Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
83e8b562 by Salvatore Bonaccorso at 2026-01-16T11:14:00+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -102,35 +102,35 @@ CVE-2025-70892 (Phpgurukul Cyber Cafe Management System
v1.0 contains a SQL Inje
CVE-2025-70891 (A stored cross-site scripting (XSS) vulnerability exists in
Phpgurukul ...)
NOT-FOR-US: PHPGurukul
CVE-2025-70890 (A stored cross-site scripting (XSS) vulnerability exists in
Cyber Cafe ...)
- TODO: check
+ NOT-FOR-US: Cyber Cafe Management System
CVE-2025-68671 (lakeFS is an open-source tool that transforms object storage
into a Gi ...)
- TODO: check
+ NOT-FOR-US: lakeFS
CVE-2025-67823 (A vulnerability in the Multimedia Email component of Mitel
MiContact C ...)
- TODO: check
+ NOT-FOR-US: Mitel
CVE-2025-67822 (A vulnerability in the Provisioning Manager component of Mitel
MiVoice ...)
- TODO: check
+ NOT-FOR-US: Mitel
CVE-2025-67025 (Cross Site Scripting vulnerability in Anycomment anycomment.io
0.4.4 a ...)
- TODO: check
+ NOT-FOR-US: Anycomment anycomment.io
CVE-2025-65368 (SparkyFitness v0.15.8.2 is vulnerable to Cross Site Scripting
(XSS) vi ...)
- TODO: check
+ NOT-FOR-US: SparkyFitness
CVE-2025-65118 (The vulnerability, if exploited, could allow an authenticated
miscrean ...)
- TODO: check
+ NOT-FOR-US: Aveva
CVE-2025-65117 (The vulnerability, if exploited, could allow an authenticated
miscrean ...)
- TODO: check
+ NOT-FOR-US: Aveva
CVE-2025-64769 (The Process Optimization application suite leverages
connection chann ...)
- TODO: check
+ NOT-FOR-US: Aveva
CVE-2025-64729 (The vulnerability, if exploited, could allow an authenticated
miscrean ...)
- TODO: check
+ NOT-FOR-US: Aveva
CVE-2025-64691 (The vulnerability, if exploited, could allow an authenticated
miscrean ...)
- TODO: check
+ NOT-FOR-US: Aveva
CVE-2025-62582 (Delta Electronics DIAView has multiple vulnerabilities.)
NOT-FOR-US: Delta Electronics
CVE-2025-62581 (Delta Electronics DIAView has multiple vulnerabilities.)
NOT-FOR-US: Delta Electronics
CVE-2025-61943 (The vulnerability, if exploited, could allow an authenticated
miscrean ...)
- TODO: check
+ NOT-FOR-US: Aveva
CVE-2025-61937 (The vulnerability, if exploited, could allow an
unauthenticated miscr ...)
- TODO: check
+ NOT-FOR-US: Aveva
CVE-2025-60011 (An Improper Check for Unusual or Exceptional Conditions
vulnerability ...)
NOT-FOR-US: Juniper
CVE-2025-60007 (A NULL Pointer Dereference vulnerability in the chassis daemon
(chassi ...)
@@ -180,7 +180,7 @@ CVE-2025-12957 (The All-in-One Video Gallery plugin for
WordPress is vulnerable
CVE-2025-12641 (The Awesome Support - WordPress HelpDesk & Support Plugin for
WordPres ...)
NOT-FOR-US: WordPress plugin
CVE-2023-7334 (Changjetong T+ versions up to and including 16.x contain a .NET
deseri ...)
- TODO: check
+ NOT-FOR-US: Changjetong T+
CVE-2021-47815 (Nsauditor 3.2.3 contains a denial of service vulnerability in
the regi ...)
TODO: check
CVE-2021-47814 (NBMonitor 1.6.8 contains a denial of service vulnerability
that allows ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/83e8b562b9f9eac8fc75236cff18638524e9a77b
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/83e8b562b9f9eac8fc75236cff18638524e9a77b
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
