Nixpkgs security tracker
Permalink
CVE-2025-58986
6.5 MEDIUM
- CVSS version: 3.1
- Attack vector (AV): NETWORK
- Attack complexity (AC): LOW
- Privileges required (PR): HIGH
- User interaction (UI): NONE
- Scope (S): UNCHANGED
- Confidentiality impact (C): HIGH
- Integrity impact (I): HIGH
- Availability impact (A): NONE
WordPress Jock On Air Now (JOAN) plugin <= 6.0.4 - Broken Access Control vulnerability
Missing Authorization vulnerability in ganddser Jock On Air Now (JOAN) joan allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Jock On Air Now (JOAN): from n/a through <= 6.0.4.
References
Affected products
joan
- =<<= 6.0.4
Matching in nixpkgs
pkgs.typstPackages.fh-joanneum-iit-thesis_1_1_0
BA or MA thesis at FH JOANNEUM
pkgs.typstPackages.fh-joanneum-iit-thesis_1_2_0
BA or MA thesis at FH JOANNEUM
pkgs.typstPackages.fh-joanneum-iit-thesis_1_2_2
BA or MA thesis at FH JOANNEUM
pkgs.typstPackages.fh-joanneum-iit-thesis_1_2_3
BA or MA thesis at FH JOANNEUM
pkgs.typstPackages.fh-joanneum-iit-thesis_2_0_2
BA or MA thesis at FH JOANNEUM
pkgs.typstPackages.fh-joanneum-iit-thesis_2_0_5
BA or MA thesis at FH JOANNEUM
pkgs.typstPackages.fh-joanneum-iit-thesis_2_1_2
BA or MA thesis at FH JOANNEUM
pkgs.typstPackages.fh-joanneum-iit-thesis_2_2_0
BA or MA thesis at FH JOANNEUM
Package maintainers
-
@cherrypiejam Gongqi Huang