Nixpkgs Security Tracker

Dismissed

Permalink CVE-2025-68508

updated 1 week, 5 days ago by @LeSuisse Activity log

Created automatic suggestion 2 weeks ago
@LeSuisse removed package brave 1 week, 5 days ago
@LeSuisse dismissed 1 week, 5 days ago

WordPress Brave plugin <= 0.8.3 - Broken Access Control vulnerability

Missing Authorization vulnerability in Brave Brave brave-popup-builder allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Brave: from n/a through <= 0.8.3.

Affected products

brave-popup-builder

=<<= 0.8.3

Package maintainers

@uskudnik Urban Skudnik <urban.skudnik@gmail.com>
@nasirhm Nasir Hussain <nasirhussainm14@gmail.com>
@rht rht <rhtbot@protonmail.com>
@matteo-pacini Matteo Pacini <m@matteopacini.me>
@buckley310 Sean Buckley <sean.bck@gmail.com>
@JeffLabonte Jean-François Labonté <jean-francois.labonte@brightonlabs.ai>

WP plugin not present in nixpkgs

Suggestion detail

Affected products

Package maintainers