Nixpkgs security tracker

Login with GitHub
⚠️ You are using a production deployment that is still only suitable for demo purposes. Any work done in this might be wiped later without notice.

Suggestions search

Untriaged
Filter by:
With package: gh-skyline

Found 1 matching suggestions

View:
Compact
Detailed
Permalink CVE-2026-40212
5.4 MEDIUM
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): LOW
  • Privileges required (PR): LOW
  • User interaction (UI): REQUIRED
  • Scope (S): CHANGED
  • Confidentiality impact (C): LOW
  • Integrity impact (I): LOW
  • Availability impact (A): NONE
created 4 days, 9 hours ago
OpenStack Skyline before 5.0.1, 6.0.0, and 7.0.0 has a DOM-based …

OpenStack Skyline before 5.0.1, 6.0.0, and 7.0.0 has a DOM-based Cross-Site Scripting (XSS) vulnerability in the console because document.write is used unsafely, which is relevant in scenarios where administrators use the console web interface to view instance console logs.

Affected products

Skyline
  • ==6.0.0
  • <5.0.1
  • ==7.0.0

Matching in nixpkgs

pkgs.gh-skyline

Generate a 3D model of your GitHub contribution history

Package maintainers