Nixpkgs Security Tracker

Untriaged

Permalink CVE-2025-31638

7.1 HIGH

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): LOW
Privileges required (PR): NONE
User interaction (UI): REQUIRED
Scope (S): CHANGED
Confidentiality impact (C): LOW
Integrity impact (I): LOW
Availability impact (A): LOW

created 6 months, 1 week ago

WordPress Spare <= 1.7 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in themeton Spare allows Reflected XSS. This issue affects Spare: from n/a through 1.7.

References

Affected products

spare

=<1.7

Matching in nixpkgs

pkgs.asciiquarium-transparent

Aquarium/sea animation in ASCII art (with option of transparent background)

nixos-unstable -
- nixpkgs-unstable 1.4

pkgs.materia-theme-transparent

Transparent Material Design theme for GNOME/GTK based desktop environments

nixos-unstable -
- nixpkgs-unstable 0-unstable-2021-03-22

pkgs.gnomeExtensions.transparent-top-bar

Bring back the transparent top bar when free-floating in GNOME Shell 3.32.

nixos-unstable -
- nixpkgs-unstable 24

pkgs.gnomeExtensions.transparent-window-moving

Makes the window semi-transparent when moving or resizing

nixos-unstable -
- nixpkgs-unstable 19

pkgs.sway-contrib.inactive-windows-transparency

It makes inactive sway windows transparent

nixos-unstable -
- nixpkgs-unstable 0-unstable-2024-03-19

pkgs.gnomeExtensions.transparent-top-bar-adjustable-transparency

Fork of: https://github.com/zhanghai/gnome-shell-extension-transparent-top-bar

nixos-unstable -
- nixpkgs-unstable 24

Package maintainers

@quantenzitrone quantenzitrone <nix@dev.quantenzitrone.eu>
@honnip Jung seungwoo <me@honnip.page>
@CorbinWunderlich Corbin Wunderlich <corbin@wcopy.net>
@evils Evils <evils.devils@protonmail.com>

Suggestion detail