Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:pypi/rdiffweb@2.4.9
Typepypi
Namespace
Namerdiffweb
Version2.4.9
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version2.8.4
Latest_non_vulnerable_version2.8.4
Affected_by_vulnerabilities
0
url VCID-25yw-5nru-aygm
vulnerability_id VCID-25yw-5nru-aygm
summary Improper Privilege Management in GitHub repository ikus060/rdiffweb prior to 2.5.2.
references
0
reference_url https://github.com/ikus060/rdiffweb/commit/b2df3679564d0daa2856213bb307d3e34bd89a25
reference_id
reference_type
scores
url https://github.com/ikus060/rdiffweb/commit/b2df3679564d0daa2856213bb307d3e34bd89a25
1
reference_url https://huntr.dev/bounties/b2dc504d-92ae-4221-a096-12ff223d95a8
reference_id
reference_type
scores
url https://huntr.dev/bounties/b2dc504d-92ae-4221-a096-12ff223d95a8
fixed_packages
0
url pkg:pypi/rdiffweb@2.5.2
purl pkg:pypi/rdiffweb@2.5.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-287j-23ju-9fhk
1
vulnerability VCID-52wf-fheq-cuer
2
vulnerability VCID-57wc-s2nn-cyeu
3
vulnerability VCID-6zc1-xs64-1bc6
4
vulnerability VCID-ep38-eu98-fbas
5
vulnerability VCID-h6v3-24fq-3udw
6
vulnerability VCID-qcsd-5htt-h3ev
7
vulnerability VCID-tv4c-g8r6-xbf6
8
vulnerability VCID-wyn5-w4qh-nfht
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.2
aliases CVE-2022-4314, PYSEC-2022-43002
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-25yw-5nru-aygm
1
url VCID-287j-23ju-9fhk
vulnerability_id VCID-287j-23ju-9fhk
summary Open Redirect in GitHub repository ikus060/rdiffweb prior to 2.5.5.
references
0
reference_url https://github.com/ikus060/rdiffweb/commit/6afaae56a29536f0118b3380d296c416aa6d078d
reference_id
reference_type
scores
url https://github.com/ikus060/rdiffweb/commit/6afaae56a29536f0118b3380d296c416aa6d078d
1
reference_url https://huntr.dev/bounties/339687af-6e25-4ad8-823d-c097f607ea70
reference_id
reference_type
scores
url https://huntr.dev/bounties/339687af-6e25-4ad8-823d-c097f607ea70
fixed_packages
0
url pkg:pypi/rdiffweb@2.5.5
purl pkg:pypi/rdiffweb@2.5.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-52wf-fheq-cuer
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.5
aliases CVE-2022-4720, PYSEC-2022-43006
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-287j-23ju-9fhk
2
url VCID-52wf-fheq-cuer
vulnerability_id VCID-52wf-fheq-cuer
summary Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.8.4.
references
0
reference_url https://github.com/ikus060/rdiffweb
reference_id
reference_type
scores
url https://github.com/ikus060/rdiffweb
1
reference_url https://github.com/ikus060/rdiffweb/commit/06f89b43469aae70e8833e55192721523f86c5a2
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://github.com/ikus060/rdiffweb/commit/06f89b43469aae70e8833e55192721523f86c5a2
2
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/rdiffweb/PYSEC-2023-186.yaml
reference_id
reference_type
scores
url https://github.com/pypa/advisory-database/tree/main/vulns/rdiffweb/PYSEC-2023-186.yaml
3
reference_url https://huntr.dev/bounties/8d0e0804-d3fd-49fe-bfa4-7a91135767ce
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://huntr.dev/bounties/8d0e0804-d3fd-49fe-bfa4-7a91135767ce
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-5289
reference_id CVE-2023-5289
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2023-5289
5
reference_url https://github.com/advisories/GHSA-c4rv-2j6x-pq7x
reference_id GHSA-c4rv-2j6x-pq7x
reference_type
scores
url https://github.com/advisories/GHSA-c4rv-2j6x-pq7x
fixed_packages
0
url pkg:pypi/rdiffweb@2.8.4
purl pkg:pypi/rdiffweb@2.8.4
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.8.4
aliases CVE-2023-5289, GHSA-c4rv-2j6x-pq7x, PYSEC-2023-186
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-52wf-fheq-cuer
3
url VCID-57wc-s2nn-cyeu
vulnerability_id VCID-57wc-s2nn-cyeu
summary Cross-Site Request Forgery (CSRF) in GitHub repository ikus060/rdiffweb prior to 2.5.4.
references
0
reference_url https://github.com/ikus060/rdiffweb/commit/e6f0d8002129be90fe82fa3e3ea0a6942caba398
reference_id
reference_type
scores
url https://github.com/ikus060/rdiffweb/commit/e6f0d8002129be90fe82fa3e3ea0a6942caba398
1
reference_url https://huntr.dev/bounties/17bc1b0f-1f5c-432f-88e4-c9866ccf6e10
reference_id
reference_type
scores
url https://huntr.dev/bounties/17bc1b0f-1f5c-432f-88e4-c9866ccf6e10
fixed_packages
0
url pkg:pypi/rdiffweb@2.5.4
purl pkg:pypi/rdiffweb@2.5.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-287j-23ju-9fhk
1
vulnerability VCID-52wf-fheq-cuer
2
vulnerability VCID-6zc1-xs64-1bc6
3
vulnerability VCID-ep38-eu98-fbas
4
vulnerability VCID-h6v3-24fq-3udw
5
vulnerability VCID-qcsd-5htt-h3ev
6
vulnerability VCID-wyn5-w4qh-nfht
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.4
aliases CVE-2022-4646, PYSEC-2022-43004
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-57wc-s2nn-cyeu
4
url VCID-5xg7-u3nr-nkfg
vulnerability_id VCID-5xg7-u3nr-nkfg
summary Insufficient Session Expiration in GitHub repository ikus060/rdiffweb prior to 2.5.0.
references
0
reference_url https://github.com/ikus060/rdiffweb/commit/6efb995bc32c8a8e9ad755eb813dec991dffb2b8
reference_id
reference_type
scores
url https://github.com/ikus060/rdiffweb/commit/6efb995bc32c8a8e9ad755eb813dec991dffb2b8
1
reference_url https://huntr.dev/bounties/ca428c31-858d-47fa-adc9-2a59f8e8b2b1
reference_id
reference_type
scores
url https://huntr.dev/bounties/ca428c31-858d-47fa-adc9-2a59f8e8b2b1
fixed_packages
0
url pkg:pypi/rdiffweb@2.5.0
purl pkg:pypi/rdiffweb@2.5.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-25yw-5nru-aygm
1
vulnerability VCID-287j-23ju-9fhk
2
vulnerability VCID-52wf-fheq-cuer
3
vulnerability VCID-57wc-s2nn-cyeu
4
vulnerability VCID-6zc1-xs64-1bc6
5
vulnerability VCID-ep38-eu98-fbas
6
vulnerability VCID-h6v3-24fq-3udw
7
vulnerability VCID-qcsd-5htt-h3ev
8
vulnerability VCID-tv4c-g8r6-xbf6
9
vulnerability VCID-wyn5-w4qh-nfht
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.0
aliases CVE-2022-3362, PYSEC-2022-43000
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5xg7-u3nr-nkfg
5
url VCID-6zc1-xs64-1bc6
vulnerability_id VCID-6zc1-xs64-1bc6
summary Improper Access Control in GitHub repository ikus060/rdiffweb prior to 2.5.5.
references
0
reference_url https://github.com/ikus060/rdiffweb/commit/c4a19cf67d575c4886171b8efcbf4675d51f3929
reference_id
reference_type
scores
url https://github.com/ikus060/rdiffweb/commit/c4a19cf67d575c4886171b8efcbf4675d51f3929
1
reference_url https://huntr.dev/bounties/e6fb1931-8d9c-4895-be4a-59839b4b6445
reference_id
reference_type
scores
url https://huntr.dev/bounties/e6fb1931-8d9c-4895-be4a-59839b4b6445
fixed_packages
0
url pkg:pypi/rdiffweb@2.5.5
purl pkg:pypi/rdiffweb@2.5.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-52wf-fheq-cuer
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.5
aliases CVE-2022-4724, PYSEC-2022-43010
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6zc1-xs64-1bc6
6
url VCID-9f5c-ne9b-27fd
vulnerability_id VCID-9f5c-ne9b-27fd
summary Missing Authentication for Critical Function in GitHub repository ikus060/rdiffweb prior to 2.5.0a6.
references
0
reference_url https://github.com/ikus060/rdiffweb/commit/f2a32f2a9f3fb8be1a9432ac3d81d3aacdb13095
reference_id
reference_type
scores
url https://github.com/ikus060/rdiffweb/commit/f2a32f2a9f3fb8be1a9432ac3d81d3aacdb13095
1
reference_url https://huntr.dev/bounties/5340c2f6-0252-40f6-8929-cca5d64958a5
reference_id
reference_type
scores
url https://huntr.dev/bounties/5340c2f6-0252-40f6-8929-cca5d64958a5
fixed_packages
0
url pkg:pypi/rdiffweb@2.4.11a1
purl pkg:pypi/rdiffweb@2.4.11a1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-25yw-5nru-aygm
1
vulnerability VCID-287j-23ju-9fhk
2
vulnerability VCID-52wf-fheq-cuer
3
vulnerability VCID-57wc-s2nn-cyeu
4
vulnerability VCID-5xg7-u3nr-nkfg
5
vulnerability VCID-6zc1-xs64-1bc6
6
vulnerability VCID-ep38-eu98-fbas
7
vulnerability VCID-fcym-y8c1-xqdq
8
vulnerability VCID-h6v3-24fq-3udw
9
vulnerability VCID-n88y-9qre-n3bz
10
vulnerability VCID-ps4e-cg34-wyah
11
vulnerability VCID-qcsd-5htt-h3ev
12
vulnerability VCID-rynh-v7q5-6kdg
13
vulnerability VCID-tv4c-g8r6-xbf6
14
vulnerability VCID-wyn5-w4qh-nfht
15
vulnerability VCID-yssm-eyx3-efhs
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.4.11a1
aliases CVE-2022-4018, PYSEC-2022-43001
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9f5c-ne9b-27fd
7
url VCID-ep38-eu98-fbas
vulnerability_id VCID-ep38-eu98-fbas
summary Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) in GitHub repository ikus060/rdiffweb prior to 2.5.5.
references
0
reference_url https://github.com/ikus060/rdiffweb/commit/6afaae56a29536f0118b3380d296c416aa6d078d
reference_id
reference_type
scores
url https://github.com/ikus060/rdiffweb/commit/6afaae56a29536f0118b3380d296c416aa6d078d
1
reference_url https://huntr.dev/bounties/3c48ef5d-da4d-4ee4-aaca-af65e7273720
reference_id
reference_type
scores
url https://huntr.dev/bounties/3c48ef5d-da4d-4ee4-aaca-af65e7273720
fixed_packages
0
url pkg:pypi/rdiffweb@2.5.5
purl pkg:pypi/rdiffweb@2.5.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-52wf-fheq-cuer
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.5
aliases CVE-2022-4721, PYSEC-2022-43007
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ep38-eu98-fbas
8
url VCID-fcym-y8c1-xqdq
vulnerability_id VCID-fcym-y8c1-xqdq
summary Origin Validation Error in GitHub repository ikus060/rdiffweb prior to 2.5.0a5.
references
0
reference_url https://github.com/ikus060/rdiffweb/commit/afc1bdfab5161c74012ff2590a6ec49cc0d8fde0
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://github.com/ikus060/rdiffweb/commit/afc1bdfab5161c74012ff2590a6ec49cc0d8fde0
1
reference_url https://huntr.dev/bounties/cfcab02e-d6ad-4dcf-b1b0-da90434bc55b
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://huntr.dev/bounties/cfcab02e-d6ad-4dcf-b1b0-da90434bc55b
fixed_packages
0
url pkg:pypi/rdiffweb@2.5.0
purl pkg:pypi/rdiffweb@2.5.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-25yw-5nru-aygm
1
vulnerability VCID-287j-23ju-9fhk
2
vulnerability VCID-52wf-fheq-cuer
3
vulnerability VCID-57wc-s2nn-cyeu
4
vulnerability VCID-6zc1-xs64-1bc6
5
vulnerability VCID-ep38-eu98-fbas
6
vulnerability VCID-h6v3-24fq-3udw
7
vulnerability VCID-qcsd-5htt-h3ev
8
vulnerability VCID-tv4c-g8r6-xbf6
9
vulnerability VCID-wyn5-w4qh-nfht
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.0
aliases CVE-2022-3457, PYSEC-2022-43161
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fcym-y8c1-xqdq
9
url VCID-h6v3-24fq-3udw
vulnerability_id VCID-h6v3-24fq-3udw
summary Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.5.
references
0
reference_url https://github.com/ikus060/rdiffweb/commit/6e9ee210548f6d3210704cac302cfc7cdb239765
reference_id
reference_type
scores
url https://github.com/ikus060/rdiffweb/commit/6e9ee210548f6d3210704cac302cfc7cdb239765
1
reference_url https://huntr.dev/bounties/9369681b-8bfc-4146-a54c-c5108442d92c
reference_id
reference_type
scores
url https://huntr.dev/bounties/9369681b-8bfc-4146-a54c-c5108442d92c
fixed_packages
0
url pkg:pypi/rdiffweb@2.5.5
purl pkg:pypi/rdiffweb@2.5.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-52wf-fheq-cuer
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.5
aliases CVE-2022-4723, PYSEC-2022-43009
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-h6v3-24fq-3udw
10
url VCID-n88y-9qre-n3bz
vulnerability_id VCID-n88y-9qre-n3bz
summary Open Redirect in GitHub repository ikus060/rdiffweb prior to 2.5.0a4.
references
0
reference_url https://github.com/ikus060/rdiffweb/commit/4d464b467f14b8eb9103d7f5f0774e49995527c7
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
url https://github.com/ikus060/rdiffweb/commit/4d464b467f14b8eb9103d7f5f0774e49995527c7
1
reference_url https://huntr.dev/bounties/bc5689e4-221a-4200-a8ab-42c659f89f67
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
url https://huntr.dev/bounties/bc5689e4-221a-4200-a8ab-42c659f89f67
fixed_packages
0
url pkg:pypi/rdiffweb@2.5.0
purl pkg:pypi/rdiffweb@2.5.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-25yw-5nru-aygm
1
vulnerability VCID-287j-23ju-9fhk
2
vulnerability VCID-52wf-fheq-cuer
3
vulnerability VCID-57wc-s2nn-cyeu
4
vulnerability VCID-6zc1-xs64-1bc6
5
vulnerability VCID-ep38-eu98-fbas
6
vulnerability VCID-h6v3-24fq-3udw
7
vulnerability VCID-qcsd-5htt-h3ev
8
vulnerability VCID-tv4c-g8r6-xbf6
9
vulnerability VCID-wyn5-w4qh-nfht
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.0
aliases CVE-2022-3438, PYSEC-2022-43158
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-n88y-9qre-n3bz
11
url VCID-ps4e-cg34-wyah
vulnerability_id VCID-ps4e-cg34-wyah
summary Business Logic Errors in GitHub repository ikus060/rdiffweb prior to 2.5.0a7.
references
0
reference_url https://github.com/ikus060/rdiffweb/commit/c27c46bac656b1da74f28eac1b52dfa5df76e6f2
reference_id
reference_type
scores
url https://github.com/ikus060/rdiffweb/commit/c27c46bac656b1da74f28eac1b52dfa5df76e6f2
1
reference_url https://huntr.dev/bounties/b8a40ba6-2452-4abe-a80a-2d065ee8891e
reference_id
reference_type
scores
url https://huntr.dev/bounties/b8a40ba6-2452-4abe-a80a-2d065ee8891e
fixed_packages
0
url pkg:pypi/rdiffweb@2.5.0
purl pkg:pypi/rdiffweb@2.5.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-25yw-5nru-aygm
1
vulnerability VCID-287j-23ju-9fhk
2
vulnerability VCID-52wf-fheq-cuer
3
vulnerability VCID-57wc-s2nn-cyeu
4
vulnerability VCID-6zc1-xs64-1bc6
5
vulnerability VCID-ep38-eu98-fbas
6
vulnerability VCID-h6v3-24fq-3udw
7
vulnerability VCID-qcsd-5htt-h3ev
8
vulnerability VCID-tv4c-g8r6-xbf6
9
vulnerability VCID-wyn5-w4qh-nfht
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.0
aliases CVE-2022-3363, PYSEC-2022-42978
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ps4e-cg34-wyah
12
url VCID-qcsd-5htt-h3ev
vulnerability_id VCID-qcsd-5htt-h3ev
summary Authentication Bypass by Primary Weakness in GitHub repository ikus060/rdiffweb prior to 2.5.5.
references
0
reference_url https://github.com/ikus060/rdiffweb/commit/d1aaa96b665a39fba9e98d6054a9de511ba0a837
reference_id
reference_type
scores
url https://github.com/ikus060/rdiffweb/commit/d1aaa96b665a39fba9e98d6054a9de511ba0a837
1
reference_url https://huntr.dev/bounties/c62126dc-d9a6-4d3e-988d-967031876c58
reference_id
reference_type
scores
url https://huntr.dev/bounties/c62126dc-d9a6-4d3e-988d-967031876c58
fixed_packages
0
url pkg:pypi/rdiffweb@2.5.5
purl pkg:pypi/rdiffweb@2.5.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-52wf-fheq-cuer
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.5
aliases CVE-2022-4722, PYSEC-2022-43008
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-qcsd-5htt-h3ev
13
url VCID-rynh-v7q5-6kdg
vulnerability_id VCID-rynh-v7q5-6kdg
summary Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0.
references
0
reference_url https://github.com/ikus060/rdiffweb/commit/b78ec09f4582e363f6f449df6f987127e126c311
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://github.com/ikus060/rdiffweb/commit/b78ec09f4582e363f6f449df6f987127e126c311
1
reference_url https://huntr.dev/bounties/37b86c45-b240-4626-bd53-b6f02d10e0d7
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://huntr.dev/bounties/37b86c45-b240-4626-bd53-b6f02d10e0d7
fixed_packages
0
url pkg:pypi/rdiffweb@2.5.0
purl pkg:pypi/rdiffweb@2.5.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-25yw-5nru-aygm
1
vulnerability VCID-287j-23ju-9fhk
2
vulnerability VCID-52wf-fheq-cuer
3
vulnerability VCID-57wc-s2nn-cyeu
4
vulnerability VCID-6zc1-xs64-1bc6
5
vulnerability VCID-ep38-eu98-fbas
6
vulnerability VCID-h6v3-24fq-3udw
7
vulnerability VCID-qcsd-5htt-h3ev
8
vulnerability VCID-tv4c-g8r6-xbf6
9
vulnerability VCID-wyn5-w4qh-nfht
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.0
aliases CVE-2022-3439, PYSEC-2022-43159
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-rynh-v7q5-6kdg
14
url VCID-sn4z-f439-6qe7
vulnerability_id VCID-sn4z-f439-6qe7
summary Weak Password Requirements in GitHub repository ikus060/rdiffweb prior to 2.5.0a4.
references
0
reference_url https://github.com/ikus060/rdiffweb/commit/2ffc2af65c8f8113b06e0b89929c604bcdf844b9
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
url https://github.com/ikus060/rdiffweb/commit/2ffc2af65c8f8113b06e0b89929c604bcdf844b9
1
reference_url https://huntr.dev/bounties/a9021e93-6d18-4ac1-98ce-550c4697a4ed
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
url https://huntr.dev/bounties/a9021e93-6d18-4ac1-98ce-550c4697a4ed
fixed_packages
0
url pkg:pypi/rdiffweb@2.4.11a1
purl pkg:pypi/rdiffweb@2.4.11a1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-25yw-5nru-aygm
1
vulnerability VCID-287j-23ju-9fhk
2
vulnerability VCID-52wf-fheq-cuer
3
vulnerability VCID-57wc-s2nn-cyeu
4
vulnerability VCID-5xg7-u3nr-nkfg
5
vulnerability VCID-6zc1-xs64-1bc6
6
vulnerability VCID-ep38-eu98-fbas
7
vulnerability VCID-fcym-y8c1-xqdq
8
vulnerability VCID-h6v3-24fq-3udw
9
vulnerability VCID-n88y-9qre-n3bz
10
vulnerability VCID-ps4e-cg34-wyah
11
vulnerability VCID-qcsd-5htt-h3ev
12
vulnerability VCID-rynh-v7q5-6kdg
13
vulnerability VCID-tv4c-g8r6-xbf6
14
vulnerability VCID-wyn5-w4qh-nfht
15
vulnerability VCID-yssm-eyx3-efhs
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.4.11a1
aliases CVE-2022-3376, PYSEC-2022-43157
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-sn4z-f439-6qe7
15
url VCID-tv4c-g8r6-xbf6
vulnerability_id VCID-tv4c-g8r6-xbf6
summary Open Redirect in GitHub repository ikus060/rdiffweb prior to 2.5.4.
references
0
reference_url https://github.com/ikus060/rdiffweb/commit/5f861670ef8f38ca8eea52a98672d0e0fabb5368
reference_id
reference_type
scores
url https://github.com/ikus060/rdiffweb/commit/5f861670ef8f38ca8eea52a98672d0e0fabb5368
1
reference_url https://huntr.dev/bounties/77e5f425-c764-4cb0-936a-7a76bfcf19b0
reference_id
reference_type
scores
url https://huntr.dev/bounties/77e5f425-c764-4cb0-936a-7a76bfcf19b0
fixed_packages
0
url pkg:pypi/rdiffweb@2.5.4
purl pkg:pypi/rdiffweb@2.5.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-287j-23ju-9fhk
1
vulnerability VCID-52wf-fheq-cuer
2
vulnerability VCID-6zc1-xs64-1bc6
3
vulnerability VCID-ep38-eu98-fbas
4
vulnerability VCID-h6v3-24fq-3udw
5
vulnerability VCID-qcsd-5htt-h3ev
6
vulnerability VCID-wyn5-w4qh-nfht
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.4
aliases CVE-2022-4644, PYSEC-2022-43003
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tv4c-g8r6-xbf6
16
url VCID-wyn5-w4qh-nfht
vulnerability_id VCID-wyn5-w4qh-nfht
summary Business Logic Errors in GitHub repository ikus060/rdiffweb prior to 2.5.5.
references
0
reference_url https://github.com/ikus060/rdiffweb/commit/bc4bed89affcba71251fe54ed10639da9d392c1d
reference_id
reference_type
scores
url https://github.com/ikus060/rdiffweb/commit/bc4bed89affcba71251fe54ed10639da9d392c1d
1
reference_url https://huntr.dev/bounties/9f746881-ad42-446b-9b1d-153391eacc09
reference_id
reference_type
scores
url https://huntr.dev/bounties/9f746881-ad42-446b-9b1d-153391eacc09
fixed_packages
0
url pkg:pypi/rdiffweb@2.5.5
purl pkg:pypi/rdiffweb@2.5.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-52wf-fheq-cuer
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.5
aliases CVE-2022-4719, PYSEC-2022-43005
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wyn5-w4qh-nfht
17
url VCID-yssm-eyx3-efhs
vulnerability_id VCID-yssm-eyx3-efhs
summary Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0.
references
0
reference_url https://github.com/ikus060/rdiffweb/commit/b78ec09f4582e363f6f449df6f987127e126c311
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://github.com/ikus060/rdiffweb/commit/b78ec09f4582e363f6f449df6f987127e126c311
1
reference_url https://huntr.dev/bounties/b34412ca-50c5-4615-b7e3-5d07d33acfce
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://huntr.dev/bounties/b34412ca-50c5-4615-b7e3-5d07d33acfce
fixed_packages
0
url pkg:pypi/rdiffweb@2.5.0
purl pkg:pypi/rdiffweb@2.5.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-25yw-5nru-aygm
1
vulnerability VCID-287j-23ju-9fhk
2
vulnerability VCID-52wf-fheq-cuer
3
vulnerability VCID-57wc-s2nn-cyeu
4
vulnerability VCID-6zc1-xs64-1bc6
5
vulnerability VCID-ep38-eu98-fbas
6
vulnerability VCID-h6v3-24fq-3udw
7
vulnerability VCID-qcsd-5htt-h3ev
8
vulnerability VCID-tv4c-g8r6-xbf6
9
vulnerability VCID-wyn5-w4qh-nfht
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.0
aliases CVE-2022-3456, PYSEC-2022-43160
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-yssm-eyx3-efhs
18
url VCID-yz9x-nz9u-wybe
vulnerability_id VCID-yz9x-nz9u-wybe
summary Missing Authentication for Critical Function in GitHub repository ikus060/rdiffweb prior to 2.5.0a6.
references
0
reference_url https://github.com/ikus060/rdiffweb/commit/f2a32f2a9f3fb8be1a9432ac3d81d3aacdb13095
reference_id
reference_type
scores
url https://github.com/ikus060/rdiffweb/commit/f2a32f2a9f3fb8be1a9432ac3d81d3aacdb13095
1
reference_url https://huntr.dev/bounties/02207c8f-2b15-4a31-a86a-74fd2fca0ed1
reference_id
reference_type
scores
url https://huntr.dev/bounties/02207c8f-2b15-4a31-a86a-74fd2fca0ed1
fixed_packages
0
url pkg:pypi/rdiffweb@2.4.10
purl pkg:pypi/rdiffweb@2.4.10
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-25yw-5nru-aygm
1
vulnerability VCID-287j-23ju-9fhk
2
vulnerability VCID-52wf-fheq-cuer
3
vulnerability VCID-57wc-s2nn-cyeu
4
vulnerability VCID-5xg7-u3nr-nkfg
5
vulnerability VCID-6zc1-xs64-1bc6
6
vulnerability VCID-9f5c-ne9b-27fd
7
vulnerability VCID-ep38-eu98-fbas
8
vulnerability VCID-fcym-y8c1-xqdq
9
vulnerability VCID-h6v3-24fq-3udw
10
vulnerability VCID-n88y-9qre-n3bz
11
vulnerability VCID-ps4e-cg34-wyah
12
vulnerability VCID-qcsd-5htt-h3ev
13
vulnerability VCID-rynh-v7q5-6kdg
14
vulnerability VCID-sn4z-f439-6qe7
15
vulnerability VCID-tv4c-g8r6-xbf6
16
vulnerability VCID-wyn5-w4qh-nfht
17
vulnerability VCID-yssm-eyx3-efhs
18
vulnerability VCID-zzjz-9wv2-vfcc
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.4.10
aliases CVE-2022-3327, PYSEC-2022-42977
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-yz9x-nz9u-wybe
19
url VCID-zzjz-9wv2-vfcc
vulnerability_id VCID-zzjz-9wv2-vfcc
summary Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0a4.
references
0
reference_url https://github.com/ikus060/rdiffweb/commit/b5e3bb0a98268d18ceead36ab9b2b7eaacd659a8
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://github.com/ikus060/rdiffweb/commit/b5e3bb0a98268d18ceead36ab9b2b7eaacd659a8
1
reference_url https://huntr.dev/bounties/a6df4bad-3382-4add-8918-760d885690f6
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://huntr.dev/bounties/a6df4bad-3382-4add-8918-760d885690f6
fixed_packages
0
url pkg:pypi/rdiffweb@2.4.11a1
purl pkg:pypi/rdiffweb@2.4.11a1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-25yw-5nru-aygm
1
vulnerability VCID-287j-23ju-9fhk
2
vulnerability VCID-52wf-fheq-cuer
3
vulnerability VCID-57wc-s2nn-cyeu
4
vulnerability VCID-5xg7-u3nr-nkfg
5
vulnerability VCID-6zc1-xs64-1bc6
6
vulnerability VCID-ep38-eu98-fbas
7
vulnerability VCID-fcym-y8c1-xqdq
8
vulnerability VCID-h6v3-24fq-3udw
9
vulnerability VCID-n88y-9qre-n3bz
10
vulnerability VCID-ps4e-cg34-wyah
11
vulnerability VCID-qcsd-5htt-h3ev
12
vulnerability VCID-rynh-v7q5-6kdg
13
vulnerability VCID-tv4c-g8r6-xbf6
14
vulnerability VCID-wyn5-w4qh-nfht
15
vulnerability VCID-yssm-eyx3-efhs
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.4.11a1
aliases CVE-2022-3273, PYSEC-2022-43156
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zzjz-9wv2-vfcc
Fixing_vulnerabilities
0
url VCID-btgq-2yaz-abdd
vulnerability_id VCID-btgq-2yaz-abdd
summary Weak Password Requirements in GitHub repository ikus060/rdiffweb prior to 2.4.9.
references
0
reference_url https://github.com/ikus060/rdiffweb/commit/ee98e5af78ec60db8a17fef6ea0ca250e3f31eec
reference_id
reference_type
scores
url https://github.com/ikus060/rdiffweb/commit/ee98e5af78ec60db8a17fef6ea0ca250e3f31eec
1
reference_url https://huntr.dev/bounties/1f6a5e49-23f2-45f7-8661-19f9cee8ae97
reference_id
reference_type
scores
url https://huntr.dev/bounties/1f6a5e49-23f2-45f7-8661-19f9cee8ae97
fixed_packages
0
url pkg:pypi/rdiffweb@2.4.9
purl pkg:pypi/rdiffweb@2.4.9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-25yw-5nru-aygm
1
vulnerability VCID-287j-23ju-9fhk
2
vulnerability VCID-52wf-fheq-cuer
3
vulnerability VCID-57wc-s2nn-cyeu
4
vulnerability VCID-5xg7-u3nr-nkfg
5
vulnerability VCID-6zc1-xs64-1bc6
6
vulnerability VCID-9f5c-ne9b-27fd
7
vulnerability VCID-ep38-eu98-fbas
8
vulnerability VCID-fcym-y8c1-xqdq
9
vulnerability VCID-h6v3-24fq-3udw
10
vulnerability VCID-n88y-9qre-n3bz
11
vulnerability VCID-ps4e-cg34-wyah
12
vulnerability VCID-qcsd-5htt-h3ev
13
vulnerability VCID-rynh-v7q5-6kdg
14
vulnerability VCID-sn4z-f439-6qe7
15
vulnerability VCID-tv4c-g8r6-xbf6
16
vulnerability VCID-wyn5-w4qh-nfht
17
vulnerability VCID-yssm-eyx3-efhs
18
vulnerability VCID-yz9x-nz9u-wybe
19
vulnerability VCID-zzjz-9wv2-vfcc
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.4.9
aliases CVE-2022-3326, PYSEC-2022-297
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-btgq-2yaz-abdd
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.4.9