Nixpkgs security tracker

Untriaged

Permalink CVE-2026-39473

created 6 days, 21 hours ago

WordPress Simple History plugin <= 5.24.0 - Sensitive Data Exposure vulnerability

Insertion of Sensitive Information Into Sent Data vulnerability in Pär Thernström Simple History simple-history allows Retrieve Embedded Sensitive Data.This issue affects Simple History: from n/a through <= 5.24.0.

References

https://patchstack.com/database/Wordpress/Plugin/simple-history/vulnerability/w… vdb-entry

Affected products

simple-history

=<5.24.0

Matching in nixpkgs

pkgs.python312Packages.django-simple-history

Module to store Django model state on every create/update/delete

nixos-25.11 3.10.1
- nixos-25.11-small 3.10.1
- nixpkgs-25.11-darwin 3.10.1

pkgs.python313Packages.django-simple-history

Module to store Django model state on every create/update/delete

nixos-unstable 3.11.0
- nixpkgs-unstable 3.11.0
- nixos-unstable-small 3.11.0
nixos-25.11 3.10.1
- nixos-25.11-small 3.10.1
- nixpkgs-25.11-darwin 3.10.1

pkgs.python314Packages.django-simple-history

Module to store Django model state on every create/update/delete

nixos-unstable 3.11.0
- nixpkgs-unstable 3.11.0
- nixos-unstable-small 3.11.0

Package maintainers

@DerDennisOP Dennis <dennish@wuitz.de>

Suggestion detail

References

Affected products

Matching in nixpkgs

pkgs.python312Packages.django-simple-history

pkgs.python313Packages.django-simple-history

pkgs.python314Packages.django-simple-history

Package maintainers