Suggestions search

All statuses

Filter by:

With package: nltk-data.gutenberg

Found 3 matching suggestions

View:

Compact

Detailed

Dismissed

Permalink CVE-2025-64354

6.5 MEDIUM

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): LOW
Privileges required (PR): LOW
User interaction (UI): REQUIRED
Scope (S): CHANGED
Confidentiality impact (C): LOW
Integrity impact (I): LOW
Availability impact (A): LOW

updated 3 months, 2 weeks ago by @LeSuisse Activity log

Created automatic suggestion 4 months ago
@LeSuisse dismissed 3 months, 2 weeks ago

WordPress Gutenberg plugin <= 21.8.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Matias Ventura Gutenberg gutenberg allows Stored XSS.This issue affects Gutenberg: from n/a through <= 21.8.2.

References

Affected products

gutenberg

=<<= 21.8.2

Matching in nixpkgs

pkgs.nltk-data.gutenberg

NLTK Data

nixos-unstable 0-unstable-2024-07-29
- nixpkgs-unstable 0-unstable-2024-07-29
- nixos-unstable-small 0-unstable-2024-07-29

pkgs.wordpressPackages.plugins.gutenberg

None

nixos-unstable 20.6.0
- nixpkgs-unstable 20.6.0
- nixos-unstable-small 20.6.0

pkgs.haskellPackages.gutenberg-fibonaccis

The first 1001 Fibonacci numbers, retrieved from the Gutenberg Project

nixos-unstable 1.1.0
- nixpkgs-unstable 1.1.0
- nixos-unstable-small 1.1.0

Package maintainers

@happysalada Raphael Megzari <raphael@megzari.com>
@bengsparks Ben Sparks <benjamin.sparks@protonmail.com>

Untriaged

Permalink CVE-2023-38000

6.5 MEDIUM

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): LOW
Privileges required (PR): LOW
User interaction (UI): REQUIRED
Scope (S): CHANGED
Confidentiality impact (C): LOW
Integrity impact (I): LOW
Availability impact (A): LOW

created 6 months ago

Auth. Stored Cross-Site Scripting (XSS) vulnerability in WordPress core and Gutenberg plugin via Navigation Links Block

Auth. Stored (contributor+) Cross-Site Scripting (XSS) vulnerability in WordPress core 6.3 through 6.3.1, from 6.2 through 6.2.2, from 6.1 through 6.1.3, from 6.0 through 6.0.5, from 5.9 through 5.9.7 and Gutenberg plugin <= 16.8.0 versions.

References

https://patchstack.com/articles/wordpress-core-6-3-2-security-update-technical-… third-party-advisory
https://patchstack.com/database/vulnerability/wordpress/wordpress-core-6-3-2-co… vdb-entry
https://patchstack.com/database/vulnerability/gutenberg/wordpress-gutenberg-plu… vdb-entry
https://patchstack.com/articles/wordpress-core-6-3-2-security-update-technical-… third-party-advisory x_transferred
https://patchstack.com/database/vulnerability/wordpress/wordpress-core-6-3-2-co… x_transferred vdb-entry
https://patchstack.com/database/vulnerability/gutenberg/wordpress-gutenberg-plu… x_transferred vdb-entry

Affected products

WordPress

=<6.0.5
=<6.2.2
=<6.3.1
=<5.9.7
=<6.1.3

gutenberg

=<16.8.0

Matching in nixpkgs

pkgs.nltk-data.gutenberg

NLTK Data

nixos-unstable -
- nixpkgs-unstable 0-unstable-2024-07-29

pkgs.wordpressPackages.plugins.gutenberg

None

nixos-unstable -
- nixpkgs-unstable 20.6.0

pkgs.haskellPackages.gutenberg-fibonaccis

The first 1001 Fibonacci numbers, retrieved from the Gutenberg Project

nixos-unstable -
- nixpkgs-unstable 1.1.0

Package maintainers

@happysalada Raphael Megzari <raphael@megzari.com>
@bengsparks Ben Sparks <benjamin.sparks@protonmail.com>

Untriaged

Permalink CVE-2024-37492

6.5 MEDIUM

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): LOW
Privileges required (PR): LOW
User interaction (UI): REQUIRED
Scope (S): CHANGED
Confidentiality impact (C): LOW
Integrity impact (I): LOW
Availability impact (A): LOW

created 6 months ago

WordPress Gutenberg plugin <= 18.6.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Gutenberg Team Gutenberg allows Stored XSS.This issue affects Gutenberg: from n/a through 18.6.0.