Suggestions search

Untriaged

Filter by:

With package: unyaffs

Found 3 matching suggestions

View:

Compact

Detailed

Permalink CVE-2026-24989

created 3 weeks, 2 days ago

WordPress SUMO Affiliates Pro plugin < 11.4.0 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in FantasticPlugins SUMO Affiliates Pro affs allows Object Injection.This issue affects SUMO Affiliates Pro: from n/a through < 11.4.0.

References

https://patchstack.com/database/Wordpress/Plugin/affs/vulnerability/wordpress-s… vdb-entry

Affected products

affs

=<< 11.4.0

Matching in nixpkgs

pkgs.unyaffs

Tool to extract files from a YAFFS2 file system image

nixos-unstable 0.9
- nixpkgs-unstable 0.9
- nixos-unstable-small 0.9
nixos-25.11 0.9
- nixos-25.11-small 0.9
- nixpkgs-25.11-darwin 0.9

pkgs.yaffshiv

Simple YAFFS file system parser and extractor

nixos-unstable 0-unstable-2024-08-30
- nixpkgs-unstable 0-unstable-2024-08-30
- nixos-unstable-small 0-unstable-2024-08-30
nixos-25.11 0-unstable-2024-08-30
- nixos-25.11-small 0-unstable-2024-08-30
- nixpkgs-25.11-darwin 0-unstable-2024-08-30

Package maintainers

@KSJ2000 KSJ2000 <katsho123@outlook.com>
@stigtsp Stig Palmquist <stig@stig.io>

Permalink CVE-2025-64228

4.3 MEDIUM

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): LOW
Privileges required (PR): LOW
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): LOW
Integrity impact (I): NONE
Availability impact (A): NONE

created 4 months, 2 weeks ago

WordPress SUMO Affiliates Pro plugin <= 11.0.0 - Sensitive Data Exposure vulnerability

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in FantasticPlugins SUMO Affiliates Pro affs allows Retrieve Embedded Sensitive Data.This issue affects SUMO Affiliates Pro: from n/a through <= 11.0.0.

References

Affected products

affs

=<<= 11.0.0

Matching in nixpkgs

pkgs.unyaffs

Tool to extract files from a YAFFS2 file system image

nixos-unstable 0.9
- nixpkgs-unstable 0.9
- nixos-unstable-small 0.9

pkgs.yaffshiv

Simple YAFFS file system parser and extractor

nixos-unstable 0-unstable-2024-08-30
- nixpkgs-unstable 0-unstable-2024-08-30
- nixos-unstable-small 0-unstable-2024-08-30

Package maintainers

@KSJ2000 KSJ2000 <katsho123@outlook.com>
@stigtsp Stig Palmquist <stig@stig.io>

Permalink CVE-2025-32291

10.0 CRITICAL

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): LOW
Privileges required (PR): NONE
User interaction (UI): NONE
Scope (S): CHANGED
Confidentiality impact (C): HIGH
Integrity impact (I): HIGH
Availability impact (A): HIGH

created 10 months, 1 week ago

WordPress SUMO Affiliates Pro <= 10.7.0 - Arbitrary File Upload Vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in FantasticPlugins SUMO Affiliates Pro allows Using Malicious Files. This issue affects SUMO Affiliates Pro: from n/a through 10.7.0.

References

https://patchstack.com/database/wordpress/plugin/affs/vulnerability/wordpress-s… vdb-entry

Affected products

affs

=<10.7.0

Matching in nixpkgs

pkgs.unyaffs

Tool to extract files from a YAFFS2 file system image

nixos-unstable 0.9
- nixpkgs-unstable 0.9
- nixos-unstable-small 0.9

pkgs.yaffshiv

Simple YAFFS file system parser and extractor

nixos-unstable 0-unstable-2024-08-30
- nixpkgs-unstable 0-unstable-2024-08-30
- nixos-unstable-small 0-unstable-2024-08-30

Package maintainers

@KSJ2000 KSJ2000 <katsho123@outlook.com>
@stigtsp Stig Palmquist <stig@stig.io>