPGurukul Small CRM 3.0 is vulnerable to SQL Injection via
the oldpas ...)
- TODO: check
+ NOT-FOR-US: PHPGurukul
CVE-2025-9501 (The W3 Total Cache WordPress plugin before 2.8.13 is vulnerable
to com ...)
NOT-FOR-US: WordPress plugin
CVE-2025-60022 (Improper certificate validation vulnerability exists in
'\u30c7\u30b8\ ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/efe2d010e9c2ad6a356a56e66331d42d78479bca
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/efe2d010e9c2ad6a356a56e66331d42d78479bca
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
