[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update

Salvatore Bonaccorso (@carnil) Sat, 04 Apr 2026 14:49:27 -0700


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
50654584 by security tracker role at 2026-04-04T19:13:49+00:00
automatic NOT-FOR-US entries update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,39 +1,39 @@
 CVE-2026-5425 (The Widgets for Social Photo Feed plugin for WordPress is 
vulnerable t ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2026-4896 (The WCFM \u2013 Frontend Manager for WooCommerce along with 
Bookings S ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2026-3666 (The wpForo Forum plugin for WordPress is vulnerable to 
arbitrary file  ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2026-3445 (The Paid Membership Plugin, Ecommerce, User Registration Form, 
Login F ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2026-3309 (The Paid Membership Plugin, Ecommerce, User Registration Form, 
Login F ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2026-2936 (The Visitor Traffic Real Time Statistics plugin for WordPress 
is vulne ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2026-2826 (The Kadence Blocks \u2014 Page Builder Toolkit for Gutenberg 
Editor pl ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2026-2600 (The ElementsKit Elementor Addons and Templates plugin for 
WordPress is ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2026-2437 (The WP Travel Engine \u2013 Tour Booking Plugin \u2013 Tour 
Operator S ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2026-1233 (The Text to Speech for WP (AI Voices by Mementor) plugin for 
WordPress ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2026-0738 (The WP Shortcodes Plugin - Shortcodes Ultimate plugin for 
WordPress is ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2026-0737 (The WP Shortcodes Plugin - Shortcodes Ultimate plugin for 
WordPress is ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2026-0664 (The Royal Addons for Elementor plugin for WordPress is 
vulnerable to S ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2026-0626 (The WPFunnels \u2013 Easy Funnel Builder To Optimize Buyer 
Journeys An ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2026-0552 (The Simple Shopping Cart plugin for WordPress is vulnerable to 
Stored  ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2025-15064 (The Ultimate Member \u2013 User Profile, Registration, Login, 
Member D ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2025-14938 (The Listeo Core plugin for WordPress is vulnerable to 
unauthenticated  ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2025-13368 (The Xpro Addons \u2014 140+ Widgets for Elementor plugin for 
WordPress ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2018-25255 (10-Strike LANState 8.8 contains a local buffer overflow 
vulnerability  ...)
        TODO: check
 CVE-2018-25254 (NICO-FTP 3.0.1.19 contains a structured exception handler 
buffer overf ...)
@@ -45,13 +45,13 @@ CVE-2018-25252 (FTP Voyager 16.2.0 contains a denial of 
service vulnerability th
 CVE-2018-25251 (Snes9K 0.0.9z contains a buffer overflow vulnerability in the 
Netplay  ...)
        TODO: check
 CVE-2018-25250 (MyBB Last User's Threads in Profile Plugin 1.2 contains a 
persistent c ...)
-       TODO: check
+       NOT-FOR-US: MyBB
 CVE-2018-25249 (MyBB My Arcade Plugin 1.3 contains a persistent cross-site 
scripting v ...)
-       TODO: check
+       NOT-FOR-US: MyBB
 CVE-2018-25248 (MyBB Downloads Plugin 2.0.3 contains a persistent cross-site 
scripting ...)
-       TODO: check
+       NOT-FOR-US: MyBB
 CVE-2018-25247 (MyBB Like Plugin 3.0.0 contains a cross-site scripting 
vulnerability t ...)
-       TODO: check
+       NOT-FOR-US: MyBB
 CVE-2018-25245 (7 Tik 1.0.1.0 contains a denial of service vulnerability that 
allows a ...)
        TODO: check
 CVE-2018-25244 (Eco Search 1.0.2.0 contains a denial of service vulnerability 
that all ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/506545848279f60d7ece27a46fc3d9661d4db17a

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/506545848279f60d7ece27a46fc3d9661d4db17a
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update

Reply via email to