Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
06aca036 by security tracker role at 2025-07-09T08:12:11+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,205 @@
+CVE-2025-7378 (Improper Input Validation vulnerability allows injecting
arbitrary v ...)
+ TODO: check
+CVE-2025-7220 (A vulnerability was found in Campcodes Payroll Management
System 1.0. ...)
+ TODO: check
+CVE-2025-7219 (A vulnerability was found in Campcodes Payroll Management
System 1.0. ...)
+ TODO: check
+CVE-2025-7218 (A vulnerability was found in Campcodes Payroll Management
System 1.0 a ...)
+ TODO: check
+CVE-2025-7217 (A vulnerability has been found in Campcodes Payroll Management
System ...)
+ TODO: check
+CVE-2025-7216 (A vulnerability, which was classified as critical, was found in
lty628 ...)
+ TODO: check
+CVE-2025-7215 (A vulnerability, which was classified as problematic, has been
found i ...)
+ TODO: check
+CVE-2025-7214 (A vulnerability classified as problematic was found in
FNKvision FNK-G ...)
+ TODO: check
+CVE-2025-7213 (A vulnerability classified as critical has been found in
FNKvision FNK ...)
+ TODO: check
+CVE-2025-7212 (A vulnerability was found in itsourcecode Insurance Management
System ...)
+ TODO: check
+CVE-2025-7211 (A vulnerability was found in code-projects LifeStyle Store 1.0.
It has ...)
+ TODO: check
+CVE-2025-7210 (A vulnerability was found in code-projects/Fabian Ros Library
Manageme ...)
+ TODO: check
+CVE-2025-7209 (A vulnerability has been found in 9fans plan9port up to 9da5b44
and cl ...)
+ TODO: check
+CVE-2025-7208 (A vulnerability was found in 9fans plan9port up to 9da5b44. It
has bee ...)
+ TODO: check
+CVE-2025-7207 (A vulnerability, which was classified as problematic, was found
in mru ...)
+ TODO: check
+CVE-2025-7206 (A vulnerability, which was classified as critical, has been
found in D ...)
+ TODO: check
+CVE-2025-7200 (A vulnerability, which was classified as critical, was found in
krishn ...)
+ TODO: check
+CVE-2025-7199 (A vulnerability, which was classified as critical, has been
found in c ...)
+ TODO: check
+CVE-2025-7198 (A vulnerability classified as critical was found in
code-projects Jonn ...)
+ TODO: check
+CVE-2025-7197 (A vulnerability classified as critical has been found in
code-projects ...)
+ TODO: check
+CVE-2025-7196 (A vulnerability was found in code-projects Jonnys Liquor 1.0.
It has b ...)
+ TODO: check
+CVE-2025-7194 (A vulnerability was found in D-Link DI-500WF 17.04.10A1T. It
has been ...)
+ TODO: check
+CVE-2025-7059 (The Simple Featured Image plugin for WordPress is vulnerable to
Stored ...)
+ TODO: check
+CVE-2025-7031 (Missing Authentication for Critical Function vulnerability in
Drupal C ...)
+ TODO: check
+CVE-2025-7030 (Privilege Defined With Unsafe Actions vulnerability in Drupal
Two-fact ...)
+ TODO: check
+CVE-2025-6759 (Local Privilege escalation allows a low-privileged user to gain
SYSTEM ...)
+ TODO: check
+CVE-2025-6742 (The SureForms \u2013 Drag and Drop Form Builder for WordPress
plugin f ...)
+ TODO: check
+CVE-2025-6691 (The SureForms \u2013 Drag and Drop Form Builder for WordPress
plugin f ...)
+ TODO: check
+CVE-2025-5678 (The Gutenberg Blocks with AI by Kadence WP \u2013 Page Builder
Feature ...)
+ TODO: check
+CVE-2025-53688
+ REJECTED
+CVE-2025-53687
+ REJECTED
+CVE-2025-53686
+ REJECTED
+CVE-2025-53685
+ REJECTED
+CVE-2025-53684
+ REJECTED
+CVE-2025-53683
+ REJECTED
+CVE-2025-53682
+ REJECTED
+CVE-2025-53547 (Helm is a package manager for Charts for Kubernetes. Prior to
3.18.4, ...)
+ TODO: check
+CVE-2025-4855 (The Support Board plugin for WordPress is vulnerable to
unauthorized a ...)
+ TODO: check
+CVE-2025-4828 (The Support Board plugin for WordPress is vulnerable to
arbitrary file ...)
+ TODO: check
+CVE-2025-4606 (The Sala - Startup & SaaS WordPress Theme theme for WordPress
is vulne ...)
+ TODO: check
+CVE-2025-49551 (ColdFusion versions 2025.2, 2023.14, 2021.20 and earlier are
affected ...)
+ TODO: check
+CVE-2025-49547 (Adobe Experience Manager versions 11.4 and earlier are
affected by a s ...)
+ TODO: check
+CVE-2025-49546 (ColdFusion versions 2025.2, 2023.14, 2021.20 and earlier are
affected ...)
+ TODO: check
+CVE-2025-49545 (ColdFusion versions 2025.2, 2023.14, 2021.20 and earlier are
affected ...)
+ TODO: check
+CVE-2025-49544 (ColdFusion versions 2025.2, 2023.14, 2021.20 and earlier are
affected ...)
+ TODO: check
+CVE-2025-49543 (ColdFusion versions 2025.2, 2023.14, 2021.20 and earlier are
affected ...)
+ TODO: check
+CVE-2025-49542 (ColdFusion versions 2025.2, 2023.14, 2021.20 and earlier are
affected ...)
+ TODO: check
+CVE-2025-49541 (ColdFusion versions 2025.2, 2023.14, 2021.20 and earlier are
affected ...)
+ TODO: check
+CVE-2025-49540 (ColdFusion versions 2025.2, 2023.14, 2021.20 and earlier are
affected ...)
+ TODO: check
+CVE-2025-49539 (ColdFusion versions 2025.2, 2023.14, 2021.20 and earlier are
affected ...)
+ TODO: check
+CVE-2025-49538 (ColdFusion versions 2025.2, 2023.14, 2021.20 and earlier are
affected ...)
+ TODO: check
+CVE-2025-49537 (ColdFusion versions 2025.2, 2023.14, 2021.20 and earlier are
affected ...)
+ TODO: check
+CVE-2025-49536 (ColdFusion versions 2025.2, 2023.14, 2021.20 and earlier are
affected ...)
+ TODO: check
+CVE-2025-49535 (ColdFusion versions 2025.2, 2023.14, 2021.20 and earlier are
affected ...)
+ TODO: check
+CVE-2025-49534 (Adobe Experience Manager versions 11.4 and earlier are
affected by a s ...)
+ TODO: check
+CVE-2025-49533 (Adobe Experience Manager (MS) versions 6.5.23.0 and earlier
are affect ...)
+ TODO: check
+CVE-2025-49532 (Illustrator versions 28.7.6, 29.5.1 and earlier are affected
by an Int ...)
+ TODO: check
+CVE-2025-49531 (Illustrator versions 28.7.6, 29.5.1 and earlier are affected
by an Int ...)
+ TODO: check
+CVE-2025-49530 (Illustrator versions 28.7.6, 29.5.1 and earlier are affected
by an out ...)
+ TODO: check
+CVE-2025-49529 (Illustrator versions 28.7.6, 29.5.1 and earlier are affected
by an Acc ...)
+ TODO: check
+CVE-2025-49528 (Illustrator versions 28.7.6, 29.5.1 and earlier are affected
by a Stac ...)
+ TODO: check
+CVE-2025-49527 (Illustrator versions 28.7.6, 29.5.1 and earlier are affected
by a Stac ...)
+ TODO: check
+CVE-2025-49526 (Illustrator versions 28.7.6, 29.5.1 and earlier are affected
by an out ...)
+ TODO: check
+CVE-2025-49525 (Illustrator versions 28.7.6, 29.5.1 and earlier are affected
by an out ...)
+ TODO: check
+CVE-2025-49524 (Illustrator versions 28.7.6, 29.5.1 and earlier are affected
by a NULL ...)
+ TODO: check
+CVE-2025-47136 (InDesign Desktop versions 19.5.3 and earlier are affected by
an Intege ...)
+ TODO: check
+CVE-2025-47134 (InDesign Desktop versions 19.5.3 and earlier are affected by a
Heap-ba ...)
+ TODO: check
+CVE-2025-47133 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are
affected by a ...)
+ TODO: check
+CVE-2025-47132 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are
affected by a ...)
+ TODO: check
+CVE-2025-47131 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are
affected by a ...)
+ TODO: check
+CVE-2025-47130 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are
affected by a ...)
+ TODO: check
+CVE-2025-47129 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are
affected by a ...)
+ TODO: check
+CVE-2025-47128 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are
affected by a ...)
+ TODO: check
+CVE-2025-47127 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are
affected by a ...)
+ TODO: check
+CVE-2025-47126 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are
affected by a ...)
+ TODO: check
+CVE-2025-47125 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are
affected by a ...)
+ TODO: check
+CVE-2025-47124 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are
affected by a ...)
+ TODO: check
+CVE-2025-47123 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are
affected by a ...)
+ TODO: check
+CVE-2025-47122 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are
affected by a ...)
+ TODO: check
+CVE-2025-47121 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are
affected by a ...)
+ TODO: check
+CVE-2025-47120 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are
affected by a ...)
+ TODO: check
+CVE-2025-47119 (Adobe Framemaker versions 2020.8, 2022.6 and earlier are
affected by a ...)
+ TODO: check
+CVE-2025-47103 (InDesign Desktop versions 19.5.3 and earlier are affected by a
Heap-ba ...)
+ TODO: check
+CVE-2025-47099 (InCopy versions 20.3, 19.5.3 and earlier are affected by a
Heap-based ...)
+ TODO: check
+CVE-2025-47098 (InCopy versions 20.3, 19.5.3 and earlier are affected by an
Access of ...)
+ TODO: check
+CVE-2025-47097 (InCopy versions 20.3, 19.5.3 and earlier are affected by an
Integer Un ...)
+ TODO: check
+CVE-2025-43594 (InDesign Desktop versions 19.5.3 and earlier are affected by
an out-of ...)
+ TODO: check
+CVE-2025-43592 (InDesign Desktop versions 19.5.3 and earlier are affected by
an Access ...)
+ TODO: check
+CVE-2025-43591 (InDesign Desktop versions 19.5.3 and earlier are affected by a
Heap-ba ...)
+ TODO: check
+CVE-2025-43584 (Substance3D - Viewer versions 0.22 and earlier are affected by
an out- ...)
+ TODO: check
+CVE-2025-43583 (Substance3D - Viewer versions 0.22 and earlier are affected by
a NULL ...)
+ TODO: check
+CVE-2025-43582 (Substance3D - Viewer versions 0.22 and earlier are affected by
a Heap- ...)
+ TODO: check
+CVE-2025-3780 (The WCFM \u2013 Frontend Manager for WooCommerce along with
Bookings S ...)
+ TODO: check
+CVE-2025-34085 (An unrestricted file upload vulnerability in the WordPress
Simple File ...)
+ TODO: check
+CVE-2025-34084 (An unauthenticated information disclosure vulnerability exists
in the ...)
+ TODO: check
+CVE-2025-34083 (An unrestricted file upload vulnerability exists in the
WordPress AIT ...)
+ TODO: check
+CVE-2025-34077 (An authentication bypass vulnerability exists in the WordPress
Pie Reg ...)
+ TODO: check
+CVE-2025-30313 (Illustrator versions 28.7.6, 29.5.1 and earlier are affected
by an out ...)
+ TODO: check
+CVE-2025-27203 (Adobe Connect versions 24.0 and earlier are affected by a
Deserializat ...)
+ TODO: check
+CVE-2025-27165 (Substance3D - Stager versions 3.1.2 and earlier are affected
by an out ...)
+ TODO: check
+CVE-2024-56468 (IBM InfoSphere Data Replication VSAM for z/OS Remote Source
11.4 could ...)
+ TODO: check
CVE-2025-4674
- golang-1.24 <unfixed>
- golang-1.23 <unfixed>
@@ -962,7 +1164,7 @@ CVE-2025-53525 (WeGIA is a web manager for charitable
institutions. A Reflected
NOT-FOR-US: WeGIA
CVE-2025-53499 (Missing Authorization vulnerability in Wikimedia Foundation
Mediawiki ...)
NOT-FOR-US: MediaWiki extension AbuseFilter
-CVE-2025-53498 (: Insufficient Logging vulnerability in Wikimedia Foundation
Mediawiki ...)
+CVE-2025-53498 (Insufficient Logging vulnerability in Wikimedia Foundation
Mediawiki - ...)
NOT-FOR-US: MediaWiki extension AbuseFilter
CVE-2025-53497 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
NOT-FOR-US: MediaWiki extension RelatedArticles
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/06aca036fc5c23f26ee12bb1d5a405f850a8cf98
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/06aca036fc5c23f26ee12bb1d5a405f850a8cf98
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
