Nixpkgs security tracker

Login with GitHub

Suggestion detail

Dismissed

Permalink CVE-2025-68020

6.5 MEDIUM

CVSS version (CVSS): 3.1
Attack Vector (AV): Network (N)
Attack Complexity (AC): Low (L)
Privileges Required (PR): None (N)
User Interaction (UI): None (N)
Scope (S): Unchanged (U)
Confidentiality (C): Low (L)
Integrity (I): Low (L)
Availability (A): None (N)
Modified Attack Vector (MAV): Network (N)
Modified Attack Complexity (MAC): Low (L)
Modified Privileges Required (MPR): None (N)
Modified User Interaction (MUI): None (N)
Modified Confidentiality (MC): Low (L)
Modified Scope (MS): Unchanged (U)
Modified Integrity (MI): Low (L)
Modified Availability (MA): None (N)

updated 4 months, 4 weeks ago by @LeSuisse Activity log

Created suggestion 4 months, 4 weeks ago
@LeSuisse ignored
11 packages
- fsnotifier
- mpris-notifier
- terminal-notifier
- usbguard-notifier
- python312Packages.pynotifier
- python313Packages.pynotifier
- deadbeefPlugins.statusnotifier
- python312Packages.desktop-notifier
- kdePackages.kstatusnotifieritem
- python313Packages.desktop-notifier
- haskellPackages.status-notifier-item
4 months, 4 weeks ago
@LeSuisse dismissed 4 months, 4 weeks ago

WordPress WANotifier plugin <= 2.7.12 - Broken Access Control vulnerability

Missing Authorization vulnerability in WANotifier WANotifier notifier allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WANotifier: from n/a through <= 2.7.12.

References

https://patchstack.com/database/Wordpress/Plugin/notifier/vulnerability/wordpre… vdb-entry

Affected products

notifier

=<<= 2.7.12

Ignored packages (11)

pkgs.fsnotifier

IntelliJ Platform companion program for watching and reporting file and directory structure modification

nixos-unstable 2024.2.0
- nixpkgs-unstable 2024.2.0
- nixos-unstable-small 2024.2.0

pkgs.mpris-notifier

Dependency-light, highly-customizable, XDG desktop notification generator for MPRIS status changes

nixos-unstable 0.2.0
- nixpkgs-unstable 0.2.0
- nixos-unstable-small 0.2.1

pkgs.terminal-notifier

None

nixos-unstable 2.0.0
- nixpkgs-unstable 2.0.0
- nixos-unstable-small 2.0.0

pkgs.usbguard-notifier

Notifications for detecting usbguard policy and device presence changes

nixos-unstable 0.1.1
- nixpkgs-unstable 0.1.1
- nixos-unstable-small 0.1.1

pkgs.python312Packages.pynotifier

Module for sending notifications

nixos-unstable 0.5.0
- nixpkgs-unstable 0.5.0
- nixos-unstable-small 0.5.0

pkgs.python313Packages.pynotifier

Module for sending notifications

nixos-unstable 0.5.0
- nixpkgs-unstable 0.5.0
- nixos-unstable-small 0.5.0

pkgs.deadbeefPlugins.statusnotifier

DeaDBeeF StatusNotifier Plugin

nixos-unstable 1.6
- nixpkgs-unstable 1.6
- nixos-unstable-small 1.6

pkgs.kdePackages.kstatusnotifieritem

Implementation of Status Notifier Items

nixos-unstable 6.20.0
- nixpkgs-unstable 6.20.0
- nixos-unstable-small 6.20.0

pkgs.python312Packages.desktop-notifier

Python library for cross-platform desktop notifications

nixos-unstable 6.2.0
- nixpkgs-unstable 6.2.0
- nixos-unstable-small 6.2.0

pkgs.python313Packages.desktop-notifier

Python library for cross-platform desktop notifications

nixos-unstable 6.2.0
- nixpkgs-unstable 6.2.0
- nixos-unstable-small 6.2.0

pkgs.haskellPackages.status-notifier-item

A wrapper over the StatusNotifierItem/libappindicator dbus specification

nixos-unstable 0.3.1.0
- nixpkgs-unstable 0.3.1.0
- nixos-unstable-small 0.3.1.0

WP plugin not present in nixpkgs