Nixpkgs Security Tracker

Login with GitHub

Suggestion detail

Untriaged

Permalink CVE-2023-26020

5.7 MEDIUM

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): HIGH
Privileges required (PR): HIGH
User interaction (UI): REQUIRED
Scope (S): UNCHANGED
Confidentiality impact (C): NONE
Integrity impact (I): HIGH
Availability impact (A): HIGH

created 6 months ago

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in Crafter Studio

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Crafter Studio on Linux, MacOS, Windows, x86, ARM, 64 bit allows SQL Injection.This issue affects CrafterCMS v4.0 from 4.0.0 through 4.0.1, and v3.1 from 3.1.0 through 3.1.26.

References

Affected products

Studio

=<4.0.1
=<3.1.26

Matching in nixpkgs

pkgs.rstudio

Set of integrated tools for the R language

nixos-unstable -
- nixpkgs-unstable 2025.05.1+513

pkgs.rstudio-server

Set of integrated tools for the R language

nixos-unstable -
- nixpkgs-unstable 2025.05.1+513

pkgs.rstudioWrapper

None

nixos-unstable -
- nixpkgs-unstable 2025.05.1+513-wrapper

pkgs.rstudioServerWrapper

None

nixos-unstable -
- nixpkgs-unstable 2025.05.1+513-wrapper

pkgs.vscode-extensions.visualstudiotoolsforunity.vstuc

Integrates Visual Studio Code for Unity

nixos-unstable -
- nixpkgs-unstable 1.1.3

pkgs.vscode-extensions.visualstudioexptteam.vscodeintellicode

AI-assisted development

nixos-unstable -
- nixpkgs-unstable 1.3.2

pkgs.vscode-extensions.visualstudioexptteam.intellicode-api-usage-examples

See relevant code examples from GitHub for over 100K different APIs right in your editor

nixos-unstable -
- nixpkgs-unstable 0.2.9

Package maintainers

@cfhammill Chris Hammill <cfhammill@gmail.com>
@ciil Simon Lackerbauer <simon@lackerbauer.com>
@TomaSajt TomaSajt
@TheMaxMur Maxim Muravev <muravjev.mak@yandex.ru>
@mibmo mib <mib@kanp.ai>