Nixpkgs security tracker

Permalink CVE-2025-39580

5.8 MEDIUM

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): LOW
Privileges required (PR): NONE
User interaction (UI): NONE
Scope (S): CHANGED
Confidentiality impact (C): LOW
Integrity impact (I): NONE
Availability impact (A): NONE

created 1 year ago

WordPress Dashi <= 3.1.8 - Broken Access Control Vulnerability

Missing Authorization vulnerability in jidaikobo Dashi allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Dashi: from n/a through 3.1.8.

References

https://patchstack.com/database/wordpress/plugin/dashi/vulnerability/wordpress-… vdb-entry

Affected products

dashi

=<3.1.8

Matching in nixpkgs

pkgs.dashing

Dash Generator Script for Any HTML

nixos-unstable 0.4.0
- nixpkgs-unstable 0.4.0
- nixos-unstable-small 0.4.0

pkgs.python311Packages.dashing

Terminal dashboards for Python

nixos-unstable 0.1.0
- nixpkgs-unstable 0.1.0
- nixos-unstable-small 0.1.0

pkgs.python312Packages.dashing