Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
2d8a42b1 by Salvatore Bonaccorso at 2026-04-04T21:24:15+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -35,15 +35,15 @@ CVE-2025-14938 (The Listeo Core plugin for WordPress is
vulnerable to unauthenti
CVE-2025-13368 (The Xpro Addons \u2014 140+ Widgets for Elementor plugin for
WordPress ...)
NOT-FOR-US: WordPress plugin
CVE-2018-25255 (10-Strike LANState 8.8 contains a local buffer overflow
vulnerability ...)
- TODO: check
+ NOT-FOR-US: 10-Strike LANState
CVE-2018-25254 (NICO-FTP 3.0.1.19 contains a structured exception handler
buffer overf ...)
- TODO: check
+ NOT-FOR-US: NICO-FTP
CVE-2018-25253 (Termite 3.4 contains a buffer overflow vulnerability in the
User inter ...)
- TODO: check
+ NOT-FOR-US: Termite
CVE-2018-25252 (FTP Voyager 16.2.0 contains a denial of service vulnerability
that all ...)
- TODO: check
+ NOT-FOR-US: FTP Voyager
CVE-2018-25251 (Snes9K 0.0.9z contains a buffer overflow vulnerability in the
Netplay ...)
- TODO: check
+ NOT-FOR-US: Snes9K
CVE-2018-25250 (MyBB Last User's Threads in Profile Plugin 1.2 contains a
persistent c ...)
NOT-FOR-US: MyBB
CVE-2018-25249 (MyBB My Arcade Plugin 1.3 contains a persistent cross-site
scripting v ...)
@@ -53,43 +53,43 @@ CVE-2018-25248 (MyBB Downloads Plugin 2.0.3 contains a
persistent cross-site scr
CVE-2018-25247 (MyBB Like Plugin 3.0.0 contains a cross-site scripting
vulnerability t ...)
NOT-FOR-US: MyBB
CVE-2018-25245 (7 Tik 1.0.1.0 contains a denial of service vulnerability that
allows a ...)
- TODO: check
+ NOT-FOR-US: 7 Tik
CVE-2018-25244 (Eco Search 1.0.2.0 contains a denial of service vulnerability
that all ...)
- TODO: check
+ NOT-FOR-US: Eco Search
CVE-2018-25243 (FastTube 1.0.1.0 contains a denial of service vulnerability
that allow ...)
- TODO: check
+ NOT-FOR-US: FastTube
CVE-2018-25242 (One Search 1.1.0.0 contains a denial of service vulnerability
that all ...)
- TODO: check
+ NOT-FOR-US: One Search
CVE-2018-25241 (VPN Browser+ 1.1.0.0 contains a denial of service
vulnerability that a ...)
- TODO: check
+ NOT-FOR-US: VPN Browser+
CVE-2018-25240 (Watchr 1.1.0.0 contains a denial of service vulnerability that
allows ...)
- TODO: check
+ NOT-FOR-US: Watchr
CVE-2018-25239 (Smart VPN 1.1.3.0 contains a denial of service vulnerability
that allo ...)
- TODO: check
+ NOT-FOR-US: Smart VPN
CVE-2018-25238 (VSCO 1.1.1.0 contains a denial of service vulnerability that
allows lo ...)
- TODO: check
+ NOT-FOR-US: VSCO
CVE-2016-20061 (sheed AntiVirus 2.3 contains an unquoted service path
vulnerability in ...)
- TODO: check
+ NOT-FOR-US: sheed AntiVirus
CVE-2016-20060 (Hotspot Shield 6.0.3 contains an unquoted service path
vulnerability i ...)
- TODO: check
+ NOT-FOR-US: Hotspot Shield
CVE-2016-20059 (IObit Malware Fighter 4.3.1 contains an unquoted service path
vulnerab ...)
- TODO: check
+ NOT-FOR-US: IObit Malware Fighter
CVE-2016-20058 (Netgate AMITI Antivirus build 23.0.305 contains an unquoted
service pa ...)
- TODO: check
+ NOT-FOR-US: Netgate AMITI Antivirus
CVE-2016-20057 (NETGATE Registry Cleaner build 16.0.205 contains an unquoted
service p ...)
- TODO: check
+ NOT-FOR-US: NETGATE Registry Cleaner
CVE-2016-20056 (Spy Emergency build 23.0.205 contains an unquoted service path
vulnera ...)
- TODO: check
+ NOT-FOR-US: Spy Emergency
CVE-2016-20055 (IObit Advanced SystemCare 10.0.2 contains an unquoted service
path vul ...)
- TODO: check
+ NOT-FOR-US: IObit Advanced SystemCare
CVE-2016-20053 (Redaxo CMS 5.2 contains a cross-site request forgery
vulnerability tha ...)
- TODO: check
+ NOT-FOR-US: Redaxo CMS
CVE-2016-20052 (Snews CMS 1.7 contains an unrestricted file upload
vulnerability that ...)
- TODO: check
+ NOT-FOR-US: Snews CMS
CVE-2016-20051 (Snews CMS 1.7 contains a cross-site request forgery
vulnerability that ...)
- TODO: check
+ NOT-FOR-US: Snews CMS
CVE-2016-20050 (NetSchedScan 1.0 contains a buffer overflow vulnerability in
the scan ...)
- TODO: check
+ NOT-FOR-US: NetSchedScan
CVE-2026-5485 (OS command injection in the browser-based authentication
component in ...)
NOT-FOR-US: Amazon
CVE-2026-5484 (A weakness has been identified in BookStackApp BookStack up to
26.03. ...)
@@ -14831,7 +14831,7 @@ CVE-2018-25196 (ServerZilla 1.0 contains an SQL
injection vulnerability that all
CVE-2018-25194 (Nominas 0.27 contains an SQL injection vulnerability that
allows unaut ...)
NOT-FOR-US: Nominas
CVE-2018-25193 (Mongoose Web Server 6.9 contains a denial of service
vulnerability tha ...)
- TODO: check
+ NOT-FOR-US: Mongoose
CVE-2018-25192 (GPS Tracking System 2.12 contains an SQL injection
vulnerability that ...)
NOT-FOR-US: GPS Tracking System
CVE-2018-25191 (Facturation System 1.0 contains an SQL injection vulnerability
that al ...)
@@ -55499,7 +55499,7 @@ CVE-2023-53735 (WEBIGniter 28.7.23 contains a
cross-site scripting vulnerability
CVE-2023-53734 (dawa-pharma-1.0 allows unauthenticated attackers to execute
SQL querie ...)
NOT-FOR-US: dawa-pharma-1.0
CVE-2016-20023 (In CKSource CKFinder before 2.5.0.1 for ASP.NET, authenticated
users c ...)
- TODO: check
+ NOT-FOR-US: CKSource CKFinder
CVE-2025-14025 (A flaw was found in Ansible Automation Platform (AAP).
Read-only scope ...)
NOT-FOR-US: Ansible Automation Platform
CVE-2025-9127 (A vulnerability exists in PX Enterprise whereby sensitive
information ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2d8a42b1713732662f4872cfdf92d9d125794ae8
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2d8a42b1713732662f4872cfdf92d9d125794ae8
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
