Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:composer/drupal/core@8.5.0-alpha0
Typecomposer
Namespacedrupal
Namecore
Version8.5.0-alpha0
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version10.4.9
Latest_non_vulnerable_version11.2.8
Affected_by_vulnerabilities
0
url VCID-nc36-atc6-yua6
vulnerability_id VCID-nc36-atc6-yua6
summary 
XSS Vulnerability
CKEditor, a third-party JavaScript library included in Drupal core, is affected by a cross-site scripting (XSS) vulnerability. It's possible to execute XSS inside CKEditor when using the `image2` plugin.
references
0
reference_url https://www.drupal.org/sa-core-2018-003
reference_id
reference_type
scores
url https://www.drupal.org/sa-core-2018-003
fixed_packages
0
url pkg:composer/drupal/core@8.5.2
purl pkg:composer/drupal/core@8.5.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-349d-w26k-mqfw
1
vulnerability VCID-3fka-y25d-m7a3
2
vulnerability VCID-3s9f-prpy-hbcx
3
vulnerability VCID-3sr6-86jw-6fb9
4
vulnerability VCID-565p-mgqe-gkfc
5
vulnerability VCID-5kh7-v1uc-wfha
6
vulnerability VCID-636u-5bdw-puh4
7
vulnerability VCID-6ck5-9e5b-w3ay
8
vulnerability VCID-6m8x-cfzp-tkf4
9
vulnerability VCID-77zc-1gc8-r7b7
10
vulnerability VCID-7fs3-gwc7-nkes
11
vulnerability VCID-9ss3-mvt3-8bem
12
vulnerability VCID-bbzr-hbhv-yyee
13
vulnerability VCID-bkxp-gn34-67av
14
vulnerability VCID-c9dm-17vt-4bbc
15
vulnerability VCID-cucx-jfqf-pkd1
16
vulnerability VCID-dgjq-y5zj-cud1
17
vulnerability VCID-djgn-ezxp-37eu
18
vulnerability VCID-dqf8-ea9f-yber
19
vulnerability VCID-ed6y-c9tz-mbds
20
vulnerability VCID-fwbj-ctxz-2bc6
21
vulnerability VCID-g33x-1paw-7udm
22
vulnerability VCID-gzcu-sbks-wyfa
23
vulnerability VCID-hgb1-xrne-e7c8
24
vulnerability VCID-hwnd-nuv7-jqbh
25
vulnerability VCID-j21d-w3g7-cbcg
26
vulnerability VCID-jctf-yffu-hbag
27
vulnerability VCID-jrb8-jnz4-83c8
28
vulnerability VCID-k1gx-nznx-7qd6
29
vulnerability VCID-kam1-84p4-qych
30
vulnerability VCID-kdnk-7mz5-7ugf
31
vulnerability VCID-mapb-hsvc-2khc
32
vulnerability VCID-n119-gta2-kfg1
33
vulnerability VCID-n7un-zgqv-jfef
34
vulnerability VCID-nd8n-5dsu-2fbp
35
vulnerability VCID-qvbt-7e55-4bg4
36
vulnerability VCID-rhj7-dy7q-jkhw
37
vulnerability VCID-rr4q-f5cv-nkah
38
vulnerability VCID-st6v-ch5g-r7h2
39
vulnerability VCID-syrg-ckq7-cbd6
40
vulnerability VCID-u1xx-aazv-bkg5
41
vulnerability VCID-u4w3-usvb-jyf6
42
vulnerability VCID-ummk-h11z-bkaj
43
vulnerability VCID-uqcw-p8g2-cfd2
44
vulnerability VCID-v9v6-ae3e-g3hk
45
vulnerability VCID-vevm-4sfk-f7gq
46
vulnerability VCID-vrdx-165p-efda
47
vulnerability VCID-w6cz-mg4v-3udj
48
vulnerability VCID-wabj-ty5p-pfd6
49
vulnerability VCID-wbuz-qcp3-43aq
50
vulnerability VCID-ww44-hb2y-mfd5
51
vulnerability VCID-wwvq-399y-rfhc
52
vulnerability VCID-wzgs-fr3u-cbdn
53
vulnerability VCID-x2as-f9fx-9kff
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/drupal/core@8.5.2
aliases SA-CORE-2018-003
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-nc36-atc6-yua6
Fixing_vulnerabilities
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:composer/drupal/core@8.5.0-alpha0