NIXPKGS-2026-0027 published on 17 Jan 2026 CVE-2026-23535 updated 5 days, 4 hours ago by @LeSuisse Activity log Created automatic suggestion 5 days, 18 hours ago @LeSuisse removed 3 packages wlcs wlclock imewlconverter 5 days, 4 hours ago @LeSuisse accepted as draft 5 days, 4 hours ago @LeSuisse published on GitHub 5 days, 4 hours ago wlc Path traversal: Unsanitized API slugs in download command wlc is a Weblate command-line client using Weblate's REST API. Prior to 1.17.2, the multi-translation download could write to an arbitrary location when instructed by a crafted server. This vulnerability is fixed in 1.17.2. Affected products wlc ==< 1.17.2 Matching in nixpkgs pkgs.wlc Weblate commandline client using Weblate's REST API nixos-unstable 1.16.1 nixpkgs-unstable 1.16.1 nixos-unstable-small 1.16.1 nixos-25.05 1.15 nixos-25.05-small 1.15 nixpkgs-25.05-darwin 1.15 Package maintainers: 4 @xddxdd Yuhui Xu <b980120@hotmail.com> @paperdigits Mica Semrick <mica@silentumbrella.com> @NomisIV Simon Gutgesell <simon@nomisiv.com> @OPNA2608 Cosima Neidahl <opna2608@protonmail.com>
CVE-2026-23535 updated 5 days, 4 hours ago by @LeSuisse Activity log Created automatic suggestion 5 days, 18 hours ago @LeSuisse removed 3 packages wlcs wlclock imewlconverter 5 days, 4 hours ago @LeSuisse accepted as draft 5 days, 4 hours ago @LeSuisse published on GitHub 5 days, 4 hours ago wlc Path traversal: Unsanitized API slugs in download command wlc is a Weblate command-line client using Weblate's REST API. Prior to 1.17.2, the multi-translation download could write to an arbitrary location when instructed by a crafted server. This vulnerability is fixed in 1.17.2. Affected products wlc ==< 1.17.2 Matching in nixpkgs pkgs.wlc Weblate commandline client using Weblate's REST API nixos-unstable 1.16.1 nixpkgs-unstable 1.16.1 nixos-unstable-small 1.16.1 nixos-25.05 1.15 nixos-25.05-small 1.15 nixpkgs-25.05-darwin 1.15 Package maintainers: 4 @xddxdd Yuhui Xu <b980120@hotmail.com> @paperdigits Mica Semrick <mica@silentumbrella.com> @NomisIV Simon Gutgesell <simon@nomisiv.com> @OPNA2608 Cosima Neidahl <opna2608@protonmail.com>
pkgs.wlc Weblate commandline client using Weblate's REST API nixos-unstable 1.16.1 nixpkgs-unstable 1.16.1 nixos-unstable-small 1.16.1 nixos-25.05 1.15 nixos-25.05-small 1.15 nixpkgs-25.05-darwin 1.15