Nixpkgs security tracker
Untriaged
Permalink
CVE-2025-53430
8.1 HIGH
- CVSS version: 3.1
- Attack vector (AV): NETWORK
- Attack complexity (AC): HIGH
- Privileges required (PR): NONE
- User interaction (UI): NONE
- Scope (S): UNCHANGED
- Confidentiality impact (C): HIGH
- Integrity impact (I): HIGH
- Availability impact (A): HIGH
WordPress Etta theme <= 1.14.0 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in AncoraThemes Etta etta allows PHP Local File Inclusion.This issue affects Etta: from n/a through <= 1.14.0.
References
Affected products
etta
- =<<= 1.14.0
Matching in nixpkgs
pkgs.ocamlPackages.rosetta
Universal decoder of an encoded flow (UTF-7, ISO-8859 and KOI8) to Unicode
pkgs.typstPackages.quetta_0_1_0
Write Tengwar easily with Typst
pkgs.typstPackages.quetta_0_2_0
Write Tengwar easily with Typst
pkgs.python312Packages.palettable
Library of color palettes
pkgs.python313Packages.palettable
Library of color palettes
pkgs.python312Packages.django-rosetta
Rosetta is a Django application that facilitates the translation process of your Django projects
pkgs.python313Packages.django-rosetta
Rosetta is a Django application that facilitates the translation process of your Django projects
pkgs.chickenPackages_5.chickenEggs.henrietta
Serve extensions over HTTP
pkgs.chickenPackages_5.chickenEggs.henrietta-cache
Fetch and cache extensions from various sources for Henrietta to consume
Package maintainers
-
@DerDennisOP Dennis <dennish@wuitz.de>
-
@PsyanticY Psyanticy <iuns@outlook.fr>
-
@cherrypiejam Gongqi Huang