Nixpkgs security tracker
Dismissed
Permalink
CVE-2025-53338
7.1 HIGH
- CVSS version (CVSS): 3.1
- Attack Vector (AV): Network (N)
- Attack Complexity (AC): Low (L)
- Privileges Required (PR): None (N)
- User Interaction (UI): Required (R)
- Scope (S): Changed (C)
- Confidentiality (C): Low (L)
- Integrity (I): Low (L)
- Availability (A): Low (L)
- Modified Attack Vector (MAV): Network (N)
- Modified Attack Complexity (MAC): Low (L)
- Modified Privileges Required (MPR): None (N)
- Modified User Interaction (MUI): Required (R)
- Modified Confidentiality (MC): Low (L)
- Modified Scope (MS): Changed (C)
- Modified Integrity (MI): Low (L)
- Modified Availability (MA): Low (L)
by @LeSuisse Activity log
- Created suggestion
-
@LeSuisse
ignored
23 packages
- replace
- fireplace
- qsreplace
- replacement
- replace-secret
- haskellPackages.replace-attoparsec
- haskellPackages.replace-megaparsec
- haskellPackages.text-regex-replace
- tests.substitute.legacySingleReplace
- tests.replaceVars.replaceVars.succeeds
- tests.replaceVars.replaceVarsWith.succeeds
- tests.replaceVars.replaceVars.fails-on-directory
- tests.replaceVars.replaceVars.fails-in-build-phase
- tests.replaceVars.replaceVars.fails-in-check-phase
- tests.replaceVars.replaceVarsWith.fails-on-directory
- tests.replaceVars.replaceVars.succeeds-with-exemption
- tests.replaceVars.replaceVarsWith.fails-in-build-phase
- tests.replaceVars.replaceVarsWith.fails-in-check-phase
- tests.replaceVars.replaceVarsWith.succeeds-with-exemption
- tests.replaceVars.replaceVars.fails-in-check-phase-with-exemption
- tests.replaceVars.replaceVars.fails-in-check-phase-with-bad-exemption
- tests.replaceVars.replaceVarsWith.fails-in-check-phase-with-exemption
- tests.replaceVars.replaceVarsWith.fails-in-check-phase-with-bad-exemption
- @LeSuisse dismissed
WordPress re.place plugin <= 0.2.1 - Cross Site Request Forgery (CSRF) Vulnerability
Cross-Site Request Forgery (CSRF) vulnerability in dor re.place allows Stored XSS. This issue affects re.place: from n/a through 0.2.1.
References
Affected products
replace
- =<0.2.1
Ignored packages (23)
pkgs.fireplace
Cozy fireplace in your terminal
-
nixos-unstable -
- nixpkgs-unstable 0-unstable-2020-02-02
pkgs.qsreplace
Accept URLs on stdin, replace all query string values with a user-supplied value
-
nixos-unstable -
- nixpkgs-unstable 0.0.3
pkgs.replacement
Tool to execute yaml templates and output text
-
nixos-unstable -
- nixpkgs-unstable 0.4.4
pkgs.replace-secret
Replace a string in one file with a secret from a second file
pkgs.haskellPackages.replace-attoparsec
Find, replace, split string patterns with Attoparsec parsers (instead of regex)
-
nixos-unstable -
- nixpkgs-unstable 1.5.0.0
pkgs.haskellPackages.replace-megaparsec
Find, replace, split string patterns with Megaparsec parsers (instead of regex)
-
nixos-unstable -
- nixpkgs-unstable 1.5.0.1
pkgs.haskellPackages.text-regex-replace
Easy replacement when using text-icu regexes
-
nixos-unstable -
- nixpkgs-unstable 0.1.1.5
pkgs.tests.substitute.legacySingleReplace
None
pkgs.tests.replaceVars.replaceVars.succeeds
None