Nixpkgs security tracker

Login with GitHub

Suggestion detail

Dismissed

Permalink CVE-2025-54689

8.1 HIGH

CVSS version (CVSS): 3.1
Attack Vector (AV): Network (N)
Attack Complexity (AC): High (H)
Privileges Required (PR): None (N)
User Interaction (UI): None (N)
Scope (S): Unchanged (U)
Confidentiality (C): High (H)
Integrity (I): High (H)
Availability (A): High (H)
Modified Attack Vector (MAV): Network (N)
Modified Attack Complexity (MAC): High (H)
Modified Privileges Required (MPR): None (N)
Modified User Interaction (MUI): None (N)
Modified Confidentiality (MC): High (H)
Modified Scope (MS): Unchanged (U)
Modified Integrity (MI): High (H)
Modified Availability (MA): High (H)

updated 6 months, 3 weeks ago by @LeSuisse Activity log

Created suggestion 8 months ago
@LeSuisse ignored
30 packages
- furnace
- xournalpp
- journalist
- lazyjournal
- qjournalctl
- tui-journal
- journalwatch
- annapurna-sil
- journaldriver
- systemd-journal2gelf
- kdePackages.kjournald
- perlPackages.LogJournald
- perl538Packages.LogJournald
- perl540Packages.LogJournald
- python312Packages.swh-journal
- python313Packages.swh-journal
- python312Packages.waterfurnace
- python313Packages.waterfurnace
- haskellPackages.journalctl-stream
- haskellPackages.libsystemd-journal
- python312Packages.logging-journald
- python313Packages.logging-journald
- haskellPackages.logging-facade-journald
- typstPackages.starter-journal-article_0_1_1
- typstPackages.starter-journal-article_0_2_0
- typstPackages.starter-journal-article_0_3_0
- typstPackages.starter-journal-article_0_3_1
- typstPackages.starter-journal-article_0_3_2
- typstPackages.starter-journal-article_0_3_3
- typstPackages.starter-journal-article_0_4_0
6 months, 3 weeks ago
@LeSuisse dismissed 6 months, 3 weeks ago

WordPress Urna Theme <= 2.5.7 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in thembay Urna allows PHP Local File Inclusion. This issue affects Urna: from n/a through 2.5.7.

References

https://patchstack.com/database/wordpress/theme/urna/vulnerability/wordpress-ur… vdb-entry

Affected products

urna

=<2.5.7

Ignored packages (30)

pkgs.furnace

Multi-system chiptune tracker compatible with DefleMask modules

nixos-unstable -
- nixpkgs-unstable 0.6.8.3

pkgs.xournalpp

Xournal++ is a handwriting Notetaking software with PDF annotation support

nixos-unstable -
- nixpkgs-unstable 1.2.8

pkgs.journalist

RSS aggregator

nixos-unstable -
- nixpkgs-unstable 1.0.1

pkgs.lazyjournal

TUI for journalctl, file system logs, as well as Docker and Podman containers

nixos-unstable -
- nixpkgs-unstable 0.7.9

pkgs.qjournalctl

Qt-based graphical user interface for systemd's journalctl command

nixos-unstable -
- nixpkgs-unstable 0.6.4

pkgs.tui-journal

Your journal app if you live in a terminal

nixos-unstable -
- nixpkgs-unstable 0.16.1

pkgs.journalwatch

Tool to find error messages in the systemd journal

nixos-unstable -
- nixpkgs-unstable 1.1.0

pkgs.annapurna-sil

Unicode-based font family with broad support for writing systems that use the Devanagari script

nixos-unstable -
- nixpkgs-unstable 2.100

pkgs.journaldriver

Log forwarder from journald to Stackdriver Logging

nixos-unstable -
- nixpkgs-unstable 5656.0.0

pkgs.systemd-journal2gelf

Export entries from systemd's journal and send them to a graylog server using gelf

nixos-unstable -
- nixpkgs-unstable 0-unstable-2023-03-10

pkgs.kdePackages.kjournald

Framework for interacting with systemd-journald

nixos-unstable -
- nixpkgs-unstable 25.08.1

pkgs.perlPackages.LogJournald

Send messages to a systemd journal

nixos-unstable -
- nixpkgs-unstable 0.30

pkgs.perl538Packages.LogJournald

Send messages to a systemd journal

nixos-unstable -
- nixpkgs-unstable 0.30

pkgs.perl540Packages.LogJournald

Send messages to a systemd journal

nixos-unstable -
- nixpkgs-unstable 0.30

pkgs.python312Packages.swh-journal

Persistent logger of changes to the archive, with publish-subscribe support

nixos-unstable -
- nixpkgs-unstable 2.0.0

pkgs.python313Packages.swh-journal

Persistent logger of changes to the archive, with publish-subscribe support

nixos-unstable -
- nixpkgs-unstable 2.0.0

pkgs.python312Packages.waterfurnace

Python interface to waterfurnace geothermal systems

nixos-unstable -
- nixpkgs-unstable 1.1.0

pkgs.python313Packages.waterfurnace

Python interface to waterfurnace geothermal systems

nixos-unstable -
- nixpkgs-unstable 1.1.0

pkgs.haskellPackages.journalctl-stream

Stream logs using journalctl

nixos-unstable -
- nixpkgs-unstable 0.6.0.8

pkgs.haskellPackages.libsystemd-journal

Haskell bindings to libsystemd-journal

nixos-unstable -
- nixpkgs-unstable 1.4.6.0

pkgs.python312Packages.logging-journald

Logging handler for writing logs to the journald

nixos-unstable -
- nixpkgs-unstable 0.6.7

pkgs.python313Packages.logging-journald

Logging handler for writing logs to the journald

nixos-unstable -
- nixpkgs-unstable 0.6.7

pkgs.haskellPackages.logging-facade-journald

Journald back-end for logging-facade

nixos-unstable -
- nixpkgs-unstable 0.0.0

pkgs.typstPackages.starter-journal-article_0_1_1

A starter template for journal articles

nixos-unstable -
- nixpkgs-unstable 0.1.1

pkgs.typstPackages.starter-journal-article_0_2_0

A starter template for journal articles

nixos-unstable -
- nixpkgs-unstable 0.2.0

pkgs.typstPackages.starter-journal-article_0_3_0

A starter template for journal articles

nixos-unstable -
- nixpkgs-unstable 0.3.0

pkgs.typstPackages.starter-journal-article_0_3_1

A starter template for journal articles

nixos-unstable -
- nixpkgs-unstable 0.3.1

pkgs.typstPackages.starter-journal-article_0_3_2

A starter template for journal articles

nixos-unstable -
- nixpkgs-unstable 0.3.2

pkgs.typstPackages.starter-journal-article_0_3_3

A starter template for journal articles

nixos-unstable -
- nixpkgs-unstable 0.3.3

pkgs.typstPackages.starter-journal-article_0_4_0

A starter template for journal articles

nixos-unstable -
- nixpkgs-unstable 0.4.0