Nixpkgs Security Tracker

Permalink CVE-2026-25847

updated 2 days, 3 hours ago by @LeSuisse Activity log

In JetBrains PyCharm before 2025.3.2 a DOM-based XSS on Jupyter …

In JetBrains PyCharm before 2025.3.2 a DOM-based XSS on Jupyter viewer page was possible

Affected products

PyCharm

Python IDE from JetBrains

nixos-unstable 2025.3.2
- nixpkgs-unstable 2025.3.2
- nixos-unstable-small 2025.3.2

Free Python IDE from JetBrains (built from source)

nixos-unstable 2025.3.1.1
- nixpkgs-unstable 2025.3.1.1
- nixos-unstable-small 2025.3.1.1
nixos-25.11 2025.3.1
- nixos-25.11-small 2025.3.1
- nixpkgs-25.11-darwin 2025.3.1

Free Python IDE from JetBrains (patched binaries from jetbrains)

Paid-for Python IDE from JetBrains

nixos-25.11 2025.3.1
- nixos-25.11-small 2025.3.1
- nixpkgs-25.11-darwin 2025.3.1

Free Python IDE from JetBrains (patched binaries from jetbrains)

nixos-25.11 2025.2.5
- nixos-25.11-small 2025.2.5
- nixpkgs-25.11-darwin 2025.2.5

Free Python IDE from JetBrains (built from source)