Suggestions search

Untriaged

Filter by:

With package: florist

Found 3 matching suggestions

View:

Compact

Detailed

Permalink CVE-2026-39985

4.3 MEDIUM

CVSS version (CVSS): 3.1
Attack Vector (AV): Network (N)
Attack Complexity (AC): Low (L)
Privileges Required (PR): None (N)
User Interaction (UI): Required (R)
Scope (S): Unchanged (U)
Confidentiality (C): Low (L)
Integrity (I): None (N)
Availability (A): None (N)
Modified Attack Vector (MAV): Network (N)
Modified Attack Complexity (MAC): Low (L)
Modified Privileges Required (MPR): None (N)
Modified User Interaction (MUI): Required (R)
Modified Confidentiality (MC): Low (L)
Modified Scope (MS): Unchanged (U)
Modified Integrity (MI): None (N)
Modified Availability (MA): None (N)

created 1 month, 2 weeks ago Activity log

Created suggestion 1 month, 2 weeks ago

LORIS has an open redirect field on login

LORIS (Longitudinal Online Research and Imaging System) is a self-hosted web application that provides data- and project-management for neuroimaging research. Prior to 27.0.3 and 28.0.1, the redirect parameter upon login to LORIS was not validating the value of the redirect as being within LORIS, which could be used to trick users into visiting arbitrary URLs if they are given a link with a third party redirect parameter. This vulnerability is fixed in 27.0.3 and 28.0.1.

References

https://github.com/aces/Loris/security/advisories/GHSA-rch2-f5fw-cg95 x_refsource_CONFIRM
https://github.com/aces/Loris/commit/f57f54b42a076bf53ba86e20d4dbf37f63538f58 x_refsource_MISC
https://github.com/aces/Loris/releases/tag/v27.0.3 x_refsource_MISC
https://github.com/aces/Loris/releases/tag/v28.0.1 x_refsource_MISC

Affected products

Loris

==< 27.0.3
==>= 28.0.0, < 28.0.1

Matching in nixpkgs

pkgs.florist

Posix Ada Bindings

nixos-unstable 24.2
- nixpkgs-unstable 24.2
- nixos-unstable-small 24.2
nixos-25.11 -
- nixos-25.11-small
- nixpkgs-25.11-darwin

Package maintainers

@lutzberger Lutz Berger <lutz.berger@airbus.com>

Permalink CVE-2026-35403

6.5 MEDIUM

CVSS version (CVSS): 3.1
Attack Vector (AV): Network (N)
Attack Complexity (AC): High (H)
Privileges Required (PR): Low (L)
User Interaction (UI): Required (R)
Scope (S): Changed (C)
Confidentiality (C): High (H)
Integrity (I): Low (L)
Availability (A): None (N)
Modified Attack Vector (MAV): Network (N)
Modified Attack Complexity (MAC): High (H)
Modified Privileges Required (MPR): Low (L)
Modified User Interaction (MUI): Required (R)
Modified Confidentiality (MC): High (H)
Modified Scope (MS): Changed (C)
Modified Integrity (MI): Low (L)
Modified Availability (MA): None (N)

created 1 month, 2 weeks ago Activity log

Created suggestion 1 month, 2 weeks ago

LORIS has potential cross-site scripting in survey_accounts module

LORIS (Longitudinal Online Research and Imaging System) is a self-hosted web application that provides data- and project-management for neuroimaging research. From 15.10 to before 27.0.3 and 28.0.1, there is a potential for a cross-site scripting attack in the survey_accounts module if a user provides an invalid visit label. While the data is properly JSON encoded, the Content-Type header is not set causing the web browser to interpret the payload as HTML, opening the possibility of a cross-site scripting if a user is tricked into following an invalid link. This vulnerability is fixed in 27.0.3 and 28.0.1.

References

https://github.com/aces/Loris/security/advisories/GHSA-776p-5pwh-vc8p x_refsource_CONFIRM

Affected products

Loris

==>= 15.10, < 27.0.3
==>= 28.0.0, < 28.0.1

Matching in nixpkgs

pkgs.florist

Posix Ada Bindings

nixos-unstable 24.2
- nixpkgs-unstable 24.2
- nixos-unstable-small 24.2
nixos-25.11 -
- nixos-25.11-small
- nixpkgs-25.11-darwin

Package maintainers

@lutzberger Lutz Berger <lutz.berger@airbus.com>

Permalink CVE-2026-33350

7.5 HIGH

CVSS version (CVSS): 3.1
Attack Vector (AV): Network (N)
Attack Complexity (AC): Low (L)
Privileges Required (PR): None (N)
User Interaction (UI): None (N)
Scope (S): Unchanged (U)
Confidentiality (C): High (H)
Integrity (I): None (N)
Availability (A): None (N)
Modified Attack Vector (MAV): Network (N)
Modified Attack Complexity (MAC): Low (L)
Modified Privileges Required (MPR): None (N)
Modified User Interaction (MUI): None (N)
Modified Confidentiality (MC): High (H)
Modified Scope (MS): Unchanged (U)
Modified Integrity (MI): None (N)
Modified Availability (MA): None (N)

created 1 month, 2 weeks ago Activity log

Created suggestion 1 month, 2 weeks ago

LORIS has a SQL injection in MRI feedback popup

LORIS (Longitudinal Online Research and Imaging System) is a self-hosted web application that provides data- and project-management for neuroimaging research. Prior to 27.0.3 and 28.0.1, a SQL injection has been identified in some code sections for the MRI feedback popup window of the imaging browser. Attackers can use SQL ingestion to access/alter data on the server. This vulnerability is fixed in 27.0.3 and 28.0.1.

References

https://github.com/aces/Loris/security/advisories/GHSA-9r29-6jgc-3ggh x_refsource_CONFIRM

Affected products

Loris

==< 27.0.3
==>= 28.0.0, < 28.0.1

Matching in nixpkgs

pkgs.florist

Posix Ada Bindings

nixos-unstable 24.2
- nixpkgs-unstable 24.2
- nixos-unstable-small 24.2
nixos-25.11 -
- nixos-25.11-small
- nixpkgs-25.11-darwin

Package maintainers

@lutzberger Lutz Berger <lutz.berger@airbus.com>