Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
dd745a13 by Moritz Muehlenhoff at 2026-05-17T23:21:03+02:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -76,47 +76,47 @@ CVE-2026-6050
CVE-2026-46720 (Net::Statsd::Tiny versions before 0.3.8 for Perl allowed
metric inject ...)
NOT-FOR-US: Net::Statsd::Tiny Perl module
CVE-2018-25339 (Zechat 1.5 contains a SQL injection vulnerability in the v
parameter t ...)
- TODO: check
+ NOT-FOR-US: Zechat
CVE-2018-25338 (Zechat 1.5 contains a SQL injection vulnerability in the
hashtag param ...)
- TODO: check
+ NOT-FOR-US: Zechat
CVE-2018-25337 (Joomla JoomOCShop 1.0 contains a cross-site request forgery
vulnerabil ...)
- TODO: check
+ NOT-FOR-US: Joomla plugin
CVE-2018-25336 (Joomla jCart for OpenCart 2.3.0.2 contains a cross-site
request forger ...)
- TODO: check
+ NOT-FOR-US: Joomla plugin
CVE-2018-25335 (WordPress Plugin Peugeot Music 1.0 contains an arbitrary file
upload v ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2018-25334 (Zechat 1.5 contains a Cross-Site Request Forgery (CSRF)
vulnerability ...)
- TODO: check
+ NOT-FOR-US: Zechat
CVE-2018-25333 (Nordex N149/4.0-4.5 Wind Turbine Web Server 4.0 contains an
SQL inject ...)
- TODO: check
+ NOT-FOR-US: Nordex
CVE-2018-25332 (GitBucket 4.23.1 contains an unauthenticated remote code
execution vul ...)
- TODO: check
+ NOT-FOR-US: GitBucket
CVE-2018-25331 (Zenar Content Management System contains a cross-site
scripting vulner ...)
- TODO: check
+ NOT-FOR-US: Zenar
CVE-2018-25330 (Joomla! extension EkRishta 2.10 contains persistent cross-site
scripti ...)
- TODO: check
+ NOT-FOR-US: Joomla plugin
CVE-2018-25329 (WordPress Plugin WP with Spritz 1.0 contains a remote file
inclusion v ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2018-25328 (VX Search 10.6.18 contains a local buffer overflow
vulnerability that ...)
- TODO: check
+ NOT-FOR-US: VX Search
CVE-2018-25327 (Joomla! Component Js Jobs 1.2.0 contains a cross-site request
forgery ...)
- TODO: check
+ NOT-FOR-US: Joomla plugin
CVE-2018-25326 (Google Drive for WordPress 2.2 contains a path traversal
vulnerability ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2018-25325 (Woocommerce CSV Importer 3.3.6 contains a path traversal
vulnerability ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2018-25324 (Simple Fields 0.2 through 0.3.5 WordPress Plugin contains a
local file ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2018-25323 (Allok AVI DivX MPEG to DVD Converter 2.6.1217 contains a
structured ex ...)
- TODO: check
+ NOT-FOR-US: Allok
CVE-2018-25322 (Allok Fast AVI MPEG Splitter 1.2 contains a stack based buffer
overflo ...)
- TODO: check
+ NOT-FOR-US: Allok
CVE-2018-25321 (TP-Link TL-WR720N wireless router contains a cross-site
request forger ...)
NOT-FOR-US: TP-Link
CVE-2018-25320 (ACL Analytics versions 11.x through 13.0.0.579 contain an
arbitrary co ...)
- TODO: check
+ NOT-FOR-US: ACL Analytics
CVE-2018-25319 (Redaxo CMS Addon MyEvents 2.2.1 contains an SQL injection
vulnerabilit ...)
- TODO: check
+ NOT-FOR-US: Redaxo CMS addon
CVE-2025-4202 (The Multicollab: Content Team Collaboration and Editorial
Workflow plu ...)
NOT-FOR-US: WordPress plugin
CVE-2021-47981 (Quick.CMS 6.7 contains a cross-site scripting vulnerability in
the sli ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dd745a13b1e36ae87204074f9aa54a47c299c387
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dd745a13b1e36ae87204074f9aa54a47c299c387
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
