Nixpkgs security tracker

Login with GitHub

⚠️ You are using a production deployment that is still only suitable for demo purposes. Any work done in this might be wiped later without notice.

Suggestion detail

Untriaged

Permalink CVE-2023-47238

8.8 HIGH

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): LOW
Privileges required (PR): NONE
User interaction (UI): REQUIRED
Scope (S): UNCHANGED
Confidentiality impact (C): HIGH
Integrity impact (I): HIGH
Availability impact (A): HIGH

created 1 year, 1 month ago

WordPress Top 10 Plugin <= 3.3.2 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery (CSRF) vulnerability in WebberZone Top 10 – WordPress Popular posts by WebberZone plugin <= 3.3.2 versions.

References

https://patchstack.com/database/vulnerability/top-10/wordpress-top-10-plugin-3-… x_transferredvdb-entry

Affected products

top-10

=<3.3.2

Matching in nixpkgs

pkgs.budgie-desktop

Feature-rich, modern desktop designed to keep out the way of the user

nixos-unstable 10.9.2
- nixpkgs-unstable 10.9.2
- nixos-unstable-small 10.9.2

pkgs.gnomeExtensions.pip-on-top

Makes "Picture-in-Picture" windows stay on top (even on Wayland session). Compatible with Firefox, but may work with few other browsers too.

nixos-unstable 10
- nixpkgs-unstable 10
- nixos-unstable-small 10

pkgs.gnomeExtensions.show-apps-at-top

Put show apps icon at top in Gnome default dash

nixos-unstable 10
- nixpkgs-unstable 10

Package maintainers

@bobby285271 Bobby Rong <rjl931189261@126.com>
@getchoo Seth Flynn <getchoo@tuta.io>
@honnip Jung seungwoo <me@honnip.page>