Nixpkgs Security Tracker

Dismissed

Permalink CVE-2025-49994

updated 1 week, 5 days ago by @LeSuisse Activity log

Created automatic suggestion 1 week, 5 days ago
@LeSuisse removed package athens 1 week, 5 days ago
@LeSuisse dismissed 1 week, 5 days ago

WordPress Athens theme <= 1.1.6 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ovatheme Athens athens allows PHP Local File Inclusion.This issue affects Athens: from n/a through <= 1.1.6.

Affected products

athens

=<<= 1.1.6

Package maintainers

@katexochen Paul Meyer <katexochen0@gmail.com>
@malt3 Malte Poll

WP theme not present in nixpkgs

Suggestion detail

Affected products

Package maintainers