Nixpkgs Security Tracker

Login with GitHub

Suggestion detail

Untriaged

Permalink CVE-2025-31919

9.8 CRITICAL

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): LOW
Privileges required (PR): NONE
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): HIGH
Integrity impact (I): HIGH
Availability impact (A): HIGH

created 6 months, 1 week ago

WordPress Spare <= 1.7 - PHP Object Injection Vulnerability

Deserialization of Untrusted Data vulnerability in themeton Spare allows Object Injection. This issue affects Spare: from n/a through 1.7.

References

https://patchstack.com/database/wordpress/theme/spare/vulnerability/wordpress-s… vdb-entry

Affected products

spare

=<1.7

Matching in nixpkgs

pkgs.asciiquarium-transparent

Aquarium/sea animation in ASCII art (with option of transparent background)

nixos-unstable -
- nixpkgs-unstable 1.4

pkgs.materia-theme-transparent

Transparent Material Design theme for GNOME/GTK based desktop environments

nixos-unstable -
- nixpkgs-unstable 0-unstable-2021-03-22

pkgs.gnomeExtensions.transparent-top-bar

Bring back the transparent top bar when free-floating in GNOME Shell 3.32.

nixos-unstable -
- nixpkgs-unstable 24

pkgs.gnomeExtensions.transparent-window-moving

Makes the window semi-transparent when moving or resizing

nixos-unstable -
- nixpkgs-unstable 19

pkgs.sway-contrib.inactive-windows-transparency

It makes inactive sway windows transparent

nixos-unstable -
- nixpkgs-unstable 0-unstable-2024-03-19

pkgs.gnomeExtensions.transparent-top-bar-adjustable-transparency

Fork of: https://github.com/zhanghai/gnome-shell-extension-transparent-top-bar

nixos-unstable -
- nixpkgs-unstable 24

Package maintainers

@quantenzitrone quantenzitrone <nix@dev.quantenzitrone.eu>
@honnip Jung seungwoo <me@honnip.page>
@CorbinWunderlich Corbin Wunderlich <corbin@wcopy.net>
@evils Evils <evils.devils@protonmail.com>