Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
0a7387f9 by Salvatore Bonaccorso at 2024-02-23T10:01:27+01:00
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -28,29 +28,29 @@ CVE-2024-26151 (The `mjml` PyPI package, found at the
`FelixSchwarz/mjml-python`
CVE-2024-26128 (baserCMS is a website development framework. Prior to version
5.0.9, t ...)
NOT-FOR-US: baserCMS
CVE-2024-25876 (A cross-site scripting (XSS) vulnerability in the Header
module of Enh ...)
- TODO: check
+ NOT-FOR-US: Enhavo CMS module
CVE-2024-25875 (A cross-site scripting (XSS) vulnerability in the Header
module of Enh ...)
- TODO: check
+ NOT-FOR-US: Enhavo CMS module
CVE-2024-25874 (A cross-site scripting (XSS) vulnerability in the New/Edit
Article mod ...)
- TODO: check
+ NOT-FOR-US: Enhavo CMS module
CVE-2024-25873 (Enhavo v0.13.1 was discovered to contain an HTML injection
vulnerabili ...)
- TODO: check
+ NOT-FOR-US: Enhavo CMS
CVE-2024-25851 (Netis WF2780 v2.1.40144 was discovered to contain a command
injection ...)
- TODO: check
+ NOT-FOR-US: Netis WF2780
CVE-2024-25850 (Netis WF2780 v2.1.40144 was discovered to contain a command
injection ...)
- TODO: check
+ NOT-FOR-US: Netis WF2780
CVE-2024-25828 (cmseasy V7.7.7.9 has an arbitrary file deletion vulnerability
in lib/a ...)
- TODO: check
+ NOT-FOR-US: cmseasy
CVE-2024-25802 (SKINsoft S-Museum 7.02.3 allows Unrestricted File Upload via
the Add M ...)
- TODO: check
+ NOT-FOR-US: SKINsoft S-Museum
CVE-2024-25756 (A Stack Based Buffer Overflow vulnerability in Tenda AC9 v.3.0
with fi ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-25753 (Stack Based Buffer Overflow vulnerability in Tenda AC9 v.3.0
with firm ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-25748 (A Stack Based Buffer Overflow vulnerability in tenda AC9 AC9
v.3.0 wit ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-25746 (Stack Based Buffer Overflow vulnerability in Tenda AC9 v.3.0
with firm ...)
- TODO: check
+ NOT-FOR-US: Tenda
CVE-2024-25385 (An issue in flvmeta v.1.2.2 allows a local attacker to cause a
denial ...)
TODO: check
CVE-2024-25369 (A reflected Cross-Site Scripting (XSS) vulnerability in FUEL
CMS 1.5.2 ...)
@@ -60,7 +60,7 @@ CVE-2024-25130 (Tuleap is an open source suite to improve
management of software
CVE-2024-25129 (The CodeQL CLI repo holds binaries for the CodeQL command line
interfa ...)
TODO: check
CVE-2024-25021 (IBM AIX 7.3, VIOS 4.1's Perl implementation could allow a
non-privileg ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2024-24817 (Discourse Calendar adds the ability to create a dynamic
calendar in th ...)
TODO: check
CVE-2024-23094 (Flusity-CMS v2.33 was discovered to contain a Cross-Site
Request Forge ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0a7387f9408b16906d3a6fe6a64bc3e15319fe08
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0a7387f9408b16906d3a6fe6a64bc3e15319fe08
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
