[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update

Salvatore Bonaccorso (@carnil) Sat, 02 Aug 2025 01:13:24 -0700


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
0f27d8d8 by security tracker role at 2025-08-02T08:13:02+00:00
automatic NOT-FOR-US entries update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,17 +1,17 @@
 CVE-2025-8317 (The Custom Word Cloud plugin for WordPress is vulnerable to 
Stored Cro ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2025-8212 (The Medical Addon for Elementor plugin for WordPress is 
vulnerable to  ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2025-8152 (The WP CTA \u2013 Call To Action Plugin, Sticky CTA, Sticky 
Buttons pl ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2025-8146 (The Qi Addons For Elementor plugin for WordPress is vulnerable 
to Stor ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2025-7694 (The Woffice Core plugin for WordPress is vulnerable to 
arbitrary file  ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2025-6754 (The SEO Metrics plugin for WordPress is vulnerable to Privilege 
Escala ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2025-6626 (The ShortPixel Adaptive Images \u2013 WebP, AVIF, CDN, Image 
Optimizat ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2025-6078 (Partner Software's Partner Software application and Partner Web 
applic ...)
        TODO: check
 CVE-2025-6077 (Partner Software's Partner Software Product and corresponding 
Partner  ...)
@@ -43,21 +43,21 @@ CVE-2025-54132 (Cursor is a code editor built for 
programming with AI. In versio
 CVE-2025-54131 (Cursor is a code editor built for programming with AI. In 
versions bel ...)
        TODO: check
 CVE-2025-4588 (The 360 Photo Spheres plugin for WordPress is vulnerable to 
Stored Cro ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-13978 (A vulnerability was found in LibTIFF up to 4.7.0. It has been 
declared ...)
        TODO: check
 CVE-2013-10063 (A path traversal vulnerability exists in the Netgear SPH200D 
Skype pho ...)
-       TODO: check
+       NOT-FOR-US: Netgear
 CVE-2013-10062 (A directory traversal vulnerability exists in Linksys router's 
web int ...)
-       TODO: check
+       NOT-FOR-US: Linksys
 CVE-2013-10061 (An authenticated OS command injection vulnerability exists in 
Netgear  ...)
-       TODO: check
+       NOT-FOR-US: Netgear
 CVE-2013-10060 (An authenticated OS command injection vulnerability exists 
inNetgear r ...)
-       TODO: check
+       NOT-FOR-US: Netgear
 CVE-2013-10059 (An authenticated OS command injection vulnerability exists in 
various  ...)
-       TODO: check
+       NOT-FOR-US: D-Link
 CVE-2013-10058 (An authenticated OS command injection vulnerability exists in 
variousL ...)
-       TODO: check
+       NOT-FOR-US: Linksys
 CVE-2013-10057 (A stack-based buffer overflow vulnerability exists 
inSynactisPDF In-Th ...)
        TODO: check
 CVE-2013-10055 (An unauthenticated arbitrary file upload vulnerability exists 
in Haval ...)
@@ -67,17 +67,17 @@ CVE-2013-10053 (A remote command execution vulnerability 
exists in ZPanel versio
 CVE-2013-10051 (A remote PHP code execution vulnerability exists in InstantCMS 
version ...)
        TODO: check
 CVE-2013-10050 (An OS command injection vulnerability exists in multiple 
D-Link router ...)
-       TODO: check
+       NOT-FOR-US: D-Link
 CVE-2013-10049 (An OS command injection vulnerability exists in multiple 
Raidsonic NAS ...)
        TODO: check
 CVE-2013-10048 (An OS command injection vulnerability exists in various legacy 
D-Link  ...)
-       TODO: check
+       NOT-FOR-US: D-Link
 CVE-2013-10047 (An unrestricted file upload vulnerability exists in MiniWeb 
HTTP Serve ...)
        TODO: check
 CVE-2013-10046 (A local privilege escalation vulnerability exists in Agnitum 
Outpost I ...)
        TODO: check
 CVE-2013-10044 (An authenticated SQL injection vulnerability exists in OpenEMR 
\u2264  ...)
-       TODO: check
+       NOT-FOR-US: OpenEMR
 CVE-2012-10022 (Kloxo versions 6.1.12 and earlier contain two setuid root 
binaries\u20 ...)
        TODO: check
 CVE-2025-8480 (Alpine iLX-507 Command Injection Remote Code Execution. This 
vulnerabi ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0f27d8d837ddede05e0b0c8d8b1adc9cbc9e345d

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0f27d8d837ddede05e0b0c8d8b1adc9cbc9e345d
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update

Reply via email to