Nixpkgs Security Tracker

Dismissed

Permalink CVE-2025-58993

7.6 HIGH

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): LOW
Privileges required (PR): HIGH
User interaction (UI): NONE
Scope (S): CHANGED
Confidentiality impact (C): HIGH
Integrity impact (I): NONE
Availability impact (A): LOW

updated 4 months, 2 weeks ago by @LeSuisse Activity log

Created automatic suggestion 6 months ago
@LeSuisse removed
6 packages
- haskellPackages.timeless-tutorials
- typstPackages.tutor_0_8_0
- typstPackages.tutor_0_7_0
- typstPackages.tutor_0_6_1
- typstPackages.tutor_0_4_0
- typstPackages.tutor_0_3_0
4 months, 2 weeks ago
@LeSuisse dismissed 4 months, 2 weeks ago

WordPress Tutor LMS Plugin <= 3.7.4 - SQL Injection Vulnerability

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Themeum Tutor LMS allows SQL Injection. This issue affects Tutor LMS: from n/a through 3.7.4.

References

https://patchstack.com/database/wordpress/plugin/tutor/vulnerability/wordpress-… vdb-entry

Affected products

tutor

=<3.7.4

Suggestion detail

References

Affected products