Nixpkgs security tracker

Login with GitHub

⚠️ You are using a production deployment that is still only suitable for demo purposes. Any work done in this might be wiped later without notice.

Suggestion detail

Untriaged

Permalink CVE-2026-27023

5.0 MEDIUM

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): LOW
Privileges required (PR): LOW
User interaction (UI): NONE
Scope (S): CHANGED
Confidentiality impact (C): LOW
Integrity impact (I): NONE
Availability impact (A): NONE

created 1 month, 2 weeks ago Activity log

Created suggestion 1 month, 2 weeks ago

Twenty: SSRF protection bypass via HTTP redirect following in secure HTTP client

Twenty is an open source CRM. Prior to version 1.18, the SSRF protection in SecureHttpClientService validated request URLs at the request level but did not validate redirect targets. An authenticated user who could control outbound request URLs (e.g., webhook endpoints, image URLs) could bypass private IP blocking by redirecting through an attacker-controlled server. This issue has been patched in version 1.18.

References

https://github.com/twentyhq/twenty/security/advisories/GHSA-wm7q-rvq3-x8q9 x_refsource_CONFIRM
https://github.com/twentyhq/twenty/releases/tag/v1.18.0 x_refsource_MISC

Affected products

twenty

==< 1.18

Matching in nixpkgs

pkgs.gnome-2048

Obtain the 2048 tile

nixos-unstable 3.38.2
- nixpkgs-unstable 3.38.2
- nixos-unstable-small 3.38.2
nixos-25.11 3.38.2
- nixos-25.11-small 3.38.2
- nixpkgs-25.11-darwin 3.38.2

pkgs.wordpressPackages.themes.twentytwenty

None

nixos-unstable 3.0
- nixpkgs-unstable 3.0
- nixos-unstable-small 3.0
nixos-25.11 2.9
- nixos-25.11-small 2.9
- nixpkgs-25.11-darwin 2.9

pkgs.wordpressPackages.themes.twentynineteen

None

nixos-unstable 3.2
- nixpkgs-unstable 3.2
- nixos-unstable-small 3.2
nixos-25.11 3.1
- nixos-25.11-small 3.1
- nixpkgs-25.11-darwin 3.1

pkgs.wordpressPackages.themes.twentytwentyone

None

nixos-unstable 2.7
- nixpkgs-unstable 2.7
- nixos-unstable-small 2.7
nixos-25.11 2.5
- nixos-25.11-small 2.5
- nixpkgs-25.11-darwin 2.5

pkgs.wordpressPackages.themes.twentytwentytwo

None

nixos-unstable 2.1
- nixpkgs-unstable 2.1
- nixos-unstable-small 2.1
nixos-25.11 2.0
- nixos-25.11-small 2.0
- nixpkgs-25.11-darwin 2.0

pkgs.wordpressPackages.themes.twentytwentyfive

None

nixos-unstable 1.4
- nixpkgs-unstable 1.4
- nixos-unstable-small 1.4
nixos-25.11 1.2
- nixos-25.11-small 1.2
- nixpkgs-25.11-darwin 1.2

pkgs.wordpressPackages.themes.twentytwentyfour

None

nixos-unstable 1.4
- nixpkgs-unstable 1.4
- nixos-unstable-small 1.4
nixos-25.11 1.3
- nixos-25.11-small 1.3
- nixpkgs-25.11-darwin 1.3

pkgs.wordpressPackages.themes.twentytwentythree

None

nixos-unstable 1.6
- nixpkgs-unstable 1.6
- nixos-unstable-small 1.6
nixos-25.11 1.6
- nixos-25.11-small 1.6
- nixpkgs-25.11-darwin 1.6

Package maintainers

@hedning Tor Hedin Brønner <torhedinbronner@gmail.com>
@jtojnar Jan Tojnar <jtojnar@gmail.com>
@bobby285271 Bobby Rong <rjl931189261@126.com>
@dasj19 Daniel Șerbănescu <daniel@serbanescu.dk>