NIXPKGS-2025-0010

published on 23 Sep 2025

Permalink CVE-2025-31384

updated 4 months, 1 week ago by @Erethon Activity log

Created automatic suggestion 9 months, 4 weeks ago
@LeSuisse dismissed 9 months, 4 weeks ago
@Erethon accepted 7 months, 1 week ago
@Erethon added maintainer @Erethon 4 months, 2 weeks ago
@Erethon removed maintainer @Erethon 4 months, 2 weeks ago
@Erethon published on GitHub 4 months, 1 week ago

WordPress Videos plugin <= 1.0.5 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Aviplugins Videos allows Reflected XSS.This issue affects Videos: from n/a through 1.0.5.

Affected products

videos

=<1.0.5

Matching in nixpkgs

pkgs.pantheon.elementary-videos

Video player and library app designed for elementary OS

nixos-unstable 8.0.1
- nixpkgs-unstable 8.0.1
- nixos-unstable-small 8.0.1

Package maintainers

@davidak David Kleuker <post@davidak.de>
@bobby285271 Bobby Rong <rjl931189261@126.com>

Nixpkgs Security Tracker

Details of issue NIXPKGS-2025-0010

Affected products

Matching in nixpkgs

pkgs.pantheon.elementary-videos

Package maintainers