Nixpkgs security tracker

Permalink CVE-2025-22777

created 2 weeks, 2 days ago

WordPress GiveWP Plugin <= 3.19.3 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in StellarWP GiveWP give allows Object Injection.This issue affects GiveWP: from n/a through <= 3.19.3.

References

https://patchstack.com/database/Wordpress/Plugin/give/vulnerability/wordpress-g… vdb-entry
https://securityonline.info/cve-2025-22777-cvss-9-8-critical-security-alert-for… third-party-advisory

Affected products

give

=<3.19.3

Matching in nixpkgs

pkgs.filegive

Easy p2p file sending program

nixos-unstable 2022-05-29
- nixpkgs-unstable 2022-05-29
- nixos-unstable-small 2022-05-29
nixos-25.11 2022-05-29
- nixos-25.11-small 2022-05-29
- nixpkgs-25.11-darwin 2022-05-29

pkgs.haskellPackages.GiveYouAHead

to auto-do somethings

nixos-unstable 0.2.2.3
- nixpkgs-unstable 0.2.2.3
- nixos-unstable-small 0.2.2.3
nixos-25.11 0.2.2.3
- nixos-25.11-small 0.2.2.3
- nixpkgs-25.11-darwin 0.2.2.3

Suggestions search

References

Affected products

Matching in nixpkgs

pkgs.filegive

pkgs.haskellPackages.GiveYouAHead