Nixpkgs security tracker
8.1 HIGH
- CVSS version (CVSS): 3.1
- Attack Vector (AV): Network (N)
- Attack Complexity (AC): High (H)
- Privileges Required (PR): None (N)
- User Interaction (UI): None (N)
- Scope (S): Unchanged (U)
- Confidentiality (C): High (H)
- Integrity (I): High (H)
- Availability (A): High (H)
- Modified Attack Vector (MAV): Network (N)
- Modified Attack Complexity (MAC): High (H)
- Modified Privileges Required (MPR): None (N)
- Modified User Interaction (MUI): None (N)
- Modified Confidentiality (MC): High (H)
- Modified Scope (MS): Unchanged (U)
- Modified Integrity (MI): High (H)
- Modified Availability (MA): High (H)
by @LeSuisse Activity log
- Created suggestion
-
@LeSuisse
ignored
37 packages
- spago
- etlegacy
- spago-legacy
- ifstat-legacy
- libewf-legacy
- geolite-legacy
- etlegacy-assets
- etlegacy-unwrapped
- rquickshare-legacy
- perlPackages.MenloLegacy
- adwaita-icon-theme-legacy
- perl538Packages.MenloLegacy
- perl540Packages.MenloLegacy
- haskellPackages.spago-legacy
- python312Packages.legacy-cgi
- python313Packages.legacy-cgi
- intel-compute-runtime-legacy1
- ocamlPackages.legacy_diffable
- php81Extensions.openssl-legacy
- php82Extensions.openssl-legacy
- php83Extensions.openssl-legacy
- php84Extensions.openssl-legacy
- python312Packages.spacy-legacy
- python313Packages.spacy-legacy
- python312Packages.legacy-api-wrap
- python313Packages.legacy-api-wrap
- python312Packages.packaging-legacy
- python312Packages.pyoppleio-legacy
- python313Packages.packaging-legacy
- python313Packages.pyoppleio-legacy
- python312Packages.llama-index-legacy
- python313Packages.llama-index-legacy
- ocamlPackages.janeStreet.legacy_diffable
- pkgsRocm.python3Packages.llama-index-legacy
- python312Packages.azure-servicemanagement-legacy
- python313Packages.azure-servicemanagement-legacy
- gnomeExtensions.legacy-gtk3-theme-scheme-auto-switcher
- @LeSuisse dismissed
WordPress Legacy theme <= 1.9 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in axiomthemes Legacy legacy allows PHP Local File Inclusion.This issue affects Legacy: from n/a through <= 1.9.
References
Affected products
- =<<= 1.9
Ignored packages (37)
pkgs.etlegacy
ET: Legacy is an open source project based on the code of Wolfenstein: Enemy Territory which was released in 2010 under the terms of the GPLv3 license
pkgs.spago-legacy
None
pkgs.ifstat-legacy
Report network interfaces bandwith just like vmstat/iostat do for other system counters - legacy version
pkgs.libewf-legacy
Legacy library for support of the Expert Witness Compression Format
pkgs.geolite-legacy
GeoLite Legacy IP geolocation databases
pkgs.etlegacy-assets
ET: Legacy assets only
pkgs.etlegacy-unwrapped
ET: Legacy is an open source project based on the code of Wolfenstein: Enemy Territory which was released in 2010 under the terms of the GPLv3 license
pkgs.perlPackages.MenloLegacy
Legacy internal and client support for Menlo
pkgs.perl538Packages.MenloLegacy
Legacy internal and client support for Menlo
pkgs.perl540Packages.MenloLegacy
Legacy internal and client support for Menlo
pkgs.haskellPackages.spago-legacy
None
pkgs.python312Packages.legacy-cgi
None
pkgs.python313Packages.legacy-cgi
Fork of the standard library cgi and cgitb modules, being deprecated in PEP-594
pkgs.intel-compute-runtime-legacy1
Intel Graphics Compute Runtime oneAPI Level Zero and OpenCL with support for Gen8, Gen9 and Gen11 GPUs
-
nixos-unstable legacy1-24.35.30872.32
- nixpkgs-unstable legacy1-24.35.30872.32
- nixos-unstable-small legacy1-24.35.30872.32
pkgs.ocamlPackages.legacy_diffable
Interface for diffs
pkgs.php81Extensions.openssl-legacy
None
pkgs.php82Extensions.openssl-legacy
None
pkgs.php83Extensions.openssl-legacy
None
pkgs.php84Extensions.openssl-legacy
None
pkgs.python312Packages.spacy-legacy
Legacy registered functions for spaCy backwards compatibility
pkgs.python313Packages.spacy-legacy
Legacy registered functions for spaCy backwards compatibility
pkgs.python312Packages.legacy-api-wrap
Wrap legacy APIs in python projects
pkgs.python313Packages.legacy-api-wrap
Wrap legacy APIs in python projects
pkgs.python312Packages.packaging-legacy
Module to support for legacy Python Packaging functionality
-
nixos-unstable 23.0.post0
- nixpkgs-unstable 23.0.post0
- nixos-unstable-small 23.0.post0
pkgs.python312Packages.pyoppleio-legacy
Python library for interfacing with Opple WiFi lights (legacy firmware support)
pkgs.python313Packages.packaging-legacy
Module to support for legacy Python Packaging functionality
-
nixos-unstable 23.0.post0
- nixpkgs-unstable 23.0.post0
- nixos-unstable-small 23.0.post0
pkgs.python313Packages.pyoppleio-legacy
Python library for interfacing with Opple WiFi lights (legacy firmware support)
pkgs.python312Packages.llama-index-legacy
LlamaIndex Readers Integration for files
-
nixos-unstable 0.9.48.post4
- nixpkgs-unstable 0.9.48.post4
- nixos-unstable-small 0.9.48.post4
pkgs.python313Packages.llama-index-legacy
LlamaIndex Readers Integration for files
-
nixos-unstable 0.9.48.post4
- nixpkgs-unstable 0.9.48.post4
- nixos-unstable-small 0.9.48.post4
pkgs.ocamlPackages.janeStreet.legacy_diffable
Interface for diffs
pkgs.pkgsRocm.python3Packages.llama-index-legacy
LlamaIndex Readers Integration for files
-
nixos-unstable 0.9.48.post4
- nixpkgs-unstable 0.9.48.post4
- nixos-unstable-small 0.9.48.post4
pkgs.python312Packages.azure-servicemanagement-legacy
This is the Microsoft Azure Service Management Legacy Client Library
pkgs.python313Packages.azure-servicemanagement-legacy
This is the Microsoft Azure Service Management Legacy Client Library
pkgs.gnomeExtensions.legacy-gtk3-theme-scheme-auto-switcher
Change the GTK3 theme to light/dark variant based on the system color scheme
-
nixos-unstable gtk3-theme-scheme-auto-switcher-11
- nixpkgs-unstable gtk3-theme-scheme-auto-switcher-11
- nixos-unstable-small gtk3-theme-scheme-auto-switcher-11