Nixpkgs security tracker

Permalink CVE-2025-67980

created 1 month, 4 weeks ago

WordPress Hara theme <= 1.2.17 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in thembay Hara hara allows PHP Local File Inclusion.This issue affects Hara: from n/a through <= 1.2.17.

References

https://patchstack.com/database/Wordpress/Theme/hara/vulnerability/wordpress-ha… vdb-entry

Affected products

hara

=<<= 1.2.17

Matching in nixpkgs

pkgs.charasay

Future of cowsay - Colorful characters saying something

nixos-unstable 3.3.0
- nixpkgs-unstable 3.3.0
- nixos-unstable-small 3.3.0
nixos-25.11 3.3.0
- nixos-25.11-small 3.3.0
- nixpkgs-25.11-darwin 3.3.0

pkgs.gnome-characters

Simple utility application to find and insert unusual characters

nixos-unstable 49.1
- nixpkgs-unstable 49.1
- nixos-unstable-small 49.1
nixos-25.11 49.1
- nixos-25.11-small 49.1
- nixpkgs-25.11-darwin 49.1

pkgs.keepass-charactercopy

None

nixos-unstable 1.0.0
- nixpkgs-unstable 1.0.0
- nixos-unstable-small 1.0.0
nixos-25.11 1.0.0
- nixos-25.11-small 1.0.0
- nixpkgs-25.11-darwin 1.0.0

pkgs.unicode-character-database

Unicode Character Database

nixos-unstable 17.0.0
- nixpkgs-unstable 17.0.0
- nixos-unstable-small 17.0.0
nixos-25.11 17.0.0
- nixos-25.11-small 17.0.0
- nixpkgs-25.11-darwin 17.0.0

pkgs.haskellPackages.character-ps

Pattern synonyms for ASCII characters for Word8, Word16 etc

nixos-unstable 0.1
- nixpkgs-unstable 0.1
- nixos-unstable-small 0.1
nixos-25.11 0.1
- nixos-25.11-small 0.1
- nixpkgs-25.11-darwin 0.1

pkgs.coqPackages.mathcomp-character

None

nixos-unstable core9.0-mathcomp-character-2.5.0
- nixpkgs-unstable core9.0-mathcomp-character-2.5.0
- nixos-unstable-small core9.0-mathcomp-character-2.5.0
nixos-25.11 2.5.0
- nixos-25.11-small 2.5.0
- nixpkgs-25.11-darwin 2.5.0

pkgs.rocqPackages.mathcomp-character

None

nixos-unstable core9.0-mathcomp-character-2.5.0
- nixpkgs-unstable core9.0-mathcomp-character-2.5.0
- nixos-unstable-small core9.0-mathcomp-character-2.5.0

pkgs.python312Packages.characteristic

Python attributes without boilerplate

nixos-25.11 14.3.0
- nixos-25.11-small 14.3.0
- nixpkgs-25.11-darwin 14.3.0

pkgs.python313Packages.characteristic

Python attributes without boilerplate

nixos-25.11 14.3.0
- nixos-25.11-small 14.3.0
- nixpkgs-25.11-darwin 14.3.0

pkgs.magnetophonDSP.CharacterCompressor

Compressor with character. For jack and lv2

nixos-unstable 0.3.3
- nixpkgs-unstable 0.3.3
- nixos-unstable-small 0.3.3
nixos-25.11 0.3.3
- nixos-25.11-small 0.3.3
- nixpkgs-25.11-darwin 0.3.3

pkgs.python312Packages.character-encoding-utils

Some character encoding utils

nixos-25.11 0.0.9
- nixos-25.11-small 0.0.9
- nixpkgs-25.11-darwin 0.0.9

pkgs.python313Packages.character-encoding-utils

Some character encoding utils

nixos-unstable 0.0.9
- nixpkgs-unstable 0.0.9
- nixos-unstable-small 0.0.9
nixos-25.11 0.0.9
- nixos-25.11-small 0.0.9
- nixpkgs-25.11-darwin 0.0.9

pkgs.python314Packages.character-encoding-utils

Some character encoding utils

nixos-unstable 0.0.9
- nixpkgs-unstable 0.0.9
- nixos-unstable-small 0.0.9

Package maintainers

@hmajid2301 Haseeb Majid <hello@haseebmajid.dev>
@vbgl Vincent Laporte <Vincent.Laporte@gmail.com>
@jwiegley John Wiegley <johnw@newartisans.com>
@CohenCyril Cyril Cohen <cyril.cohen@inria.fr>
@jtojnar Jan Tojnar <jtojnar@gmail.com>
@dasj19 Daniel Șerbănescu <daniel@serbanescu.dk>
@bobby285271 Bobby Rong <rjl931189261@126.com>
@hedning Tor Hedin Brønner <torhedinbronner@gmail.com>
@magnetophon Bart Brouns <bart@magnetophon.nl>
@h7x4 h7x4 <h7x4@nani.wtf>
@TakWolf TakWolf <takwolf@foxmail.com>

Suggestions search

References

Affected products

Matching in nixpkgs

pkgs.charasay

pkgs.gnome-characters

pkgs.keepass-charactercopy

pkgs.unicode-character-database

pkgs.haskellPackages.character-ps

pkgs.coqPackages.mathcomp-character

pkgs.rocqPackages.mathcomp-character

pkgs.python312Packages.characteristic

pkgs.python313Packages.characteristic

pkgs.magnetophonDSP.CharacterCompressor

pkgs.python312Packages.character-encoding-utils

pkgs.python313Packages.character-encoding-utils

pkgs.python314Packages.character-encoding-utils

Package maintainers