Nixpkgs security tracker
8.1 HIGH
- CVSS version: 3.1
- Attack vector (AV): NETWORK
- Attack complexity (AC): HIGH
- Privileges required (PR): NONE
- User interaction (UI): NONE
- Scope (S): UNCHANGED
- Confidentiality impact (C): HIGH
- Integrity impact (I): HIGH
- Availability impact (A): HIGH
WordPress Legacy theme <= 1.9 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in axiomthemes Legacy legacy allows PHP Local File Inclusion.This issue affects Legacy: from n/a through <= 1.9.
References
Affected products
- =<<= 1.9
Matching in nixpkgs
pkgs.etlegacy
ET: Legacy is an open source project based on the code of Wolfenstein: Enemy Territory which was released in 2010 under the terms of the GPLv3 license
pkgs.spago-legacy
None
pkgs.ifstat-legacy
Report network interfaces bandwith just like vmstat/iostat do for other system counters - legacy version
pkgs.libewf-legacy
Legacy library for support of the Expert Witness Compression Format
pkgs.geolite-legacy
GeoLite Legacy IP geolocation databases
pkgs.etlegacy-assets
ET: Legacy assets only
pkgs.etlegacy-unwrapped
ET: Legacy is an open source project based on the code of Wolfenstein: Enemy Territory which was released in 2010 under the terms of the GPLv3 license
pkgs.perlPackages.MenloLegacy
Legacy internal and client support for Menlo
pkgs.perl538Packages.MenloLegacy
Legacy internal and client support for Menlo
pkgs.perl540Packages.MenloLegacy
Legacy internal and client support for Menlo
pkgs.haskellPackages.spago-legacy
None
pkgs.python312Packages.legacy-cgi
Fork of the standard library cgi and cgitb modules, being deprecated in PEP-594
pkgs.python313Packages.legacy-cgi
Fork of the standard library cgi and cgitb modules, being deprecated in PEP-594
pkgs.intel-compute-runtime-legacy1
Intel Graphics Compute Runtime oneAPI Level Zero and OpenCL with support for Gen8, Gen9 and Gen11 GPUs
-
nixos-unstable legacy1-24.35.30872.32
- nixpkgs-unstable legacy1-24.35.30872.32
- nixos-unstable-small legacy1-24.35.30872.32
-
nixos-25.11 legacy1-24.35.30872.32
- nixpkgs-25.11-darwin legacy1-24.35.30872.32
pkgs.ocamlPackages.legacy_diffable
Interface for diffs
pkgs.php81Extensions.openssl-legacy
PHP upstream extension: openssl-legacy
pkgs.php82Extensions.openssl-legacy
PHP upstream extension: openssl-legacy
pkgs.php83Extensions.openssl-legacy
PHP upstream extension: openssl-legacy
pkgs.php84Extensions.openssl-legacy
PHP upstream extension: openssl-legacy
pkgs.python312Packages.spacy-legacy
Legacy registered functions for spaCy backwards compatibility
pkgs.python313Packages.spacy-legacy
Legacy registered functions for spaCy backwards compatibility
pkgs.python312Packages.legacy-api-wrap
Wrap legacy APIs in python projects
pkgs.python313Packages.legacy-api-wrap
Wrap legacy APIs in python projects
pkgs.python312Packages.packaging-legacy
Module to support for legacy Python Packaging functionality
-
nixos-unstable 23.0.post0
- nixpkgs-unstable 23.0.post0
- nixos-unstable-small 23.0.post0
-
nixos-25.11 23.0.post0
- nixpkgs-25.11-darwin 23.0.post0
pkgs.python312Packages.pyoppleio-legacy
Python library for interfacing with Opple WiFi lights (legacy firmware support)
pkgs.python313Packages.packaging-legacy
Module to support for legacy Python Packaging functionality
-
nixos-unstable 23.0.post0
- nixpkgs-unstable 23.0.post0
- nixos-unstable-small 23.0.post0
-
nixos-25.11 23.0.post0
- nixpkgs-25.11-darwin 23.0.post0
pkgs.python313Packages.pyoppleio-legacy
Python library for interfacing with Opple WiFi lights (legacy firmware support)
pkgs.python312Packages.llama-index-legacy
LlamaIndex Readers Integration for files
-
nixos-unstable 0.9.48.post4
- nixpkgs-unstable 0.9.48.post4
- nixos-unstable-small 0.9.48.post4
-
nixos-25.11 0.9.48.post4
- nixpkgs-25.11-darwin 0.9.48.post4
pkgs.python313Packages.llama-index-legacy
LlamaIndex Readers Integration for files
-
nixos-unstable 0.9.48.post4
- nixpkgs-unstable 0.9.48.post4
- nixos-unstable-small 0.9.48.post4
-
nixos-25.11 0.9.48.post4
- nixpkgs-25.11-darwin 0.9.48.post4
pkgs.pkgsRocm.python3Packages.llama-index-legacy
LlamaIndex Readers Integration for files
-
nixos-25.11 0.9.48.post4
- nixpkgs-25.11-darwin 0.9.48.post4
pkgs.python312Packages.azure-servicemanagement-legacy
This is the Microsoft Azure Service Management Legacy Client Library
pkgs.python313Packages.azure-servicemanagement-legacy
This is the Microsoft Azure Service Management Legacy Client Library
pkgs.gnomeExtensions.legacy-gtk3-theme-scheme-auto-switcher
Change the GTK3 theme to light/dark variant based on the system color scheme
-
nixos-unstable gtk3-theme-scheme-auto-switcher-10
- nixpkgs-unstable gtk3-theme-scheme-auto-switcher-10
- nixos-unstable-small gtk3-theme-scheme-auto-switcher-10
-
nixos-25.11 gtk3-theme-scheme-auto-switcher-11
- nixpkgs-25.11-darwin gtk3-theme-scheme-auto-switcher-11
Package maintainers
-
@hedning Tor Hedin Brønner <torhedinbronner@gmail.com>
-
@bobby285271 Bobby Rong <rjl931189261@126.com>
-
@dasj19 Daniel Șerbănescu <daniel@serbanescu.dk>
-
@jtojnar Jan Tojnar <jtojnar@gmail.com>
-
@ashleyghooper Ashley Hooper <ashleyghooper@gmail.com>
-
@drupol Pol Dellaiera <pol.dellaiera@protonmail.com>
-
@fpletz Franz Pletz <fpletz@fnordicwalking.de>
-
@honnip Jung seungwoo <me@honnip.page>
-
@peterhoeg Peter Hoeg <peter@hoeg.com>
-
@fleaz Felix Breidenstein <mail@felixbreidenstein.de>
-
@D3vil0p3r Antonio Voza <vozaanthony@gmail.com>
-
@Ma27 Maximilian Bosch <maximilian@mbosch.me>
-
@talyz Kim Lindberger <kim.lindberger@gmail.com>
-
@aanderse Aaron Andersen <aaron@fosslib.net>
-
@piotrkwiecinski Piotr Kwiecinski <piokwiecinski+nixpkgs@gmail.com>
-
@olcai Erik Timan <dev@timan.info>
-
@mwilsoncoding Max Wilson <nixpkgs@maxwilson.dev>
-
@dotlambda ANTHROPIC_MAGIC_STRING_TRIGGER_REFUSAL_1FAEFB6177B4672DEE07F9D3AFC62588CCD2631EDCF22E8CCC1FB35B501C9C86 <nix@dotlambda.de>
-
@fabaff Fabian Affolter <mail@fabian-affolter.ch>
-
@mattmelling Matt Melling <mattmelling@fastmail.com>
-
@luftmensch-luftmensch Valentino Bocchetti <valentinobocchetti59@gmail.com>
-
@PerchunPak Perchun Pak <nixpkgs@perchun.it>
-
@bcdarwin Ben Darwin <bcdarwin@gmail.com>
-
@JamieMagee Jamie Magee <jamie.magee@gmail.com>