Nixpkgs security tracker
Untriaged
Permalink
CVE-2023-26020
5.7 MEDIUM
- CVSS version: 3.1
- Attack vector (AV): NETWORK
- Attack complexity (AC): HIGH
- Privileges required (PR): HIGH
- User interaction (UI): REQUIRED
- Scope (S): UNCHANGED
- Confidentiality impact (C): NONE
- Integrity impact (I): HIGH
- Availability impact (A): HIGH
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in Crafter Studio
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Crafter Studio on Linux, MacOS, Windows, x86, ARM, 64 bit allows SQL Injection.This issue affects CrafterCMS v4.0 from 4.0.0 through 4.0.1, and v3.1 from 3.1.0 through 3.1.26.
References
Affected products
Studio
- =<4.0.1
- =<3.1.26
Matching in nixpkgs
pkgs.rstudio
Set of integrated tools for the R language
-
nixos-unstable 2024.04.2+764
- nixpkgs-unstable 2024.04.2+764
- nixos-unstable-small 2024.04.2+764
pkgs.rstudio-server
Set of integrated tools for the R language
-
nixos-unstable 2024.04.2+764
- nixpkgs-unstable 2024.04.2+764
- nixos-unstable-small 2024.04.2+764
pkgs.rstudioWrapper
None
-
nixos-unstable 2024.04.2+764-wrapper
- nixpkgs-unstable 2024.04.2+764-wrapper
- nixos-unstable-small 2024.04.2+764-wrapper
pkgs.rstudioServerWrapper
None
-
nixos-unstable 2024.04.2+764-wrapper
- nixpkgs-unstable 2024.04.2+764-wrapper
- nixos-unstable-small 2024.04.2+764-wrapper
pkgs.vscode-extensions.visualstudioexptteam.vscodeintellicode
AI-assisted development
pkgs.vscode-extensions.visualstudioexptteam.intellicode-api-usage-examples
See relevant code examples from GitHub for over 100K different APIs right in your editor
Package maintainers
-
@cfhammill Chris Hammill <cfhammill@gmail.com>
-
@ciil Simon Lackerbauer <simon@lackerbauer.com>
-
@TheMaxMur Maxim Muravev <muravjev.mak@yandex.ru>