Nixpkgs Security Tracker

Dismissed

Permalink CVE-2025-58245

updated 3 months ago by @mweinelt Activity log

Created automatic suggestion 4 months, 1 week ago
@mweinelt removed
2 packages
- traderepublic-portfolio-downloader
- portfolio-filemanager
3 months ago
@mweinelt dismissed 3 months ago

WordPress Portfolio Plugin <= 2.58 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in bestweblayout Portfolio allows DOM-Based XSS. This issue affects Portfolio : from n/a through 2.58.

Affected products

portfolio

=<2.58

Package maintainers

@chuangzhu Chuang Zhu <nixos@chuang.cz>
@dotlambda Robert Schütz <rschuetz17@gmail.com>
@SeineEloquenz Alexander Linder

Suggestion detail

Affected products

Package maintainers