From c74154ef7f42242bfb6594b66d778c175884b7e2 Mon Sep 17 00:00:00 2001 From: Salvatore Bonaccorso Date: Mon, 21 Feb 2022 21:18:59 +0100 Subject: Process several NFUs --- data/CVE/2021.list | 24 ++++++++++++------------ 1 file changed, 12 insertions(+), 12 deletions(-) (limited to 'data/CVE/2021.list') diff --git a/data/CVE/2021.list b/data/CVE/2021.list index 24d7abb1e9..68c959dda6 100644 --- a/data/CVE/2021.list +++ b/data/CVE/2021.list @@ -681,7 +681,7 @@ CVE-2021-4209 CVE-2021-46403 RESERVED CVE-2021-4208 (The ExportFeed WordPress plugin through 2.0.1.0 does not sanitise and ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-46402 RESERVED CVE-2021-46401 @@ -985,7 +985,7 @@ CVE-2021-4205 CVE-2021-31567 (Authenticated (admin+) Arbitrary File Download vulnerability discovere ...) NOT-FOR-US: WordPress plugin CVE-2021-26256 (Unauthenticated Stored Cross-Site Scripting (XSS) vulnerability discov ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-23227 (Cross-Site Request Forgery (CSRF) vulnerability discovered in PHP Ever ...) NOT-FOR-US: WordPress plugin CVE-2021-23209 @@ -53647,11 +53647,11 @@ CVE-2021-25103 (The Translate WordPress with GTranslate WordPress plugin before CVE-2021-25102 RESERVED CVE-2021-25101 (The Anti-Malware Security and Brute-Force Firewall WordPress plugin be ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-25100 (The GiveWP WordPress plugin before 2.17.3 does not escape the s parame ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-25099 (The GiveWP WordPress plugin before 2.17.3 does not sanitise and escape ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-25098 RESERVED CVE-2021-25097 (The LabTools WordPress plugin through 1.0 does not have proper authori ...) @@ -53685,7 +53685,7 @@ CVE-2021-25084 (The Advanced Cron Manager WordPress plugin before 2.4.2 and Adva CVE-2021-25083 (The Registrations for the Events Calendar WordPress plugin before 2.7. ...) NOT-FOR-US: WordPress plugin CVE-2021-25082 (The Popup Builder WordPress plugin before 4.0.7 does not validate and ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-25081 RESERVED CVE-2021-25080 (The Contact Form Entries WordPress plugin before 1.1.7 does not valida ...) @@ -53699,7 +53699,7 @@ CVE-2021-25077 (The Store Toolkit for WooCommerce WordPress plugin before 2.3.2 CVE-2021-25076 (The WP User Frontend WordPress plugin before 3.5.26 does not validate ...) NOT-FOR-US: WordPress plugin CVE-2021-25075 (The Duplicate Page or Post WordPress plugin before 1.5.1 does not have ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-25074 (The WebP Converter for Media WordPress plugin before 4.0.3 contains a ...) NOT-FOR-US: WordPress plugin CVE-2021-25073 (The WP125 WordPress plugin before 1.5.5 does not have CSRF checks in v ...) @@ -53711,7 +53711,7 @@ CVE-2021-25071 CVE-2021-25070 RESERVED CVE-2021-25069 (The Download Manager WordPress plugin before 3.2.34 does not sanitise ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-25068 RESERVED CVE-2021-25067 (The Landing Page Builder WordPress plugin before 1.4.9.6 was affected ...) @@ -53729,13 +53729,13 @@ CVE-2021-25062 (The Orders Tracking for WooCommerce WordPress plugin before 1.1. CVE-2021-25061 (The WP Booking System WordPress plugin before 2.0.15 was affected by a ...) NOT-FOR-US: WordPress plugin CVE-2021-25060 (The Five Star Business Profile and Schema WordPress plugin before 2.1. ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-25059 RESERVED CVE-2021-25058 (The Buffer Button WordPress plugin through 1.0 was vulnerable to Authe ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-25057 (The Translation Exchange WordPress plugin through 1.0.14 was vulnerabl ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-25056 RESERVED CVE-2021-25055 (The FeedWordPress plugin before 2022.0123 is affected by a Reflected C ...) @@ -54007,7 +54007,7 @@ CVE-2021-24923 (The Newsletter, SMTP, Email marketing and Subscribe forms by Sen CVE-2021-24922 (The Pixel Cat WordPress plugin before 2.6.2 does not have CSRF check w ...) NOT-FOR-US: WordPress plugin CVE-2021-24921 (The Advanced Database Cleaner WordPress plugin before 3.0.4 does not s ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-24920 RESERVED CVE-2021-24919 (The Wicked Folders WordPress plugin before 2.8.10 does not sanitise an ...) -- cgit v1.2.3