Nixpkgs Security Tracker

Dismissed

Permalink CVE-2025-54003

updated 1 week, 5 days ago by @LeSuisse Activity log

Created automatic suggestion 1 week, 5 days ago
@LeSuisse removed
3 packages
- depotdownloader
- python312Packages.filedepot
- python313Packages.filedepot
1 week, 5 days ago
@LeSuisse dismissed 1 week, 5 days ago

WordPress Depot theme <= 1.16 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Mikado-Themes Depot depot allows PHP Local File Inclusion.This issue affects Depot: from n/a through <= 1.16.

Affected products

depot

=<<= 1.16

Package maintainers

@babbaj babbaj <babbaj45@gmail.com>
@fabaff Fabian Affolter <mail@fabian-affolter.ch>

WP theme not present in nixpkgs

Suggestion detail

Affected products

Package maintainers