Nixpkgs security tracker
3.1 LOW
- CVSS version: 3.1
- Attack vector (AV):
- Attack complexity (AC):
- Privileges required (PR):
- User interaction (UI):
- Scope (S):
- Confidentiality impact (C):
- Integrity impact (I):
- Availability impact (A):
Activity log
- Created suggestion
Chia Blockchain send_transaction cross-site request forgery
A vulnerability was detected in Chia Blockchain 2.1.0. Impacted is an unknown function of the file /send_transaction. The manipulation results in cross-site request forgery. The attack may be performed from remote. The attack requires a high level of complexity. The exploitability is considered difficult. The exploit is now public and may be used. The vendor was informed early via email. A separate report via bugbounty was rejected with the reason "This is by design. The user is responsible for host security".
References
Affected products
- ==2.1.0
Matching in nixpkgs
pkgs.python312Packages.blockchain
Python client Blockchain Bitcoin Developer API
pkgs.python312Packages.python-blockchain-api
Python API for interacting with blockchain.info
pkgs.python313Packages.python-blockchain-api
Python API for interacting with blockchain.info
pkgs.python314Packages.python-blockchain-api
Python API for interacting with blockchain.info
pkgs.haskellPackages.amazonka-managedblockchain
Amazon Managed Blockchain SDK
-
nixos-unstable 2.0-unstable-2025-04-16
- nixpkgs-unstable 2.0-unstable-2025-04-16
- nixos-unstable-small 2.0-unstable-2025-04-16
-
nixos-25.11 2.0-unstable-2025-04-16
- nixos-25.11-small 2.0-unstable-2025-04-16
- nixpkgs-25.11-darwin 2.0-unstable-2025-04-16
pkgs.python312Packages.mypy-boto3-managedblockchain
Type annotations for boto3 managedblockchain
-
nixos-25.11 boto3-managedblockchain-1.41.0
- nixos-25.11-small boto3-managedblockchain-1.41.0
- nixpkgs-25.11-darwin boto3-managedblockchain-1.41.0
pkgs.python313Packages.mypy-boto3-managedblockchain
Type annotations for boto3 managedblockchain
-
nixos-unstable boto3-managedblockchain-1.42.3
- nixpkgs-unstable boto3-managedblockchain-1.42.3
- nixos-unstable-small boto3-managedblockchain-1.42.3
-
nixos-25.11 boto3-managedblockchain-1.41.0
- nixos-25.11-small boto3-managedblockchain-1.41.0
- nixpkgs-25.11-darwin boto3-managedblockchain-1.41.0
pkgs.python314Packages.mypy-boto3-managedblockchain
Type annotations for boto3 managedblockchain
-
nixos-unstable boto3-managedblockchain-1.42.3
- nixpkgs-unstable boto3-managedblockchain-1.42.3
- nixos-unstable-small boto3-managedblockchain-1.42.3
pkgs.python312Packages.mypy-boto3-managedblockchain-query
Type annotations for boto3 managedblockchain-query
-
nixos-25.11 boto3-managedblockchain-query-1.41.0
- nixos-25.11-small boto3-managedblockchain-query-1.41.0
- nixpkgs-25.11-darwin boto3-managedblockchain-query-1.41.0
pkgs.python313Packages.mypy-boto3-managedblockchain-query
Type annotations for boto3 managedblockchain-query
-
nixos-unstable boto3-managedblockchain-query-1.42.3
- nixpkgs-unstable boto3-managedblockchain-query-1.42.3
- nixos-unstable-small boto3-managedblockchain-query-1.42.3
-
nixos-25.11 boto3-managedblockchain-query-1.41.0
- nixos-25.11-small boto3-managedblockchain-query-1.41.0
- nixpkgs-25.11-darwin boto3-managedblockchain-query-1.41.0
pkgs.python314Packages.mypy-boto3-managedblockchain-query
Type annotations for boto3 managedblockchain-query
-
nixos-unstable boto3-managedblockchain-query-1.42.3
- nixpkgs-unstable boto3-managedblockchain-query-1.42.3
- nixos-unstable-small boto3-managedblockchain-query-1.42.3
pkgs.python312Packages.types-aiobotocore-managedblockchain
Type annotations for aiobotocore managedblockchain
pkgs.python313Packages.types-aiobotocore-managedblockchain
Type annotations for aiobotocore managedblockchain
pkgs.python312Packages.types-aiobotocore-managedblockchain-query
Type annotations for aiobotocore managedblockchain-query
Package maintainers
-
@fabaff Fabian Affolter <mail@fabian-affolter.ch>
-
@mbalatsko Maksym Balatsko <mbalatsko@gmail.com>
-
@JamieMagee Jamie Magee <jamie.magee@gmail.com>