Nixpkgs security tracker

Login with GitHub

⚠️ You are using a production deployment that is still only suitable for demo purposes. Any work done in this might be wiped later without notice.

Suggestions search

Untriaged

Filter by:

With package: vimPlugins.cmp-snippy

Found 1 matching suggestions

View:

Compact

Detailed

Permalink CVE-2025-23803

7.1 HIGH

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): LOW
Privileges required (PR): NONE
User interaction (UI): REQUIRED
Scope (S): CHANGED
Confidentiality impact (C): LOW
Integrity impact (I): LOW
Availability impact (A): LOW

created 1 year, 2 months ago

WordPress Snippy Plugin <= 1.4.1 - CSRF to Cross Site Scripting (XSS) vulnerability

Cross-Site Request Forgery (CSRF) vulnerability in PQINA Snippy allows Reflected XSS. This issue affects Snippy: from n/a through 1.4.1.

References

Affected products

snippy

=<1.4.1

Matching in nixpkgs

pkgs.vimPlugins.cmp-snippy

None

nixos-unstable 2023-10-12
- nixpkgs-unstable 2023-10-12
- nixos-unstable-small 2023-10-12

pkgs.vimPlugins.nvim-snippy

None

nixos-unstable 2024-11-14
- nixpkgs-unstable 2024-11-14
- nixos-unstable-small 2024-11-14

1