From a03847e69695607b15956e09b3ab2f9c2425383b Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Robert=20Sch=C3=BCtz?= Date: Fri, 29 Jan 2021 23:42:04 +0100 Subject: [PATCH] limesurvey: mark as insecure --- pkgs/servers/limesurvey/default.nix | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/pkgs/servers/limesurvey/default.nix b/pkgs/servers/limesurvey/default.nix index 261285341c42..e71ff33e2f9d 100644 --- a/pkgs/servers/limesurvey/default.nix +++ b/pkgs/servers/limesurvey/default.nix @@ -37,5 +37,10 @@ stdenv.mkDerivation rec { homepage = "https://www.limesurvey.org"; maintainers = with maintainers; [offline]; platforms = with platforms; unix; + knownVulnerabilities = [ + # https://github.com/LimeSurvey/LimeSurvey/blob/3.x-LTS/docs/release_notes.txt + "Unauthorized access to statistics of a survey with certain permission configurations" + "Persistent XSS in browse response" + ]; }; }