Nixpkgs security tracker

Untriaged

Permalink CVE-2026-33436

3.1 LOW

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): HIGH
Privileges required (PR): NONE
User interaction (UI): REQUIRED
Scope (S): UNCHANGED
Confidentiality impact (C): LOW
Integrity impact (I): NONE
Availability impact (A): NONE

created 1 day, 11 hours ago

Stirling-PDF: Reflected XSS through crafted filename in file upload functionality

Stirling-PDF is a locally hosted web application that facilitates various operations on PDF files. In versions prior to 2.0.0, file upload endpoints render user-supplied filenames directly into HTML using unsafe methods like innerHTML without sanitization. An attacker can craft a file with a malicious filename containing JavaScript that executes in the uploading user's browser context, resulting in reflected XSS. The issue affects numerous upload endpoints across the application. The issue has been fixed in version 2.0.0.

References

https://github.com/Stirling-Tools/Stirling-PDF/security/advisories/GHSA-q5j3-4m5w-wp75 x_refsource_CONFIRM

Affected products

Stirling-PDF

==< 2.0.0

Matching in nixpkgs

pkgs.stirling-pdf

Locally hosted web application that allows you to perform various operations on PDF files

nixos-unstable 2.8.0
- nixpkgs-unstable 2.8.0
- nixos-unstable-small 2.8.0
nixos-25.11 1.5.0
- nixos-25.11-small 1.5.0
- nixpkgs-25.11-darwin 1.5.0

pkgs.stirling-pdf-desktop

Powerful, open-source PDF editing platform runnable as a desktop app

nixos-unstable 2.8.0
- nixpkgs-unstable 2.8.0
- nixos-unstable-small 2.8.0

Package maintainers

@TomaSajt TomaSajt

Untriaged

Permalink CVE-2026-34071

5.4 MEDIUM

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): LOW
Privileges required (PR): NONE
User interaction (UI): REQUIRED
Scope (S): UNCHANGED
Confidentiality impact (C): LOW
Integrity impact (I): LOW
Availability impact (A): NONE

created 3 weeks, 2 days ago

Stirling-PDF has Stored Cross Site Scripting (XSS) via EML-to-HTML Export

Stirling-PDF is a locally hosted web application that allows you to perform various operations on PDF files. In version 2.7.3, the /api/v1/convert/eml/pdf endpoint with parameter downloadHtml=true returns unsanitized HTML from the email body with Content-Type: text/html. An attacker who sends a malicious email to a Stirling-PDF user can achieve JavaScript execution when that user exports the email using the "Download HTML intermediate file" feature. Version 2.8.0 fixes the issue.

References

https://github.com/Stirling-Tools/Stirling-PDF/security/advisories/GHSA-xmhg-fv84-jgfc x_refsource_CONFIRM

Affected products

Stirling-PDF

=== 2.7.3

Matching in nixpkgs

pkgs.stirling-pdf

Locally hosted web application that allows you to perform various operations on PDF files

nixos-unstable 2.6.0
- nixpkgs-unstable 2.6.0
- nixos-unstable-small 2.6.0
nixos-25.11 1.5.0
- nixos-25.11-small 1.5.0
- nixpkgs-25.11-darwin 1.5.0

pkgs.stirling-pdf-desktop

Powerful, open-source PDF editing platform runnable as a desktop app

nixos-unstable 2.6.0
- nixpkgs-unstable 2.6.0
- nixos-unstable-small 2.6.0

Package maintainers

@TomaSajt TomaSajt

Untriaged

Permalink CVE-2026-33438

6.5 MEDIUM

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): LOW
Privileges required (PR): LOW
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): NONE
Integrity impact (I): NONE
Availability impact (A): HIGH

created 3 weeks, 2 days ago

Stirling-PDF vulnerable to DoS via add-watermark

Stirling-PDF is a locally hosted web application that allows you to perform various operations on PDF files. Versions starting in 2.1.5 and prior to 2.5.2 have Denial of Service (DoS) vulnerability in the Stirling-PDF watermark functionality (`/api/v1/security/add-watermark` endpoint). The vulnerability allows authenticated users to cause resource exhaustion and server crashes by providing extreme values for the `fontSize` and `widthSpacer` parameters. Version 2.5.2 patches the issue.

References

https://github.com/Stirling-Tools/Stirling-PDF/security/advisories/GHSA-3932-2rfq-87xm exploitx_refsource_CONFIRM

Affected products

Stirling-PDF

==>= 2.1.5, < 2.5.2

Matching in nixpkgs

pkgs.stirling-pdf

Locally hosted web application that allows you to perform various operations on PDF files

nixos-unstable 2.6.0
- nixpkgs-unstable 2.6.0
- nixos-unstable-small 2.6.0
nixos-25.11 1.5.0
- nixos-25.11-small 1.5.0
- nixpkgs-25.11-darwin 1.5.0

pkgs.stirling-pdf-desktop

Powerful, open-source PDF editing platform runnable as a desktop app

nixos-unstable 2.6.0
- nixpkgs-unstable 2.6.0
- nixos-unstable-small 2.6.0

Package maintainers

@TomaSajt TomaSajt

Untriaged

Permalink CVE-2026-27625

8.1 HIGH

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): LOW
Privileges required (PR): LOW
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): NONE
Integrity impact (I): HIGH
Availability impact (A): HIGH

created 4 weeks, 1 day ago

Stirling-PDF Zip Slip: Arbitrary File Write via Path Traversal in Markdown-to-PDF ZIP Extraction

Stirling-PDF is a locally hosted web application that performs various operations on PDF files. In versions prior to 2.5.2, the /api/v1/convert/markdown/pdf endpoint extracts user-supplied ZIP entries without path checks. Any authenticated user can write files outside the intended temporary working directory, leading to arbitrary file write with the privileges of the Stirling-PDF process user (stirlingpdfuser). This can overwrite writable files and compromise data integrity, with further impact depending on writable paths. The issue was fixed in version 2.5.2.

References

https://github.com/Stirling-Tools/Stirling-PDF/security/advisories/GHSA-wccq-mg6x-2w22 x_refsource_CONFIRM
https://github.com/Stirling-Tools/Stirling-PDF/releases/tag/v2.5.2 x_refsource_MISC

Affected products

Stirling-PDF

==< 2.5.2

Matching in nixpkgs

pkgs.stirling-pdf

Locally hosted web application that allows you to perform various operations on PDF files

nixos-unstable 2.6.0
- nixpkgs-unstable 2.6.0
- nixos-unstable-small 2.6.0
nixos-25.11 1.5.0
- nixos-25.11-small 1.5.0
- nixpkgs-25.11-darwin 1.5.0

pkgs.stirling-pdf-desktop

Powerful, open-source PDF editing platform runnable as a desktop app

nixos-unstable 2.6.0
- nixpkgs-unstable 2.6.0
- nixos-unstable-small 2.6.0

Package maintainers

@TomaSajt TomaSajt

Suggestions search

References

Affected products

Matching in nixpkgs

pkgs.stirling-pdf

pkgs.stirling-pdf-desktop

Package maintainers

References

Affected products

Matching in nixpkgs

pkgs.stirling-pdf

pkgs.stirling-pdf-desktop

Package maintainers

References

Affected products

Matching in nixpkgs

pkgs.stirling-pdf

pkgs.stirling-pdf-desktop

Package maintainers

References

Affected products

Matching in nixpkgs

pkgs.stirling-pdf

pkgs.stirling-pdf-desktop

Package maintainers