Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
88e75728 by Salvatore Bonaccorso at 2026-03-07T09:36:56+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -3,65 +3,65 @@ CVE-2026-3352 (The Easy PHP Settings plugin for WordPress is
vulnerable to PHP C
CVE-2026-3233
REJECTED
CVE-2026-30842 (Wallos is an open-source, self-hostable personal subscription
tracker. ...)
- TODO: check
+ NOT-FOR-US: Wallos
CVE-2026-30841 (Wallos is an open-source, self-hostable personal subscription
tracker. ...)
- TODO: check
+ NOT-FOR-US: Wallos
CVE-2026-30840 (Wallos is an open-source, self-hostable personal subscription
tracker. ...)
- TODO: check
+ NOT-FOR-US: Wallos
CVE-2026-30839 (Wallos is an open-source, self-hostable personal subscription
tracker. ...)
- TODO: check
+ NOT-FOR-US: Wallos
CVE-2026-30835 (Parse Server is an open source backend that can be deployed to
any inf ...)
- TODO: check
+ NOT-FOR-US: Parse Server
CVE-2026-30830 (Defuddle cleans up HTML pages. Prior to version 0.9.0, the
_findConten ...)
- TODO: check
+ NOT-FOR-US: Defuddle
CVE-2026-30829 (Checkmate is an open-source, self-hosted tool designed to
track and mo ...)
- TODO: check
+ NOT-FOR-US: Checkmate
CVE-2026-30828 (Wallos is an open-source, self-hostable personal subscription
tracker. ...)
- TODO: check
+ NOT-FOR-US: Wallos
CVE-2026-30827 (express-rate-limit is a basic rate-limiting middleware for
Express. In ...)
- TODO: check
+ NOT-FOR-US: express-rate-limit
CVE-2026-30825 (hoppscotch is an open source API development ecosystem. Prior
to versi ...)
- TODO: check
+ NOT-FOR-US: hoppscotch
CVE-2026-30824 (Flowise is a drag & drop user interface to build a customized
large la ...)
- TODO: check
+ NOT-FOR-US: Flowise
CVE-2026-30823 (Flowise is a drag & drop user interface to build a customized
large la ...)
- TODO: check
+ NOT-FOR-US: Flowise
CVE-2026-30822 (Flowise is a drag & drop user interface to build a customized
large la ...)
- TODO: check
+ NOT-FOR-US: Flowise
CVE-2026-30821 (Flowise is a drag & drop user interface to build a customized
large la ...)
- TODO: check
+ NOT-FOR-US: Flowise
CVE-2026-30820 (Flowise is a drag & drop user interface to build a customized
large la ...)
- TODO: check
+ NOT-FOR-US: Flowise
CVE-2026-30247 (WeKnora is an LLM-powered framework designed for deep document
underst ...)
- TODO: check
+ NOT-FOR-US: WeKnora
CVE-2026-30244 (Plane is an an open-source project management tool. Prior to
version 1 ...)
- TODO: check
+ NOT-FOR-US: Plane
CVE-2026-30242 (Plane is an an open-source project management tool. Prior to
version 1 ...)
- TODO: check
+ NOT-FOR-US: Plane
CVE-2026-30241 (Mercurius is a GraphQL adapter for Fastify. Prior to version
16.8.0, M ...)
- TODO: check
+ NOT-FOR-US: Mercurius
CVE-2026-30238 (Group-Office is an enterprise customer relationship management
and gro ...)
- TODO: check
+ NOT-FOR-US: Group-Office
CVE-2026-30237 (Group-Office is an enterprise customer relationship management
and gro ...)
- TODO: check
+ NOT-FOR-US: Group-Office
CVE-2026-30233 (OliveTin gives access to predefined shell commands from a web
interfac ...)
- TODO: check
+ NOT-FOR-US: OliveTin
CVE-2026-30231 (Flare is a Next.js-based, self-hostable file sharing platform
that int ...)
NOT-FOR-US: Next.js
CVE-2026-30230 (Flare is a Next.js-based, self-hostable file sharing platform
that int ...)
NOT-FOR-US: Next.js
CVE-2026-30229 (Parse Server is an open source backend that can be deployed to
any inf ...)
- TODO: check
+ NOT-FOR-US: Parse Server
CVE-2026-30228 (Parse Server is an open source backend that can be deployed to
any inf ...)
- TODO: check
+ NOT-FOR-US: Parse Server
CVE-2026-30227 (MimeKit is a C# library which may be used for the creation and
parsing ...)
- TODO: check
+ NOT-FOR-US: MimeKit
CVE-2026-30225 (OliveTin gives access to predefined shell commands from a web
interfac ...)
- TODO: check
+ NOT-FOR-US: OliveTin
CVE-2026-30224 (OliveTin gives access to predefined shell commands from a web
interfac ...)
- TODO: check
+ NOT-FOR-US: OliveTin
CVE-2026-30223 (OliveTin gives access to predefined shell commands from a web
interfac ...)
- TODO: check
+ NOT-FOR-US: OliveTin
CVE-2026-2722 (The Stock Ticker plugin for WordPress is vulnerable to Stored
Cross-Si ...)
NOT-FOR-US: WordPress plugin
CVE-2026-2721 (The MailArchiver plugin for WordPress is vulnerable to Stored
Cross-Si ...)
@@ -83,17 +83,17 @@ CVE-2026-2371 (The Greenshift \u2013 animation and page
builder blocks plugin fo
CVE-2026-2020 (The JS Archive List plugin for WordPress is vulnerable to PHP
Object I ...)
NOT-FOR-US: WordPress plugin
CVE-2026-29795 (stellar-xdr is a library and CLI containing types and
functionality fo ...)
- TODO: check
+ NOT-FOR-US: stellar-xdr
CVE-2026-29791 (Agentgateway is an open source data plane for agentic AI
connectivity ...)
- TODO: check
+ NOT-FOR-US: Agentgateway
CVE-2026-29790 (dbt-common is the shared common utilities for dbt-core and
adapter imp ...)
TODO: check
CVE-2026-29789 (Vito is a self-hosted web application that helps manage
servers and de ...)
- TODO: check
+ NOT-FOR-US: Vito
CVE-2026-29788 (TSPortal is the WikiTide Foundation\u2019s in-house platform
used by t ...)
- TODO: check
+ NOT-FOR-US: TSPortal
CVE-2026-29182 (Parse Server is an open source backend that can be deployed to
any inf ...)
- TODO: check
+ NOT-FOR-US: Parse Server
CVE-2026-27797 (Homarr is an open-source dashboard. Prior to version 1.54.0,
an unauth ...)
TODO: check
CVE-2026-27796 (Homarr is an open-source dashboard. Prior to version 1.54.0,
the integ ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/88e757289069325e5ed4469ce4ab38359f4f05d5
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/88e757289069325e5ed4469ce4ab38359f4f05d5
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
