Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
6e3dd074 by Moritz Muehlenhoff at 2026-02-22T22:52:33+01:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,67 +1,67 @@
CVE-2026-2954 (A vulnerability was found in Dromara UJCMS 10.0.2. Impacted is
the fun ...)
- TODO: check
+ NOT-FOR-US: Dromara UJCMS
CVE-2026-2953 (A vulnerability has been found in Dromara UJCMS 101.2. This
issue affe ...)
- TODO: check
+ NOT-FOR-US: Dromara UJCMS
CVE-2026-2952 (A flaw has been found in Vaelsys 4.1.0. This vulnerability
affects unk ...)
- TODO: check
+ NOT-FOR-US: Vaelsys
CVE-2026-2947 (A vulnerability was detected in rymcu forest up to 0.0.5. This
affects ...)
- TODO: check
+ NOT-FOR-US: rymcu forest
CVE-2026-2946 (A security vulnerability has been detected in rymcu forest up
to 0.0.5 ...)
- TODO: check
+ NOT-FOR-US: rymcu forest
CVE-2026-2945 (A weakness has been identified in JeecgBoot 3.9.0. Affected by
this vu ...)
- TODO: check
+ NOT-FOR-US: JeecgBoot
CVE-2026-2944 (A security flaw has been discovered in Tosei Online Store
Management S ...)
- TODO: check
+ NOT-FOR-US: Tosei Online Store Management System
CVE-2026-2943 (A vulnerability was identified in SapneshNaik Student
Management Syste ...)
- TODO: check
+ NOT-FOR-US: SapneshNaik Student Management System
CVE-2026-2940 (A vulnerability was determined in Zaher1307 tiny_web_server up
to 8d77 ...)
- TODO: check
+ NOT-FOR-US: tiny_web_server
CVE-2026-2939 (A vulnerability was found in itsourcecode Student Management
System 1. ...)
NOT-FOR-US: itsourcecode System
CVE-2026-2938 (A vulnerability has been found in SourceCodester Student Result
Manage ...)
NOT-FOR-US: SourceCodester
CVE-2026-2935 (A weakness has been identified in UTT HiPER 810G up to
1.7.7-171114. T ...)
- TODO: check
+ NOT-FOR-US: UTT
CVE-2026-2934 (A security vulnerability has been detected in YiFang CMS up to
2.0.5. ...)
- TODO: check
+ NOT-FOR-US: YiFang CMS
CVE-2026-2385 (The The Plus Addons for Elementor \u2013 Addons for Elementor,
Page Te ...)
NOT-FOR-US: WordPress plugin
CVE-2019-25462 (Web Ofisi Rent a Car v3 contains an SQL injection
vulnerability that a ...)
- TODO: check
+ NOT-FOR-US: Web Ofisi
CVE-2019-25461 (Web Ofisi Platinum E-Ticaret v5 contains an SQL injection
vulnerabilit ...)
- TODO: check
+ NOT-FOR-US: Web Ofisi
CVE-2019-25460 (Web Ofisi Platinum E-Ticaret v5 contains an SQL injection
vulnerabilit ...)
- TODO: check
+ NOT-FOR-US: Web Ofisi
CVE-2019-25459 (Web Ofisi Emlak V2 contains multiple SQL injection
vulnerabilities in ...)
- TODO: check
+ NOT-FOR-US: Web Ofisi
CVE-2019-25458 (Web Ofisi Firma Rehberi v1 contains an SQL injection
vulnerability tha ...)
- TODO: check
+ NOT-FOR-US: Web Ofisi
CVE-2019-25457 (Web Ofisi Firma v13 contains an SQL injection vulnerability
that allow ...)
- TODO: check
+ NOT-FOR-US: Web Ofisi
CVE-2019-25456 (Web Ofisi Emlak v2 contains an SQL injection vulnerability
that allows ...)
- TODO: check
+ NOT-FOR-US: Web Ofisi
CVE-2019-25455 (Web Ofisi E-Ticaret v3 contains an SQL injection vulnerability
that al ...)
- TODO: check
+ NOT-FOR-US: Web Ofisi
CVE-2019-25452 (Dolibarr ERP/CRM 10.0.1 contains an SQL injection
vulnerability in the ...)
- TODO: check
+ - dolibarr <removed>
CVE-2019-25450 (Dolibarr ERP/CRM 10.0.1 contains multiple SQL injection
vulnerabilitie ...)
- TODO: check
+ - dolibarr <removed>
CVE-2019-25446 (DIGIT CENTRIS ERP contains an SQL injection vulnerability that
allows ...)
- TODO: check
+ NOT-FOR-US: DIGIT CENTRIS ERP
CVE-2019-25443 (Inventory Webapp contains an SQL injection vulnerability that
allows u ...)
- TODO: check
+ NOT-FOR-US: Inventory Webapp
CVE-2019-25442 (Web Wiz Forums 12.01 contains an SQL injection vulnerability
that allo ...)
- TODO: check
+ NOT-FOR-US: Web Wiz Forums
CVE-2019-25440 (WebIncorp ERP contains an SQL injection vulnerability that
allows unau ...)
- TODO: check
+ NOT-FOR-US: WebIncorp ERP
CVE-2019-25439 (NoviSmart CMS contains an SQL injection vulnerability that
allows remo ...)
- TODO: check
+ NOT-FOR-US: NoviSmart CMS
CVE-2019-25433 (XOOPS CMS 2.5.9 contains an SQL injection vulnerability that
allows un ...)
- TODO: check
+ NOT-FOR-US: XOOPS CMS
CVE-2019-25391 (Ashop Shopping Cart Software contains a time-based blind SQL
injection ...)
- TODO: check
+ NOT-FOR-US: Ashop Shopping Cart Software
CVE-2019-25366 (microASP Portal+ CMS contains an SQL injection vulnerability
that allo ...)
- TODO: check
+ NOT-FOR-US: microASP Portal+ CMS
CVE-2026-2597 [Disallow requesting strings with negative lengths]
- libcrypt-sysrandom-xs-perl 0.011-1
NOTE: Fixed by:
https://github.com/Leont/crypt-sysrandom-xs/commit/a402e0381a2150799a9ad919f0942f62d0282d2d
(v0.010)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6e3dd074063d6eaefe627c2f2e944725d5e3e84d
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6e3dd074063d6eaefe627c2f2e944725d5e3e84d
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
