From f49d15a74ab75dda94aecb9a66854dc31e126e3c Mon Sep 17 00:00:00 2001 From: Salvatore Bonaccorso Date: Mon, 6 Dec 2021 21:33:30 +0100 Subject: Process NFUs --- data/CVE/list | 44 ++++++++++++++++++++++---------------------- 1 file changed, 22 insertions(+), 22 deletions(-) diff --git a/data/CVE/list b/data/CVE/list index 86d8210374..ecbd6d04ca 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -2118,7 +2118,7 @@ CVE-2021-43938 CVE-2021-43937 RESERVED CVE-2021-43936 (The software allows the attacker to upload or transfer files of danger ...) - TODO: check + NOT-FOR-US: Distributed Data Systems CVE-2021-43935 RESERVED CVE-2021-43934 @@ -2128,7 +2128,7 @@ CVE-2021-43933 CVE-2021-43932 RESERVED CVE-2021-43931 (The authentication algorithm of the WebHMI portal is sound, but the im ...) - TODO: check + NOT-FOR-US: Distributed Data Systems CVE-2021-43930 RESERVED CVE-2021-43929 @@ -2390,7 +2390,7 @@ CVE-2021-43802 CVE-2021-43801 RESERVED CVE-2021-43800 (Wiki.js is a wiki app built on Node.js. Prior to version 2.5.254, dire ...) - TODO: check + NOT-FOR-US: Wiki.js CVE-2021-43799 RESERVED CVE-2021-43798 @@ -2431,7 +2431,7 @@ CVE-2021-43783 (@backstage/plugin-scaffolder-backend is the backend for the defa CVE-2021-43782 RESERVED CVE-2021-43781 (Invenio-Drafts-Resources is a submission/deposit module for Invenio, a ...) - TODO: check + NOT-FOR-US: Invenio-Drafts-Resources CVE-2021-43780 (Redash is a package for data visualization and sharing. In versions 10 ...) NOT-FOR-US: Redash CVE-2021-43779 @@ -4050,11 +4050,11 @@ CVE-2021-43473 CVE-2021-43472 RESERVED CVE-2021-43471 (In Canon LBP223 printers, the System Manager Mode login does not requi ...) - TODO: check + NOT-FOR-US: Canon CVE-2021-43470 RESERVED CVE-2021-43469 (VINGA WR-N300U 77.102.1.4853 is affected by a command execution vulner ...) - TODO: check + NOT-FOR-US: VINGA CVE-2021-43468 RESERVED CVE-2021-43467 @@ -23675,7 +23675,7 @@ CVE-2021-36200 CVE-2021-36199 RESERVED CVE-2021-36198 (Successful exploitation of this vulnerability could allow an unauthori ...) - TODO: check + NOT-FOR-US: Sensormatic Electronics, LLC CVE-2021-36197 RESERVED CVE-2021-36196 @@ -26015,13 +26015,13 @@ CVE-2021-35247 CVE-2021-35246 RESERVED CVE-2021-35245 (When a user has admin rights in Serv-U Console, the user can move, cre ...) - TODO: check + NOT-FOR-US: SolarWinds CVE-2021-35244 RESERVED CVE-2021-35243 RESERVED CVE-2021-35242 (Serv-U server responds with valid CSRFToken when the request contains ...) - TODO: check + NOT-FOR-US: SolarWinds CVE-2021-35241 RESERVED CVE-2021-35240 (A security researcher stored XSS via a Help Server setting. This affec ...) @@ -51763,7 +51763,7 @@ CVE-2021-25043 CVE-2021-25042 RESERVED CVE-2021-25041 (The Photo Gallery by 10Web WordPress plugin before 1.5.68 is vulnerabl ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-25040 RESERVED CVE-2021-25039 @@ -51959,7 +51959,7 @@ CVE-2021-24945 CVE-2021-24944 RESERVED CVE-2021-24943 (The Registrations for the Events Calendar WordPress plugin before 2.7. ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-24942 RESERVED CVE-2021-24941 @@ -51967,15 +51967,15 @@ CVE-2021-24941 CVE-2021-24940 RESERVED CVE-2021-24939 (The LoginWP (Formerly Peter's Login Redirect) WordPress plugin before ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-24938 (The WOOCS WordPress plugin before 1.3.7.1 does not sanitise and escape ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-24937 RESERVED CVE-2021-24936 RESERVED CVE-2021-24935 (The WP Google Fonts WordPress plugin before 3.1.5 does not escape the ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-24934 RESERVED CVE-2021-24933 @@ -51983,9 +51983,9 @@ CVE-2021-24933 CVE-2021-24932 RESERVED CVE-2021-24931 (The Secure Copy Content Protection and Content Locking WordPress plugi ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-24930 (The WordPress Online Booking and Scheduling Plugin WordPress plugin be ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-24929 RESERVED CVE-2021-24928 @@ -51997,7 +51997,7 @@ CVE-2021-24926 CVE-2021-24925 RESERVED CVE-2021-24924 (The Email Log WordPress plugin before 2.4.8 does not escape the d para ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-24923 RESERVED CVE-2021-24922 @@ -52011,13 +52011,13 @@ CVE-2021-24919 CVE-2021-24918 (The Smash Balloon Social Post Feed WordPress plugin before 4.0.1 did n ...) NOT-FOR-US: WordPress plugin CVE-2021-24917 (The WPS Hide Login WordPress plugin before 1.9.1 has a bug which allow ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-24916 RESERVED CVE-2021-24915 (The Contest Gallery WordPress plugin before 13.1.0.6 does not have cap ...) NOT-FOR-US: WordPress plugin CVE-2021-24914 (The Tawk.To Live Chat WordPress plugin before 0.6.0 does not have capa ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-24913 RESERVED CVE-2021-24912 @@ -52327,7 +52327,7 @@ CVE-2021-24761 CVE-2021-24760 (The Gutenberg PDF Viewer Block WordPress plugin before 1.0.1 does not ...) NOT-FOR-US: WordPress plugin CVE-2021-24759 (The PDF.js Viewer WordPress plugin before 2.0.2 does not escape some o ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-24758 (The Email Log WordPress plugin before 2.4.7 does not properly validate ...) NOT-FOR-US: WordPress plugin CVE-2021-24757 (The Stylish Price List WordPress plugin before 6.9.0 does not perform ...) @@ -52409,7 +52409,7 @@ CVE-2021-24720 (The GeoDirectory Business Directory WordPress plugin before 2.1. CVE-2021-24719 (The Enfold Enfold WordPress theme before 4.8.4 was vulnerable to Refle ...) NOT-FOR-US: WordPress theme CVE-2021-24718 (The Contact Form, Survey & Popup Form Plugin for WordPress plugin ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-24717 (The AutomatorWP WordPress plugin before 1.7.6 does not perform capabil ...) NOT-FOR-US: WordPress plugin CVE-2021-24716 (The Modern Events Calendar Lite WordPress plugin before 5.22.3 does no ...) @@ -52417,7 +52417,7 @@ CVE-2021-24716 (The Modern Events Calendar Lite WordPress plugin before 5.22.3 d CVE-2021-24715 (The WP Sitemap Page WordPress plugin before 1.7.0 does not properly sa ...) NOT-FOR-US: WordPress plugin CVE-2021-24714 (The Import any XML or CSV File to WordPress plugin before 3.6.3 does n ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2021-24713 (The Video Lessons Manager WordPress plugin before 1.7.2 and Video Less ...) NOT-FOR-US: WordPress plugin CVE-2021-24712 (The Appointment Hour Booking WordPress plugin before 1.3.17 does not p ...) -- cgit v1.2.3