Nixpkgs security tracker

Login with GitHub

⚠️ You are using a production deployment that is still only suitable for demo purposes. Any work done in this might be wiped later without notice.

Suggestion detail

Untriaged

Permalink CVE-2026-0695

8.7 HIGH

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): LOW
Privileges required (PR): LOW
User interaction (UI): REQUIRED
Scope (S): CHANGED
Confidentiality impact (C): HIGH
Integrity impact (I): HIGH
Availability impact (A): NONE

created 3 months ago

Stored XSS in Time Entry Audit Trail

In ConnectWise PSA versions older than 2026.1, Time Entry notes stored in the Time Entry Audit Trail may be rendered without applying output encoding to certain content. Under specific conditions, this may allow stored script code to execute in the context of a user’s browser when the affected content is displayed.

References

Affected products

PSA

==All versions prior to 2026.1

Matching in nixpkgs

pkgs.mopsa

Modular and Open Platform for Static Analysis using Abstract Interpretation

nixos-unstable 1.1
- nixpkgs-unstable 1.1
- nixos-unstable-small 1.1
nixos-25.11 1.1
- nixpkgs-25.11-darwin 1.1

pkgs.sipsak

SIP Swiss army knife

nixos-unstable 4.5.12.1
- nixpkgs-unstable 4.5.12.1
- nixos-unstable-small 4.5.12.1
nixos-25.11 4.5.12.1
- nixpkgs-25.11-darwin 4.5.12.1

pkgs.sharpsat-td

Fast solver for the #SAT model counting problem

nixos-unstable 0-unstable-2021-09-05
- nixpkgs-unstable 0-unstable-2021-09-05
- nixos-unstable-small 0-unstable-2021-09-05
nixos-25.11 0-unstable-2021-09-05
- nixpkgs-25.11-darwin 0-unstable-2021-09-05

pkgs.purescript-psa

Error/Warning reporting frontend for psc

nixos-unstable 0.9.0
- nixpkgs-unstable 0.9.0
- nixos-unstable-small 0.9.0
nixos-25.11 0.9.0
- nixpkgs-25.11-darwin 0.9.0

pkgs.svndumpsanitizer

Alternative to svndumpfilter that discovers which nodes should actually be kept

nixos-unstable 2.0.7
- nixpkgs-unstable 2.0.7
- nixos-unstable-small 2.0.7
nixos-25.11 2.0.7
- nixpkgs-25.11-darwin 2.0.7

pkgs.phpPackages.psalm

Static analysis tool for finding errors in PHP applications

nixos-25.11 6.13.1
- nixpkgs-25.11-darwin 6.13.1

pkgs.ocamlPackages.mopsa

Modular and Open Platform for Static Analysis using Abstract Interpretation

nixos-25.11 1.1
- nixpkgs-25.11-darwin 1.1

pkgs.php82Packages.psalm

Static analysis tool for finding errors in PHP applications

nixos-unstable 6.8.6
- nixpkgs-unstable 6.8.6
- nixos-unstable-small 6.8.6
nixos-25.11 6.13.1
- nixpkgs-25.11-darwin 6.13.1

pkgs.php83Packages.psalm

Static analysis tool for finding errors in PHP applications

nixos-unstable 6.8.6
- nixpkgs-unstable 6.8.6
- nixos-unstable-small 6.8.6
nixos-25.11 6.13.1
- nixpkgs-25.11-darwin 6.13.1

pkgs.php84Packages.psalm

Static analysis tool for finding errors in PHP applications

nixos-unstable 6.8.6
- nixpkgs-unstable 6.8.6
- nixos-unstable-small 6.8.6

pkgs.haskellPackages.cpsa

Symbolic cryptographic protocol analyzer

nixos-unstable 4.4.6
- nixpkgs-unstable 4.4.6
- nixos-unstable-small 4.4.6
nixos-25.11 4.4.7
- nixpkgs-25.11-darwin 4.4.7

pkgs.python312Packages.tapsaff

Provides an API for requesting information from taps-aff.co.uk

nixos-25.11 0.2.1
- nixpkgs-25.11-darwin 0.2.1

pkgs.python313Packages.tapsaff

Provides an API for requesting information from taps-aff.co.uk

nixos-25.11 0.2.1
- nixpkgs-25.11-darwin 0.2.1

pkgs.nodePackages.purescript-psa

Error/Warning reporting frontend for psc

nixos-25.11 0.9.0
- nixpkgs-25.11-darwin 0.9.0

pkgs.python312Packages.markupsafe

Implements a XML/HTML/XHTML Markup safe string

nixos-unstable 3.0.2
- nixpkgs-unstable 3.0.2
- nixos-unstable-small 3.0.2
nixos-25.11 3.0.3
- nixpkgs-25.11-darwin 3.0.3

pkgs.python312Packages.psautohint

Script to normalize the XML and other data inside of a UFO

nixos-unstable 2.4.0
- nixpkgs-unstable 2.4.0
- nixos-unstable-small 2.4.0
nixos-25.11 2.4.0
- nixpkgs-25.11-darwin 2.4.0

pkgs.python313Packages.markupsafe

Implements a XML/HTML/XHTML Markup safe string

nixos-unstable 3.0.2
- nixpkgs-unstable 3.0.2
- nixos-unstable-small 3.0.2
nixos-25.11 3.0.3
- nixpkgs-25.11-darwin 3.0.3

pkgs.python313Packages.psautohint

Script to normalize the XML and other data inside of a UFO

nixos-unstable 2.4.0
- nixpkgs-unstable 2.4.0
- nixos-unstable-small 2.4.0
nixos-25.11 2.4.0
- nixpkgs-25.11-darwin 2.4.0

pkgs.terraform-providers.vpsadmin

None

nixos-unstable 1.2.0
- nixpkgs-unstable 1.2.0
- nixos-unstable-small 1.2.0

pkgs.nodePackages_latest.purescript-psa

Error/Warning reporting frontend for psc

nixos-25.11 0.9.0
- nixpkgs-25.11-darwin 0.9.0

pkgs.python312Packages.types-markupsafe

Typing stubs for MarkupSafe

nixos-unstable 1.1.10
- nixpkgs-unstable 1.1.10
- nixos-unstable-small 1.1.10
nixos-25.11 1.1.10
- nixpkgs-25.11-darwin 1.1.10

pkgs.python313Packages.types-markupsafe

Typing stubs for MarkupSafe

nixos-unstable 1.1.10
- nixpkgs-unstable 1.1.10
- nixos-unstable-small 1.1.10
nixos-25.11 1.1.10
- nixpkgs-25.11-darwin 1.1.10

pkgs.terraform-providers.vpsfreecz_vpsadmin

None

nixos-25.11 1.2.0
- nixpkgs-25.11-darwin 1.2.0

Package maintainers

@vbgl Vincent Laporte <Vincent.Laporte@gmail.com>
@aanderse Aaron Andersen <aaron@fosslib.net>
@drupol Pol Dellaiera <pol.dellaiera@protonmail.com>
@talyz Kim Lindberger <kim.lindberger@gmail.com>
@Ma27 Maximilian Bosch <maximilian@mbosch.me>
@piotrkwiecinski Piotr Kwiecinski <piokwiecinski+nixpkgs@gmail.com>
@sternenseemann Lukas Epple <sternenseemann@systemli.org>
@nim65s Guilhem Saurel <guilhem.saurel@laas.fr>
@risicle Robert Scott <code@humanleg.org.uk>
@sheenobu Sheena Artrip <sheena.artrip@gmail.com>
@lafrenierejm Joseph LaFreniere <joseph@lafreniere.xyz>
@patka-123 patka <patka@patka.dev>
@JamieMagee Jamie Magee <jamie.magee@gmail.com>