Nixpkgs Security Tracker

Untriaged

Permalink CVE-2013-7351

created 2 days, 21 hours ago

Multiple cross-site scripting (XSS) vulnerabilities in index.php in Shaarli allow …

Multiple cross-site scripting (XSS) vulnerabilities in index.php in Shaarli allow remote attackers to inject arbitrary web script or HTML via the URL to the (1) showRSS, (2) showATOM, or (3) showDailyRSS function; a (4) file name to the importFile function; or (5) vectors related to bookmarks.

Affected products

Shaarli

==before 53da201749f8f362323ef278bf338f1d9f7a925a

Matching in nixpkgs

pkgs.shaarli

Personal, minimalist, super-fast, database free, bookmarking service

nixos-unstable 0.16.1
- nixpkgs-unstable 0.16.1
- nixos-unstable-small 0.16.1
nixos-25.11 0.15.0
- nixos-25.11-small 0.15.0
- nixpkgs-25.11-darwin 0.15.0

Package maintainers

@schneefux schneefux <schneefux+nixos_pkg@schneefux.xyz>

Suggestion detail

Affected products

Matching in nixpkgs

pkgs.shaarli

Package maintainers