Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
4dea28a0 by Salvatore Bonaccorso at 2026-02-19T09:33:33+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,9 +1,9 @@
CVE-2026-2733 (A flaw was identified in the Docker v2 authentication endpoint
of Keyc ...)
- keycloak <itp> (bug #1088287)
CVE-2026-2731 (Path traversal and content injection in
JobRunnerBackground.aspx in Dy ...)
- TODO: check
+ NOT-FOR-US: DynamicWeb
CVE-2026-2711 (A vulnerability has been found in zhutoutoutousan
worldquant-miner up ...)
- TODO: check
+ NOT-FOR-US: zhutoutoutousan worldquant-miner
CVE-2026-2709 (A flaw has been found in busy up to 2.5.5. The affected element
is an ...)
TODO: check
CVE-2026-2706 (A flaw has been found in code-projects Patient Record
Management Syste ...)
@@ -15,11 +15,11 @@ CVE-2026-2704 (A security vulnerability has been detected
in Open Babel up to 3.
CVE-2026-2703 (A weakness has been identified in xlnt-community xlnt up to
1.6.1. Imp ...)
TODO: check
CVE-2026-2702 (A security flaw has been discovered in Beetel 777VR1 up to
01.00.09. T ...)
- TODO: check
+ NOT-FOR-US: Beetel
CVE-2026-2693 (A vulnerability was determined in CoCoTeaNet CyreneAdmin up to
1.3.0. ...)
- TODO: check
+ NOT-FOR-US: CoCoTeaNet CyreneAdmin
CVE-2026-2692 (A vulnerability was found in CoCoTeaNet CyreneAdmin up to
1.3.0. This ...)
- TODO: check
+ NOT-FOR-US: CoCoTeaNet CyreneAdmin
CVE-2026-2691 (A vulnerability has been found in itsourcecode Event Management
System ...)
NOT-FOR-US: itsourcecode System
CVE-2026-2690 (A flaw has been found in itsourcecode Event Management System
1.0. Aff ...)
@@ -27,29 +27,29 @@ CVE-2026-2690 (A flaw has been found in itsourcecode Event
Management System 1.0
CVE-2026-2689 (A vulnerability was detected in itsourcecode Event Management
System 1 ...)
NOT-FOR-US: itsourcecode System
CVE-2026-2686 (A security vulnerability has been detected in SECCN Dingcheng
G10 3.1. ...)
- TODO: check
+ NOT-FOR-US: SECCN Dingcheng G10
CVE-2026-2684 (A vulnerability was determined in Tsinghua Unigroup Electronic
Archive ...)
- TODO: check
+ NOT-FOR-US: Tsinghua Unigroup Electronic Archives System
CVE-2026-2683 (A vulnerability was found in Tsinghua Unigroup Electronic
Archives Sys ...)
- TODO: check
+ NOT-FOR-US: Tsinghua Unigroup Electronic Archives System
CVE-2026-2682 (A vulnerability has been found in Tsinghua Unigroup Electronic
Archive ...)
- TODO: check
+ NOT-FOR-US: Tsinghua Unigroup Electronic Archives System
CVE-2026-2676 (A weakness has been identified in GoogTech sms-ssm up to
e8534c766fd13 ...)
- TODO: check
+ NOT-FOR-US: GoogTech sms-ssm
CVE-2026-2672 (A security flaw has been discovered in Tsinghua Unigroup
Electronic Ar ...)
- TODO: check
+ NOT-FOR-US: Tsinghua Unigroup Electronic Archives System
CVE-2026-2670 (A vulnerability was identified in Advantech WISE-6610
1.2.1_20251110. ...)
NOT-FOR-US: Advantech
CVE-2026-2669 (A vulnerability was determined in Rongzhitong Visual Integrated
Comman ...)
- TODO: check
+ NOT-FOR-US: Rongzhitong Visual Integrated Command and Dispatch Platform
CVE-2026-2668 (A vulnerability was found in Rongzhitong Visual Integrated
Command and ...)
- TODO: check
+ NOT-FOR-US: Rongzhitong Visual Integrated Command and Dispatch Platform
CVE-2026-2667 (A vulnerability has been found in Rongzhitong Visual Integrated
Comman ...)
- TODO: check
+ NOT-FOR-US: Rongzhitong Visual Integrated Command and Dispatch Platform
CVE-2026-2666 (A flaw has been found in mingSoft MCMS 6.1.1. The affected
element is ...)
- TODO: check
+ NOT-FOR-US: mingSoft MCMS
CVE-2026-2665 (A vulnerability was detected in huanzi-qch base-admin up to
57a8126bb3 ...)
- TODO: check
+ NOT-FOR-US: huanzi-qch base-admin
CVE-2026-2504 (The Dealia \u2013 Request a quote plugin for WordPress is
vulnerable t ...)
NOT-FOR-US: WordPress plugin
CVE-2026-2502 (The xmlrpc attacks blocker plugin for WordPress is vulnerable
to Store ...)
@@ -59,39 +59,39 @@ CVE-2026-2284 (The News Element Elementor Blog Magazine
plugin for WordPress is
CVE-2026-2282 (The Slidorion plugin for WordPress is vulnerable to Stored
Cross-Site ...)
NOT-FOR-US: WordPress plugin
CVE-2026-27182 (Saturn Remote Mouse Server contains a command injection
vulnerability ...)
- TODO: check
+ NOT-FOR-US: Saturn Remote Mouse Server
CVE-2026-27181 (MajorDoMo (aka Major Domestic Module) allows unauthenticated
arbitrary ...)
- TODO: check
+ NOT-FOR-US: MajorDoMo (aka Major Domestic Module)
CVE-2026-27180 (MajorDoMo (aka Major Domestic Module) is vulnerable to
unauthenticated ...)
- TODO: check
+ NOT-FOR-US: MajorDoMo (aka Major Domestic Module)
CVE-2026-27179 (MajorDoMo (aka Major Domestic Module) contains an
unauthenticated SQL ...)
- TODO: check
+ NOT-FOR-US: MajorDoMo (aka Major Domestic Module)
CVE-2026-27178 (MajorDoMo (aka Major Domestic Module) contains a stored
cross-site scr ...)
- TODO: check
+ NOT-FOR-US: MajorDoMo (aka Major Domestic Module)
CVE-2026-27177 (MajorDoMo (aka Major Domestic Module) contains a stored
cross-site scr ...)
- TODO: check
+ NOT-FOR-US: MajorDoMo (aka Major Domestic Module)
CVE-2026-27176 (MajorDoMo (aka Major Domestic Module) contains a reflected
cross-site ...)
- TODO: check
+ NOT-FOR-US: MajorDoMo (aka Major Domestic Module)
CVE-2026-27175 (MajorDoMo (aka Major Domestic Module) is vulnerable to
unauthenticated ...)
- TODO: check
+ NOT-FOR-US: MajorDoMo (aka Major Domestic Module)
CVE-2026-27174 (MajorDoMo (aka Major Domestic Module) allows unauthenticated
remote co ...)
- TODO: check
+ NOT-FOR-US: MajorDoMo (aka Major Domestic Module)
CVE-2026-26281 (InvoicePlane is a self-hosted open source application for
managing inv ...)
- TODO: check
+ NOT-FOR-US: InvoicePlane
CVE-2026-26270 (InvoicePlane is a self-hosted open source application for
managing inv ...)
- TODO: check
+ NOT-FOR-US: InvoicePlane
CVE-2026-25926 (Notepad++ is a free and open-source source code editor. An
Unsafe Sear ...)
- TODO: check
+ NOT-FOR-US: Notepad++
CVE-2026-25596 (InvoicePlane is a self-hosted open source application for
managing inv ...)
- TODO: check
+ NOT-FOR-US: InvoicePlane
CVE-2026-25595 (InvoicePlane is a self-hosted open source application for
managing inv ...)
- TODO: check
+ NOT-FOR-US: InvoicePlane
CVE-2026-25594 (InvoicePlane is a self-hosted open source application for
managing inv ...)
- TODO: check
+ NOT-FOR-US: InvoicePlane
CVE-2026-25548 (InvoicePlane is a self-hosted open source application for
managing inv ...)
- TODO: check
+ NOT-FOR-US: InvoicePlane
CVE-2026-25474 (OpenClaw is a personal AI assistant. In versions 2026.1.30 and
below, ...)
- TODO: check
+ NOT-FOR-US: OpenClaw
CVE-2026-25242 (Gogs is an open source self-hosted Git service. Versions
0.13.4 and be ...)
TODO: check
CVE-2026-25232 (Gogs is an open source self-hosted Git service. Versions
0.13.4 and be ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4dea28a0a81fec6f3b18a290b22355524cc98658
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4dea28a0a81fec6f3b18a290b22355524cc98658
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
