Process some NFUs

author: Salvatore Bonaccorso <carnil@debian.org> 2022-01-24 21:34:25 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2022-01-24 21:34:25 +0100
commit: 9c3e48aed7f65b98b00150cfb03c86afbd59a935 (patch)
tree: 7d4c2dd766d06e62f8b03c0d3255f75b6d545010
parent: f6ec7f6c03bed10a471f7ac63c64ec345d2687c9 (diff)
1 files changed, 32 insertions, 32 deletions
diff --git a/data/CVE/list.2021 b/data/CVE/list.2021
index 314f6dc75d..43ab94ec8b 100644
--- a/data/CVE/list.2021
+++ b/data/CVE/list.2021
@@ -52951,27 +52951,27 @@ CVE-2021-25085
 CVE-2021-25084
 	RESERVED
 CVE-2021-25083 (The Registrations for the Events Calendar WordPress plugin before 2.7. ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-25082
 	RESERVED
 CVE-2021-25081
 	RESERVED
 CVE-2021-25080 (The Contact Form Entries WordPress plugin before 1.1.7 does not valida ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-25079 (The Contact Form Entries WordPress plugin before 1.2.4 does not saniti ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-25078 (The Affiliates Manager WordPress plugin before 2.9.0 does not validate ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-25077
 	RESERVED
 CVE-2021-25076 (The WP User Frontend WordPress plugin before 3.5.26 does not validate  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-25075
 	RESERVED
 CVE-2021-25074 (The WebP Converter for Media WordPress plugin before 4.0.3 contains a  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-25073 (The WP125 WordPress plugin before 1.5.5 does not have CSRF checks in v ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-25072
 	RESERVED
 CVE-2021-25071
@@ -52993,7 +52993,7 @@ CVE-2021-25064
 CVE-2021-25063
 	RESERVED
 CVE-2021-25062 (The Orders Tracking for WooCommerce WordPress plugin before 1.1.10 doe ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-25061 (The WP Booking System WordPress plugin before 2.0.15 was affected by a ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2021-25060
@@ -53019,7 +53019,7 @@ CVE-2021-25051 (The Modal Window WordPress plugin before 5.2.2 within the wow-co
 CVE-2021-25050
 	RESERVED
 CVE-2021-25049 (The Mobile Events Manager WordPress plugin before 1.4.4 does not sanit ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-25048
 	RESERVED
 CVE-2021-25047 (The 10Web Social Photo Feed WordPress plugin before 1.4.29 was affecte ...)
@@ -53027,7 +53027,7 @@ CVE-2021-25047 (The 10Web Social Photo Feed WordPress plugin before 1.4.29 was a
 CVE-2021-25046 (The Modern Events Calendar Lite WordPress plugin before 6.2.0 alloed a ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2021-25045 (The Asgaros Forum WordPress plugin before 1.15.15 does not validate or ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-25044
 	RESERVED
 CVE-2021-25043 (The WOOCS WordPress plugin before 1.3.7.3 does not sanitise and escape ...)
@@ -53047,7 +53047,7 @@ CVE-2021-25037 (The All in One SEO WordPress plugin before 4.1.5.3 is affected b
 CVE-2021-25036 (The All in One SEO WordPress plugin before 4.1.5.3 is affected by a Pr ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2021-25035 (The Backup and Staging by WP Time Capsule WordPress plugin before 1.22 ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-25034
 	RESERVED
 CVE-2021-25033
@@ -53055,13 +53055,13 @@ CVE-2021-25033
 CVE-2021-25032 (The PublishPress Capabilities WordPress plugin before 2.3.1, PublishPr ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2021-25031 (The Image Hover Effects Ultimate (Image Gallery, Effects, Lightbox, Co ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-25030 (The Events Made Easy WordPress plugin before 2.2.36 does not sanitise  ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2021-25029
 	RESERVED
 CVE-2021-25028 (The Event Tickets WordPress plugin before 5.2.2 does not validate the  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-25027 (The PowerPack Addons for Elementor WordPress plugin before 2.6.2 does  ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2021-25026
@@ -53083,15 +53083,15 @@ CVE-2021-25019
 CVE-2021-25018
 	RESERVED
 CVE-2021-25017 (The Tutor LMS WordPress plugin before 1.9.12 does not escape the searc ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-25016 (The Chaty WordPress plugin before 2.8.3 and Chaty Pro WordPress plugin ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2021-25015 (The myCred WordPress plugin before 2.4 does not sanitise and escape th ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-25014
 	RESERVED
 CVE-2021-25013 (The Qubely WordPress plugin before 1.7.8 does not have authorisation a ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-25012
 	RESERVED
 CVE-2021-25011
@@ -53101,7 +53101,7 @@ CVE-2021-25010
 CVE-2021-25009
 	RESERVED
 CVE-2021-25008 (The Code Snippets WordPress plugin before 2.14.3 does not escape the s ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-25007
 	RESERVED
 CVE-2021-25006
@@ -53139,7 +53139,7 @@ CVE-2021-24991 (The WooCommerce PDF Invoices &amp; Packing Slips WordPress plugi
 CVE-2021-24990
 	RESERVED
 CVE-2021-24989 (The Accept Donations with PayPal WordPress plugin before 1.3.4 does no ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-24988 (The WP RSS Aggregator WordPress plugin before 4.19.3 does not sanitise ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2021-24987
@@ -53147,7 +53147,7 @@ CVE-2021-24987
 CVE-2021-24986
 	RESERVED
 CVE-2021-24985 (The Easy Forms for Mailchimp WordPress plugin before 6.8.6 does not sa ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-24984 (The WPFront User Role Editor WordPress plugin before 3.2.1.11184 does  ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2021-24983
@@ -53165,11 +53165,11 @@ CVE-2021-24978
 CVE-2021-24977
 	RESERVED
 CVE-2021-24976 (The Smart SEO Tool WordPress plugin before 3.0.6 does not sanitise and ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-24975
 	RESERVED
 CVE-2021-24974 (The Product Feed PRO for WooCommerce WordPress plugin before 11.0.7 do ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-24973 (The Site Reviews WordPress plugin before 5.17.3 does not sanitise and  ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2021-24972 (The Pixel Cat WordPress plugin before 2.6.3 does not escape some of it ...)
@@ -53181,13 +53181,13 @@ CVE-2021-24970 (The All-in-One Video Gallery WordPress plugin before 2.5.0 does
 CVE-2021-24969 (The WordPress Download Manager WordPress plugin before 3.2.22 does not ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2021-24968 (The Ultimate FAQ WordPress plugin before 2.1.2 does not have capabilit ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-24967 (The Contact Form &amp; Lead Form Elementor Builder WordPress plugin be ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2021-24966
 	RESERVED
 CVE-2021-24965 (The Five Star Restaurant Reservations WordPress plugin before 2.4.8 do ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-24964 (The LiteSpeed Cache WordPress plugin before 4.4.4 does not properly ve ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2021-24963 (The LiteSpeed Cache WordPress plugin before 4.4.4 does not escape the  ...)
@@ -53245,7 +53245,7 @@ CVE-2021-24938 (The WOOCS WordPress plugin before 1.3.7.1 does not sanitise and
 CVE-2021-24937
 	RESERVED
 CVE-2021-24936 (The WP Extra File Types WordPress plugin before 0.5.1 does not have CS ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-24935 (The WP Google Fonts WordPress plugin before 3.1.5 does not escape the  ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2021-24934
@@ -53271,7 +53271,7 @@ CVE-2021-24925 (The Modern Events Calendar Lite WordPress plugin before 6.1.5 do
 CVE-2021-24924 (The Email Log WordPress plugin before 2.4.8 does not escape the d para ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2021-24923 (The Newsletter, SMTP, Email marketing and Subscribe forms by Sendinblu ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-24922 (The Pixel Cat WordPress plugin before 2.6.2 does not have CSRF check w ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2021-24921
@@ -53305,7 +53305,7 @@ CVE-2021-24908 (The Check &amp; Log Email WordPress plugin before 1.0.4 does not
 CVE-2021-24907 (The Contact Form, Drag and Drop Form Builder for WordPress plugin befo ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2021-24906 (The Protect WP Admin WordPress plugin before 3.6.2 does not check for  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-24905
 	RESERVED
 CVE-2021-24904
@@ -53387,7 +53387,7 @@ CVE-2021-24867
 CVE-2021-24866 (The WP Data Access WordPress plugin before 5.0.0 does not properly san ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2021-24865 (The Advanced Custom Fields: Extended WordPress plugin before 0.8.8.7 d ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-24864
 	RESERVED
 CVE-2021-24863 (The WP Block and Stop Bad Bots Crawlers and Spiders and Anti Spam Prot ...)
@@ -53401,7 +53401,7 @@ CVE-2021-24860 (The BSK PDF Manager WordPress plugin before 3.1.2 does not valid
 CVE-2021-24859 (The User Meta Shortcodes WordPress plugin through 0.5 registers a shor ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2021-24858 (The Cookie Notification Plugin for WordPress plugin before 1.0.9 does  ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-24857 (The ToTop Link WordPress plugin through 1.7.1 passes base64 encoded us ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2021-24856 (The Shared Files WordPress plugin before 1.6.61 does not sanitise and  ...)
@@ -53651,7 +53651,7 @@ CVE-2021-24735 (The Compact WP Audio Player WordPress plugin before 1.9.7 does n
 CVE-2021-24734 (The Compact WP Audio Player WordPress plugin before 1.9.7 does not esc ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2021-24733 (The WP Post Page Clone WordPress plugin before 1.2 allows users with a ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-24732 (The PDF Flipbook, 3D Flipbook WordPress &#8211; DearFlip WordPress plu ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2021-24731 (The Registration Forms &#8211; User profile, Content Restriction, Spam ...)
@@ -53725,11 +53725,11 @@ CVE-2021-24698 (The Simple Download Monitor WordPress plugin before 3.9.6 allows
 CVE-2021-24697 (The Simple Download Monitor WordPress plugin before 3.9.5 does not esc ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2021-24696 (The Simple Download Monitor WordPress plugin before 3.9.9 does not enf ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-24695 (The Simple Download Monitor WordPress plugin before 3.9.6 saves logs i ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2021-24694 (The Simple Download Monitor WordPress plugin before 3.9.11 could allow ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-24693 (The Simple Download Monitor WordPress plugin before 3.9.5 does not esc ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2021-24692
@@ -54271,7 +54271,7 @@ CVE-2021-24425 (The Floating Notification Bar, Sticky Menu on Scroll, and Sticky
 CVE-2021-24424 (The WP Reset &#8211; Most Advanced WordPress Reset Tool WordPress plug ...)
 	NOT-FOR-US: Wordpress plugin
 CVE-2021-24423 (The UpdraftPlus WordPress Backup Plugin WordPress plugin before 1.6.59 ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2021-24422
 	RESERVED
 CVE-2021-24421 (The WP JobSearch WordPress plugin before 1.7.4 did not sanitise or esc ...)
author	Salvatore Bonaccorso <carnil@debian.org>	2022-01-24 21:34:25 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2022-01-24 21:34:25 +0100
commit	9c3e48aed7f65b98b00150cfb03c86afbd59a935 (patch)
tree	7d4c2dd766d06e62f8b03c0d3255f75b6d545010
parent	f6ec7f6c03bed10a471f7ac63c64ec345d2687c9 (diff)