Django REST framework
Api Root
Package List
Package Instance
Format
json
api
admin
Package Instance
Lookup for vulnerable packages by Package URL.
Purl
pkg:pypi/python-fedora@0.3.11
Type
pypi
Namespace
Name
python-fedora
Version
0.3.11
Qualifiers
Subpath
Is_vulnerable
true
Next_non_vulnerable_version
0.9.0
Latest_non_vulnerable_version
0.9.0
Affected_by_vulnerabilities
0
url
VCID-9e87-ww4r-vbfa
vulnerability_id
VCID-9e87-ww4r-vbfa
summary
python-fedora 0.8.0 and lower is vulnerable to an open redirect resulting in loss of CSRF protection
references
0
reference_url
https://github.com/advisories/GHSA-m242-wc86-8768
reference_id
reference_type
scores
url
https://github.com/advisories/GHSA-m242-wc86-8768
1
reference_url
https://github.com/fedora-infra/python-fedora
reference_id
reference_type
scores
url
https://github.com/fedora-infra/python-fedora
2
reference_url
https://github.com/fedora-infra/python-fedora/commit/b27f38a67573f4c989710c9bfb726dd4c1eeb929
reference_id
reference_type
scores
url
https://github.com/fedora-infra/python-fedora/commit/b27f38a67573f4c989710c9bfb726dd4c1eeb929
3
reference_url
https://github.com/fedora-infra/python-fedora/commit/b27f38a67573f4c989710c9bfb726dd4c1eeb929.patch
reference_id
reference_type
scores
url
https://github.com/fedora-infra/python-fedora/commit/b27f38a67573f4c989710c9bfb726dd4c1eeb929.patch
4
reference_url
https://github.com/pypa/advisory-database/tree/main/vulns/python-fedora/PYSEC-2017-27.yaml
reference_id
reference_type
scores
url
https://github.com/pypa/advisory-database/tree/main/vulns/python-fedora/PYSEC-2017-27.yaml
5
reference_url
https://nvd.nist.gov/vuln/detail/CVE-2017-1002150
reference_id
CVE-2017-1002150
reference_type
scores
url
https://nvd.nist.gov/vuln/detail/CVE-2017-1002150
fixed_packages
0
url
pkg:pypi/python-fedora@0.9.0
purl
pkg:pypi/python-fedora@0.9.0
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:pypi/python-fedora@0.9.0
aliases
CVE-2017-1002150, GHSA-m242-wc86-8768, PYSEC-2017-27
risk_score
null
exploitability
null
weighted_severity
null
resource_url
http://public2.vulnerablecode.io/vulnerabilities/VCID-9e87-ww4r-vbfa
Fixing_vulnerabilities
Risk_score
null
Resource_url
http://public2.vulnerablecode.io/packages/pkg:pypi/python-fedora@0.3.11
×
Create
None
×
Edit
None