Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
1e35b60a by security tracker role at 2024-10-20T20:12:36+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,87 @@
+CVE-2024-49629 (Cross-Site Request Forgery (CSRF) vulnerability in Fahad
Mahmood Endle ...)
+ TODO: check
+CVE-2024-49628 (Cross-Site Request Forgery (CSRF) vulnerability in WhileTrue
Most And ...)
+ TODO: check
+CVE-2024-49627 (Cross-Site Request Forgery (CSRF) vulnerability in Noor Alam
WordPress ...)
+ TODO: check
+CVE-2024-49625 (Deserialization of Untrusted Data vulnerability in Brandon
Clark SiteB ...)
+ TODO: check
+CVE-2024-49624 (Deserialization of Untrusted Data vulnerability in Smartdevth
Advanced ...)
+ TODO: check
+CVE-2024-49623 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2024-49622 (Cross-Site Request Forgery (CSRF) vulnerability in Apa Apa
Banner Slid ...)
+ TODO: check
+CVE-2024-49621 (Cross-Site Request Forgery (CSRF) vulnerability in Apa APA
Register Ne ...)
+ TODO: check
+CVE-2024-49620 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2024-49619 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2024-49618 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2024-49617 (Cross-Site Request Forgery (CSRF) vulnerability in Bhaskar
Dhote Back ...)
+ TODO: check
+CVE-2024-49616 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2024-49615 (Cross-Site Request Forgery (CSRF) vulnerability in Henrique
Rodrigues ...)
+ TODO: check
+CVE-2024-49614 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2024-49613 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2024-49612 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2024-49610 (Unrestricted Upload of File with Dangerous Type vulnerability
in Jack ...)
+ TODO: check
+CVE-2024-49609 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2024-49608 (: Incorrect Privilege Assignment vulnerability in Gerry
Ntabuhashe GER ...)
+ TODO: check
+CVE-2024-49607 (Unrestricted Upload of File with Dangerous Type vulnerability
in Redwa ...)
+ TODO: check
+CVE-2024-49605 (Cross-Site Request Forgery (CSRF) vulnerability in Avchat.Net
AVChat V ...)
+ TODO: check
+CVE-2024-49335 (Cross-Site Request Forgery (CSRF) vulnerability in Edush Maxim
GoogleD ...)
+ TODO: check
+CVE-2024-49332 (Deserialization of Untrusted Data vulnerability in Giveaway
Boost allo ...)
+ TODO: check
+CVE-2024-49331 (Unrestricted Upload of File with Dangerous Type vulnerability
in Myria ...)
+ TODO: check
+CVE-2024-49330 (Unrestricted Upload of File with Dangerous Type vulnerability
in brx8r ...)
+ TODO: check
+CVE-2024-49329 (Unrestricted Upload of File with Dangerous Type vulnerability
in Vivek ...)
+ TODO: check
+CVE-2024-49327 (Unrestricted Upload of File with Dangerous Type vulnerability
in Asep ...)
+ TODO: check
+CVE-2024-49326 (Unrestricted Upload of File with Dangerous Type vulnerability
in Vasil ...)
+ TODO: check
+CVE-2024-49325 (Subscriber Broken Access Control in Photo Gallery Builder <=
3.0 versi ...)
+ TODO: check
+CVE-2024-49324 (Unrestricted Upload of File with Dangerous Type vulnerability
in Sovra ...)
+ TODO: check
+CVE-2024-49306 (Cross-Site Request Forgery (CSRF) vulnerability in WP-buy WP
Content C ...)
+ TODO: check
+CVE-2024-49290 (Cross-Site Request Forgery (CSRF) vulnerability in Gora Tech
LLC Cooke ...)
+ TODO: check
+CVE-2024-49275 (Cross-Site Request Forgery (CSRF) vulnerability in Martin
Gibson IdeaP ...)
+ TODO: check
+CVE-2024-49274 (Cross-Site Request Forgery (CSRF) vulnerability in Infomaniak
Staff VO ...)
+ TODO: check
+CVE-2024-49272 (Cross-Site Request Forgery (CSRF) vulnerability in WPWeb
Social Auto P ...)
+ TODO: check
+CVE-2024-49250 (Cross-Site Request Forgery (CSRF) vulnerability in Michael
Tran Table ...)
+ TODO: check
+CVE-2024-47634 (Cross-Site Request Forgery (CSRF) vulnerability in
Streamline.Lv CartB ...)
+ TODO: check
+CVE-2024-47325 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2024-44061 (Improper Neutralization of Script-Related HTML Tags in a Web
Page (Bas ...)
+ TODO: check
+CVE-2024-44000 (Insufficiently Protected Credentials vulnerability in
LiteSpeed Techno ...)
+ TODO: check
+CVE-2024-10195 (A vulnerability was found in Tecno 4G Portable WiFi TR118
V008-2022083 ...)
+ TODO: check
CVE-2024-XXXX [XSS Vulnerability in matrix.pl]
- dbeacon 0.4.0-3 (bug #1031542)
CVE-2024-49631 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
@@ -2017,7 +2101,7 @@ CVE-2024-47164 (Gradio is an open-source Python package
designed for quick proto
NOT-FOR-US: Gradio
CVE-2024-47084 (Gradio is an open-source Python package designed for quick
prototyping ...)
NOT-FOR-US: Gradio
-CVE-2024-21534 (Versions of the package jsonpath-plus before 10.0.0 are
vulnerable to ...)
+CVE-2024-21534 (Versions of the package jsonpath-plus before 10.0.7 are
vulnerable to ...)
NOT-FOR-US: Node jsonpath-plus
CVE-2024-9810 (A vulnerability was found in SourceCodester Record Management
System 1 ...)
NOT-FOR-US: SourceCodester
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1e35b60ac0389ce456031f04babb5fcf56f008fc
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1e35b60ac0389ce456031f04babb5fcf56f008fc
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
