Nixpkgs security tracker

Untriaged

Permalink CVE-2025-22509

9.8 CRITICAL

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): LOW
Privileges required (PR): NONE
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): HIGH
Integrity impact (I): HIGH
Availability impact (A): HIGH

created 2 months, 4 weeks ago

WordPress Atlas theme <= 2.1.0 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in TMRW-studio Atlas atlas allows PHP Local File Inclusion.This issue affects Atlas: from n/a through <= 2.1.0.

References

Affected products

atlas

=<<= 2.1.0

Matching in nixpkgs

pkgs.atlas

Manage your database schema as code

nixos-unstable 0.36.1
- nixpkgs-unstable 0.36.1
- nixos-unstable-small 0.36.1
nixos-25.11 0.38.0
- nixpkgs-25.11-darwin 0.38.0

pkgs.nim-atlas

Nim package cloner

nixos-unstable 2023-09-22
- nixpkgs-unstable 2023-09-22
- nixos-unstable-small 2023-09-22
nixos-25.11 2023-09-22
- nixpkgs-25.11-darwin 2023-09-22

pkgs.atlassian-cli

Integrated family of CLI’s for various Atlassian applications

nixos-unstable 9.6.0
- nixpkgs-unstable 9.6.0
- nixos-unstable-small 9.6.0

pkgs.ripe-atlas-tools

RIPE ATLAS project tools

nixos-unstable 3.1.0
- nixpkgs-unstable 3.1.0
- nixos-unstable-small 3.1.0
nixos-25.11 3.1.0
- nixpkgs-25.11-darwin 3.1.0

pkgs.mongodb-atlas-cli

CLI utility to manage MongoDB Atlas from the terminal

nixos-unstable 1.46.2
- nixpkgs-unstable 1.46.2
- nixos-unstable-small 1.46.2
nixos-25.11 1.51.0
- nixpkgs-25.11-darwin 1.51.0

pkgs.atlassian-plugin-sdk

Atlassian Plugin SDK

nixos-unstable 9.1.1
- nixpkgs-unstable 9.1.1
- nixos-unstable-small 9.1.1
nixos-25.11 9.1.1
- nixpkgs-25.11-darwin 9.1.1

pkgs.haskellPackages.atlas

Skyline rectangle packing

nixos-unstable 0
- nixpkgs-unstable 0
- nixos-unstable-small 0
nixos-25.11 0
- nixpkgs-25.11-darwin 0

pkgs.prometheus-atlas-exporter

Prometheus exporter for RIPE Atlas measurement results

nixos-unstable 1.0.4
- nixpkgs-unstable 1.0.4
- nixos-unstable-small 1.0.4
nixos-25.11 1.0.4
- nixpkgs-25.11-darwin 1.0.4

pkgs.python312Packages.chatlas

Friendly guide to building LLM chat apps in Python with less effort and more clarity

nixos-25.11 0.13.2
- nixpkgs-25.11-darwin 0.13.2

pkgs.python313Packages.chatlas

Friendly guide to building LLM chat apps in Python with less effort and more clarity

nixos-25.11 0.13.2
- nixpkgs-25.11-darwin 0.13.2

pkgs.terraform-providers.mongodbatlas

None

nixos-unstable 1.39.0
- nixpkgs-unstable 1.39.0
- nixos-unstable-small 1.39.0
nixos-25.11 2.2.0
- nixpkgs-25.11-darwin 2.2.0

pkgs.python312Packages.ripe-atlas-sagan

Parsing library for RIPE Atlas measurements results

nixos-unstable 1.3.1
- nixpkgs-unstable 1.3.1
- nixos-unstable-small 1.3.1
nixos-25.11 1.3.1
- nixpkgs-25.11-darwin 1.3.1

pkgs.python313Packages.ripe-atlas-sagan