Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:pypi/koji@1.15.1
Typepypi
Namespace
Namekoji
Version1.15.1
Qualifiers
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version1.19.0
Latest_non_vulnerable_version1.19.0
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-hct7-3wtx-xyew
vulnerability_id VCID-hct7-3wtx-xyew
summary Koji version 1.12, 1.13, 1.14 and 1.15 contain an incorrect access control vulnerability resulting in arbitrary filesystem read/write access. This vulnerability has been fixed in versions 1.12.1, 1.13.1, 1.14.1 and 1.15.1.
references
0
reference_url https://docs.pagure.org/koji/CVE-2018-1002150/
reference_id
reference_type
scores
url https://docs.pagure.org/koji/CVE-2018-1002150/
1
reference_url https://github.com/advisories/GHSA-6mww-xvh7-fq4f
reference_id
reference_type
scores
url https://github.com/advisories/GHSA-6mww-xvh7-fq4f
2
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/koji/PYSEC-2018-86.yaml
reference_id
reference_type
scores
url https://github.com/pypa/advisory-database/tree/main/vulns/koji/PYSEC-2018-86.yaml
3
reference_url https://pagure.io/koji
reference_id
reference_type
scores
url https://pagure.io/koji
4
reference_url https://pagure.io/koji/c/ab1ade7
reference_id
reference_type
scores
url https://pagure.io/koji/c/ab1ade7
5
reference_url https://pagure.io/koji/issue/850
reference_id
reference_type
scores
url https://pagure.io/koji/issue/850
6
reference_url https://docs.pagure.org/koji/CVE-2018-1002150
reference_id CVE-2018-1002150
reference_type
scores
url https://docs.pagure.org/koji/CVE-2018-1002150
7
reference_url https://nvd.nist.gov/vuln/detail/CVE-2018-1002150
reference_id CVE-2018-1002150
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2018-1002150
fixed_packages
0
url pkg:pypi/koji@1.12.1
purl pkg:pypi/koji@1.12.1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/koji@1.12.1
1
url pkg:pypi/koji@1.13.1
purl pkg:pypi/koji@1.13.1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/koji@1.13.1
2
url pkg:pypi/koji@1.14.1
purl pkg:pypi/koji@1.14.1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/koji@1.14.1
3
url pkg:pypi/koji@1.15.1
purl pkg:pypi/koji@1.15.1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/koji@1.15.1
aliases CVE-2018-1002150, GHSA-6mww-xvh7-fq4f, PYSEC-2018-86
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hct7-3wtx-xyew
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:pypi/koji@1.15.1