Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
6d699751 by security tracker role at 2025-12-30T08:13:38+00:00
automatic NOT-FOR-US entries update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -7,49 +7,49 @@ CVE-2025-69217 (coturn is a free open source implementation
of TURN and STUN Ser
CVE-2025-69205 (Micro Registration Utility (\xb5URU) is a telephone self
registration ...)
TODO: check
CVE-2025-68860 (Authentication Bypass Using an Alternate Path or Channel
vulnerability ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-68607 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-68562 (Unrestricted Upload of File with Dangerous Type vulnerability
in Roman ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-68504 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-68503 (Missing Authorization vulnerability in Crocoblock JetBlog
allows Explo ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-68502 (Authorization Bypass Through User-Controlled Key vulnerability
in Croc ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-68499 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-68498 (Missing Authorization vulnerability in Crocoblock JetTabs
allows Explo ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-68120 (To prevent unexpected untrusted code execution, the Visual
Studio Code ...)
TODO: check
CVE-2025-68040 (Insertion of Sensitive Information Into Sent Data
vulnerability in weD ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-68036 (Missing Authorization vulnerability in Emraan Cheema CubeWP
allows Acc ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-23554 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-23550 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-23469 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-23458 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-15355 (ISOinsight developed by NetVision Information has a Reflected
Cross-si ...)
TODO: check
CVE-2025-15284 (Improper Input Validation vulnerability in qs (parse modules)
allows H ...)
TODO: check
CVE-2025-15233 (A security flaw has been discovered in Tenda M3
1.0.0.13(4903). This i ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2025-15232 (A vulnerability was identified in Tenda M3 1.0.0.13(4903).
This vulner ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2025-15231 (A vulnerability was determined in Tenda M3 1.0.0.13(4903).
This affect ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2025-15230 (A vulnerability was found in Tenda M3 1.0.0.13(4903). Affected
by this ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2025-15229 (A vulnerability has been found in Tenda CH22 up to 1.0.0.1.
Affected b ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2025-15222 (A vulnerability has been found in Dromara Sa-Token up to
1.44.0. This ...)
TODO: check
CVE-2025-15221 (A flaw has been found in SohuTV CacheCloud up to 3.2.0. This
vulnerabi ...)
@@ -59,41 +59,41 @@ CVE-2025-15220 (A vulnerability was detected in SohuTV
CacheCloud up to 3.2.0. T
CVE-2025-15219 (A security vulnerability has been detected in SohuTV
CacheCloud up to ...)
TODO: check
CVE-2025-15218 (A weakness has been identified in Tenda AC10U
15.03.06.48/15.03.06.49. ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2025-15217 (A security flaw has been discovered in Tenda AC23 16.03.07.52.
Affecte ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2025-15216 (A vulnerability was identified in Tenda AC23 16.03.07.52. This
impacts ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2025-15215 (A vulnerability was determined in Tenda AC10U
15.03.06.48/15.03.06.49. ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2025-15214 (A vulnerability was found in Campcodes Park Ticketing System
1.0. The ...)
- TODO: check
+ NOT-FOR-US: Campcodes
CVE-2025-15213 (A vulnerability has been found in code-projects Student File
Managemen ...)
- TODO: check
+ NOT-FOR-US: code-projects
CVE-2025-15212 (A vulnerability was detected in code-projects Refugee Food
Management ...)
- TODO: check
+ NOT-FOR-US: code-projects
CVE-2025-15211 (A flaw has been found in code-projects Refugee Food Management
System ...)
- TODO: check
+ NOT-FOR-US: code-projects
CVE-2025-15210 (A security vulnerability has been detected in code-projects
Refugee Fo ...)
- TODO: check
+ NOT-FOR-US: code-projects
CVE-2025-15209 (A weakness has been identified in code-projects Refugee Food
Managemen ...)
- TODO: check
+ NOT-FOR-US: code-projects
CVE-2025-15208 (A security flaw has been discovered in code-projects Refugee
Food Mana ...)
- TODO: check
+ NOT-FOR-US: code-projects
CVE-2025-15207 (A vulnerability has been found in Campcodes Supplier
Management System ...)
- TODO: check
+ NOT-FOR-US: Campcodes
CVE-2025-15206 (A flaw has been found in Campcodes Supplier Management System
1.0. Thi ...)
- TODO: check
+ NOT-FOR-US: Campcodes
CVE-2025-15205 (A vulnerability was identified in code-projects Student File
Managemen ...)
- TODO: check
+ NOT-FOR-US: code-projects
CVE-2025-15204 (A vulnerability was determined in SohuTV CacheCloud up to
3.2.0. Affec ...)
TODO: check
CVE-2025-15203 (A vulnerability was found in SohuTV CacheCloud up to 3.2.0.
This impac ...)
TODO: check
CVE-2025-14313 (The Advance WP Query Search Filter WordPress plugin through
1.0.10 doe ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-14312 (The Advance WP Query Search Filter WordPress plugin through
1.0.10 doe ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2024-27480 (givanz VvvebJs 1.7.2 is vulnerable to Insecure File Upload.)
TODO: check
CVE-2024-25183 (givanz VvvebJs 1.7.2 is vulnerable to Directory Traversal via
scan.php ...)
@@ -101,9 +101,9 @@ CVE-2024-25183 (givanz VvvebJs 1.7.2 is vulnerable to
Directory Traversal via sc
CVE-2024-25182 (givanz VvvebJs 1.7.2 suffers from a File Upload vulnerability
via save ...)
TODO: check
CVE-2023-41656 (Missing Authorization vulnerability in wpdive Better Elementor
Addons ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2023-32238 (Vulnerability in CodexThemes TheGem (Elementor), CodexThemes
TheGem (W ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin or theme
CVE-2025-69211 (Nest is a framework for building scalable Node.js server-side
applicat ...)
NOT-FOR-US: Nest
CVE-2025-69206 (Hemmelig is a messing app with with client-side encryption and
self-de ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6d6997514e5a3ca43b5554666bb656eeea81a920
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6d6997514e5a3ca43b5554666bb656eeea81a920
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
