From a971cfd58ae7813d8c0ac68d3a5b6a884e78fe79 Mon Sep 17 00:00:00 2001 From: Salvatore Bonaccorso Date: Mon, 1 Nov 2021 21:54:05 +0100 Subject: Process more NFUs --- data/CVE/list.2020 | 2 +- data/CVE/list.2021 | 56 +++++++++++++++++++++++++++--------------------------- 2 files changed, 29 insertions(+), 29 deletions(-) diff --git a/data/CVE/list.2020 b/data/CVE/list.2020 index 26aae98af0..68e28cd498 100644 --- a/data/CVE/list.2020 +++ b/data/CVE/list.2020 @@ -5780,7 +5780,7 @@ CVE-2020-28704 CVE-2020-28703 RESERVED CVE-2020-28702 (A SQL injection vulnerability in TopicMapper.xml of PybbsCMS v5.2.1 al ...) - TODO: check + NOT-FOR-US: PybbsCMS CVE-2020-28701 RESERVED CVE-2020-28700 diff --git a/data/CVE/list.2021 b/data/CVE/list.2021 index 3004696d89..f544c9f34d 100644 --- a/data/CVE/list.2021 +++ b/data/CVE/list.2021 @@ -41225,15 +41225,15 @@ CVE-2021-25880 CVE-2021-25879 RESERVED CVE-2021-25878 (AVideo/YouPHPTube 10.0 and prior is affected by multiple reflected Cro ...) - TODO: check + NOT-FOR-US: AVideo/YouPHPTube CVE-2021-25877 (AVideo/YouPHPTube 10.0 and prior is affected by Insecure file write. A ...) - TODO: check + NOT-FOR-US: AVideo/YouPHPTube CVE-2021-25876 (AVideo/YouPHPTube 10.0 and prior has multiple reflected Cross Script S ...) - TODO: check + NOT-FOR-US: AVideo/YouPHPTube CVE-2021-25875 (AVideo/YouPHPTube AVideo/YouPHPTube 10.0 and prior has multiple reflec ...) - TODO: check + NOT-FOR-US: AVideo/YouPHPTube CVE-2021-25874 (AVideo/YouPHPTube AVideo/YouPHPTube 10.0 and prior is affected by a SQ ...) - TODO: check + NOT-FOR-US: AVideo/YouPHPTube CVE-2021-25873 RESERVED CVE-2021-25872 @@ -43656,7 +43656,7 @@ CVE-2021-24815 CVE-2021-24814 RESERVED CVE-2021-24813 (The Events Made Easy WordPress plugin before 2.2.24 does not sanitise ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-24812 RESERVED CVE-2021-24811 @@ -43664,9 +43664,9 @@ CVE-2021-24811 CVE-2021-24810 RESERVED CVE-2021-24809 (The BP Better Messages WordPress plugin before 1.9.9.41 does not check ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-24808 (The BP Better Messages WordPress plugin before 1.9.9.41 sanitise (with ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-24807 RESERVED CVE-2021-24806 @@ -43684,7 +43684,7 @@ CVE-2021-24801 CVE-2021-24800 RESERVED CVE-2021-24799 (The Far Future Expiry Header WordPress plugin before 1.5 does not have ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-24798 RESERVED CVE-2021-24797 @@ -43694,9 +43694,9 @@ CVE-2021-24796 CVE-2021-24795 RESERVED CVE-2021-24794 (The Connections Business Directory WordPress plugin before 10.4.3 does ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-24793 (The WPeMatico RSS Feed Fetcher WordPress plugin before 2.6.12 does not ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-24792 RESERVED CVE-2021-24791 @@ -43704,7 +43704,7 @@ CVE-2021-24791 CVE-2021-24790 RESERVED CVE-2021-24789 (The Flat Preloader WordPress plugin before 1.5.5 does not escape some ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-24788 RESERVED CVE-2021-24787 @@ -43720,7 +43720,7 @@ CVE-2021-24783 CVE-2021-24782 RESERVED CVE-2021-24781 (The Image Source Control WordPress plugin before 2.3.1 allows users wi ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-24780 RESERVED CVE-2021-24779 (The WP Debugging WordPress plugin before 2.11.0 has its update_setting ...) @@ -43736,13 +43736,13 @@ CVE-2021-24775 CVE-2021-24774 (The Check & Log Email WordPress plugin before 1.0.3 does not valid ...) NOT-FOR-US: WordPress plugin CVE-2021-24773 (The WordPress Download Manager WordPress plugin before 3.2.16 does not ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-24772 RESERVED CVE-2021-24771 RESERVED CVE-2021-24770 (The Stylish Price List WordPress plugin before 6.9.1 does not perform ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-24769 (The Permalink Manager Lite WordPress plugin before 2.2.13.1 does not v ...) NOT-FOR-US: WordPress plugin CVE-2021-24768 @@ -43768,7 +43768,7 @@ CVE-2021-24759 CVE-2021-24758 RESERVED CVE-2021-24757 (The Stylish Price List WordPress plugin before 6.9.0 does not perform ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-24756 RESERVED CVE-2021-24755 @@ -43798,7 +43798,7 @@ CVE-2021-24744 (The WordPress Contact Forms by Cimatti WordPress plugin before 1 CVE-2021-24743 (The Podcast Subscribe Buttons WordPress plugin before 1.4.2 allows use ...) NOT-FOR-US: WordPress plugin CVE-2021-24742 (The Logo Slider and Showcase WordPress plugin before 1.3.37 allows Edi ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-24741 (The Support Board WordPress plugin before 3.3.4 does not escape multip ...) NOT-FOR-US: WordPress plugin CVE-2021-24740 (The Tutor LMS WordPress plugin before 1.9.9 does not escape some of it ...) @@ -43836,9 +43836,9 @@ CVE-2021-24725 (The Comment Link Remove and Other Comment Tools WordPress plugin CVE-2021-24724 (The Timetable and Event Schedule by MotoPress WordPress plugin before ...) NOT-FOR-US: WordPress plugin CVE-2021-24723 (The WP Reactions Lite WordPress plugin before 1.3.6 does not properly ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-24722 (The Restaurant Menu by MotoPress WordPress plugin through 2.4.0 does n ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-24721 RESERVED CVE-2021-24720 (The GeoDirectory Business Directory WordPress plugin before 2.1.1.3 wa ...) @@ -43848,11 +43848,11 @@ CVE-2021-24719 (The Enfold Enfold WordPress theme before 4.8.4 was vulnerable to CVE-2021-24718 RESERVED CVE-2021-24717 (The AutomatorWP WordPress plugin before 1.7.6 does not perform capabil ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-24716 (The Modern Events Calendar Lite WordPress plugin before 5.22.3 does no ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-24715 (The WP Sitemap Page WordPress plugin before 1.7.0 does not properly sa ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-24714 RESERVED CVE-2021-24713 @@ -43912,13 +43912,13 @@ CVE-2021-24687 (The Modern Events Calendar Lite WordPress plugin before 5.22.2 d CVE-2021-24686 RESERVED CVE-2021-24685 (The Flat Preloader WordPress plugin before 1.5.4 does not enforce nonc ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-24684 (The WordPress PDF Light Viewer Plugin WordPress plugin before 1.4.12 a ...) NOT-FOR-US: WordPress plugin CVE-2021-24683 (The Weather Effect WordPress plugin before 1.3.4 does not have any CSR ...) NOT-FOR-US: WordPress plugin CVE-2021-24682 (The Cool Tag Cloud WordPress plugin before 2.26 does not escape the st ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-24681 (The Duplicate Page WordPress plugin through 4.4.2 does not sanitise or ...) NOT-FOR-US: WordPress plugin CVE-2021-24680 @@ -44034,7 +44034,7 @@ CVE-2021-24626 CVE-2021-24625 RESERVED CVE-2021-24624 (The MP3 Audio Player for Music, Radio & Podcast by Sonaar WordPres ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-24623 (The WordPress Advanced Ticket System, Elite Support Helpdesk WordPress ...) NOT-FOR-US: WordPress plugin CVE-2021-24622 (The Customer Service Software & Support Ticket System WordPress pl ...) @@ -44138,11 +44138,11 @@ CVE-2021-24574 (The Simple Banner WordPress plugin before 2.10.4 does not saniti CVE-2021-24573 RESERVED CVE-2021-24572 (The Accept Donations with PayPal WordPress plugin before 1.3.1 provide ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-24571 (The HD Quiz WordPress plugin before 1.8.4 does not escape some of its ...) NOT-FOR-US: WordPress plugin CVE-2021-24570 (The Accept Donations with PayPal WordPress plugin before 1.3.1 offers ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-24569 (The Cookie Notice & Compliance for GDPR / CCPA WordPress plugin be ...) NOT-FOR-US: WordPress plugin CVE-2021-24568 (The AddToAny Share Buttons WordPress plugin before 1.7.46 does not san ...) @@ -44204,7 +44204,7 @@ CVE-2021-24541 (The Wonder PDF Embed WordPress plugin before 1.7 does not escape CVE-2021-24540 (The Wonder Video Embed WordPress plugin before 1.8 does not escape par ...) NOT-FOR-US: WordPress plugin CVE-2021-24539 (The Coming Soon, Under Construction & Maintenance Mode By Dazzler ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-24538 (The Current Book WordPress plugin through 1.0.1 does not sanitize user ...) NOT-FOR-US: WordPress plugin CVE-2021-24537 -- cgit v1.2.3