Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
6515f438 by security tracker role at 2025-08-05T08:12:59+00:00
automatic NOT-FOR-US entries update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -45,23 +45,23 @@ CVE-2025-8526 (A vulnerability was found in Exrick xboot up
to 3.3.4. It has bee
CVE-2025-8525 (A vulnerability was found in Exrick xboot up to 3.3.4. It has
been cla ...)
TODO: check
CVE-2025-8315 (The WP Easy Contact plugin for WordPress is vulnerable to
Stored Cross ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-8313 (The Campus Directory plugin for WordPress is vulnerable to
Stored Cros ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-8295 (The Employee Directory plugin for WordPress is vulnerable to
Stored Cr ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-8294 (The Download Counter plugin for WordPress is vulnerable to
Stored Cros ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-7844 (Exporting a TPM based RSA key larger than 2048 bits from the
TPM could ...)
TODO: check
CVE-2025-7050 (The Use-your-Drive | Google Drive plugin for WordPress plugin
for Word ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-6207 (The WP Import Export Lite plugin for WordPress is vulnerable to
arbitr ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-5061 (The WP Import Export Lite plugin for WordPress is vulnerable to
arbitr ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2025-54982 (An improper verification of cryptographic signature in
Zscaler's SAML ...)
- TODO: check
+ NOT-FOR-US: Zscaler
CVE-2025-54980
REJECTED
CVE-2025-54979
@@ -111,7 +111,7 @@ CVE-2025-54119 (ADOdb is a PHP database class library that
provides abstractions
CVE-2025-53544 (Trilium Notes is an open-source, cross-platform hierarchical
note taki ...)
TODO: check
CVE-2025-53417 (DIAView (v4.2.0 and prior) - Directory Traversal Information
Disclosur ...)
- TODO: check
+ NOT-FOR-US: Delta Electronics
CVE-2025-52892 (EspoCRM is a web application with a frontend designed as a
single-page ...)
TODO: check
CVE-2025-51726 (CyberGhostVPNSetup.exe (Windows installer) is signed using the
weak cr ...)
@@ -123,9 +123,9 @@ CVE-2025-50754 (Unisite CMS version 5.0 contains a stored
Cross-Site Scripting (
CVE-2025-50341 (A Boolean-based SQL injection vulnerability was discovered in
Axelor 5 ...)
TODO: check
CVE-2025-4604 (The vulnerable code can bypass the Captcha check in Liferay
Portal 7.4 ...)
- TODO: check
+ NOT-FOR-US: Liferay
CVE-2025-4599 (The fragment preview functionality in Liferay Portal 7.4.3.61
through ...)
- TODO: check
+ NOT-FOR-US: Liferay
CVE-2025-46093 (LiquidFiles before 4.1.2 supports FTP SITE CHMOD for mode 6777
(setuid ...)
TODO: check
CVE-2025-27212 (An Improper Input Validation in certain UniFi Access devices
could all ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6515f4388f6a6ca77d33a528338cf3f92b70661a
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6515f4388f6a6ca77d33a528338cf3f92b70661a
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
