VulnerableCode.io REST API

Lookup for vulnerable packages by Package URL.

GET /api/packages/29295?format=api

HTTP 200 OK
Allow: GET, HEAD, OPTIONS
Content-Type: application/json
Vary: Accept

{
    "url": "http://public2.vulnerablecode.io/api/packages/29295?format=api",
    "purl": "pkg:pypi/rdiffweb@2.4.10",
    "type": "pypi",
    "namespace": "",
    "name": "rdiffweb",
    "version": "2.4.10",
    "qualifiers": {},
    "subpath": "",
    "is_vulnerable": true,
    "next_non_vulnerable_version": "2.8.4",
    "latest_non_vulnerable_version": "2.8.4",
    "affected_by_vulnerabilities": [
        {
            "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36327?format=api",
            "vulnerability_id": "VCID-25yw-5nru-aygm",
            "summary": "Improper Privilege Management in GitHub repository ikus060/rdiffweb prior to 2.5.2.",
            "references": [
                {
                    "reference_url": "https://github.com/ikus060/rdiffweb/commit/b2df3679564d0daa2856213bb307d3e34bd89a25",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://github.com/ikus060/rdiffweb/commit/b2df3679564d0daa2856213bb307d3e34bd89a25"
                },
                {
                    "reference_url": "https://huntr.dev/bounties/b2dc504d-92ae-4221-a096-12ff223d95a8",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://huntr.dev/bounties/b2dc504d-92ae-4221-a096-12ff223d95a8"
                }
            ],
            "fixed_packages": [
                {
                    "url": "http://public2.vulnerablecode.io/api/packages/30266?format=api",
                    "purl": "pkg:pypi/rdiffweb@2.5.2",
                    "is_vulnerable": true,
                    "affected_by_vulnerabilities": [
                        {
                            "vulnerability": "VCID-287j-23ju-9fhk"
                        },
                        {
                            "vulnerability": "VCID-52wf-fheq-cuer"
                        },
                        {
                            "vulnerability": "VCID-57wc-s2nn-cyeu"
                        },
                        {
                            "vulnerability": "VCID-6zc1-xs64-1bc6"
                        },
                        {
                            "vulnerability": "VCID-ep38-eu98-fbas"
                        },
                        {
                            "vulnerability": "VCID-h6v3-24fq-3udw"
                        },
                        {
                            "vulnerability": "VCID-qcsd-5htt-h3ev"
                        },
                        {
                            "vulnerability": "VCID-tv4c-g8r6-xbf6"
                        },
                        {
                            "vulnerability": "VCID-wyn5-w4qh-nfht"
                        }
                    ],
                    "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.2"
                }
            ],
            "aliases": [
                "CVE-2022-4314",
                "PYSEC-2022-43002"
            ],
            "risk_score": null,
            "exploitability": null,
            "weighted_severity": null,
            "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-25yw-5nru-aygm"
        },
        {
            "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36349?format=api",
            "vulnerability_id": "VCID-287j-23ju-9fhk",
            "summary": "Open Redirect in GitHub repository ikus060/rdiffweb prior to 2.5.5.",
            "references": [
                {
                    "reference_url": "https://github.com/ikus060/rdiffweb/commit/6afaae56a29536f0118b3380d296c416aa6d078d",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://github.com/ikus060/rdiffweb/commit/6afaae56a29536f0118b3380d296c416aa6d078d"
                },
                {
                    "reference_url": "https://huntr.dev/bounties/339687af-6e25-4ad8-823d-c097f607ea70",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://huntr.dev/bounties/339687af-6e25-4ad8-823d-c097f607ea70"
                }
            ],
            "fixed_packages": [
                {
                    "url": "http://public2.vulnerablecode.io/api/packages/31062?format=api",
                    "purl": "pkg:pypi/rdiffweb@2.5.5",
                    "is_vulnerable": true,
                    "affected_by_vulnerabilities": [
                        {
                            "vulnerability": "VCID-52wf-fheq-cuer"
                        }
                    ],
                    "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.5"
                }
            ],
            "aliases": [
                "CVE-2022-4720",
                "PYSEC-2022-43006"
            ],
            "risk_score": null,
            "exploitability": null,
            "weighted_severity": null,
            "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-287j-23ju-9fhk"
        },
        {
            "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36558?format=api",
            "vulnerability_id": "VCID-52wf-fheq-cuer",
            "summary": "Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.8.4.",
            "references": [
                {
                    "reference_url": "https://github.com/ikus060/rdiffweb",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://github.com/ikus060/rdiffweb"
                },
                {
                    "reference_url": "https://github.com/ikus060/rdiffweb/commit/06f89b43469aae70e8833e55192721523f86c5a2",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [
                        {
                            "value": "8.8",
                            "scoring_system": "cvssv3.1",
                            "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"
                        }
                    ],
                    "url": "https://github.com/ikus060/rdiffweb/commit/06f89b43469aae70e8833e55192721523f86c5a2"
                },
                {
                    "reference_url": "https://github.com/pypa/advisory-database/tree/main/vulns/rdiffweb/PYSEC-2023-186.yaml",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://github.com/pypa/advisory-database/tree/main/vulns/rdiffweb/PYSEC-2023-186.yaml"
                },
                {
                    "reference_url": "https://huntr.dev/bounties/8d0e0804-d3fd-49fe-bfa4-7a91135767ce",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [
                        {
                            "value": "8.8",
                            "scoring_system": "cvssv3.1",
                            "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"
                        }
                    ],
                    "url": "https://huntr.dev/bounties/8d0e0804-d3fd-49fe-bfa4-7a91135767ce"
                },
                {
                    "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-5289",
                    "reference_id": "CVE-2023-5289",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-5289"
                },
                {
                    "reference_url": "https://github.com/advisories/GHSA-c4rv-2j6x-pq7x",
                    "reference_id": "GHSA-c4rv-2j6x-pq7x",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://github.com/advisories/GHSA-c4rv-2j6x-pq7x"
                }
            ],
            "fixed_packages": [
                {
                    "url": "http://public2.vulnerablecode.io/api/packages/36165?format=api",
                    "purl": "pkg:pypi/rdiffweb@2.8.4",
                    "is_vulnerable": false,
                    "affected_by_vulnerabilities": [],
                    "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.8.4"
                }
            ],
            "aliases": [
                "CVE-2023-5289",
                "GHSA-c4rv-2j6x-pq7x",
                "PYSEC-2023-186"
            ],
            "risk_score": null,
            "exploitability": null,
            "weighted_severity": null,
            "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-52wf-fheq-cuer"
        },
        {
            "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36340?format=api",
            "vulnerability_id": "VCID-57wc-s2nn-cyeu",
            "summary": "Cross-Site Request Forgery (CSRF) in GitHub repository ikus060/rdiffweb prior to 2.5.4.",
            "references": [
                {
                    "reference_url": "https://github.com/ikus060/rdiffweb/commit/e6f0d8002129be90fe82fa3e3ea0a6942caba398",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://github.com/ikus060/rdiffweb/commit/e6f0d8002129be90fe82fa3e3ea0a6942caba398"
                },
                {
                    "reference_url": "https://huntr.dev/bounties/17bc1b0f-1f5c-432f-88e4-c9866ccf6e10",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://huntr.dev/bounties/17bc1b0f-1f5c-432f-88e4-c9866ccf6e10"
                }
            ],
            "fixed_packages": [
                {
                    "url": "http://public2.vulnerablecode.io/api/packages/30418?format=api",
                    "purl": "pkg:pypi/rdiffweb@2.5.4",
                    "is_vulnerable": true,
                    "affected_by_vulnerabilities": [
                        {
                            "vulnerability": "VCID-287j-23ju-9fhk"
                        },
                        {
                            "vulnerability": "VCID-52wf-fheq-cuer"
                        },
                        {
                            "vulnerability": "VCID-6zc1-xs64-1bc6"
                        },
                        {
                            "vulnerability": "VCID-ep38-eu98-fbas"
                        },
                        {
                            "vulnerability": "VCID-h6v3-24fq-3udw"
                        },
                        {
                            "vulnerability": "VCID-qcsd-5htt-h3ev"
                        },
                        {
                            "vulnerability": "VCID-wyn5-w4qh-nfht"
                        }
                    ],
                    "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.4"
                }
            ],
            "aliases": [
                "CVE-2022-4646",
                "PYSEC-2022-43004"
            ],
            "risk_score": null,
            "exploitability": null,
            "weighted_severity": null,
            "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-57wc-s2nn-cyeu"
        },
        {
            "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36312?format=api",
            "vulnerability_id": "VCID-5xg7-u3nr-nkfg",
            "summary": "Insufficient Session Expiration in GitHub repository ikus060/rdiffweb prior to 2.5.0.",
            "references": [
                {
                    "reference_url": "https://github.com/ikus060/rdiffweb/commit/6efb995bc32c8a8e9ad755eb813dec991dffb2b8",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://github.com/ikus060/rdiffweb/commit/6efb995bc32c8a8e9ad755eb813dec991dffb2b8"
                },
                {
                    "reference_url": "https://huntr.dev/bounties/ca428c31-858d-47fa-adc9-2a59f8e8b2b1",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://huntr.dev/bounties/ca428c31-858d-47fa-adc9-2a59f8e8b2b1"
                }
            ],
            "fixed_packages": [
                {
                    "url": "http://public2.vulnerablecode.io/api/packages/29472?format=api",
                    "purl": "pkg:pypi/rdiffweb@2.5.0",
                    "is_vulnerable": true,
                    "affected_by_vulnerabilities": [
                        {
                            "vulnerability": "VCID-25yw-5nru-aygm"
                        },
                        {
                            "vulnerability": "VCID-287j-23ju-9fhk"
                        },
                        {
                            "vulnerability": "VCID-52wf-fheq-cuer"
                        },
                        {
                            "vulnerability": "VCID-57wc-s2nn-cyeu"
                        },
                        {
                            "vulnerability": "VCID-6zc1-xs64-1bc6"
                        },
                        {
                            "vulnerability": "VCID-ep38-eu98-fbas"
                        },
                        {
                            "vulnerability": "VCID-h6v3-24fq-3udw"
                        },
                        {
                            "vulnerability": "VCID-qcsd-5htt-h3ev"
                        },
                        {
                            "vulnerability": "VCID-tv4c-g8r6-xbf6"
                        },
                        {
                            "vulnerability": "VCID-wyn5-w4qh-nfht"
                        }
                    ],
                    "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.0"
                }
            ],
            "aliases": [
                "CVE-2022-3362",
                "PYSEC-2022-43000"
            ],
            "risk_score": null,
            "exploitability": null,
            "weighted_severity": null,
            "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5xg7-u3nr-nkfg"
        },
        {
            "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36347?format=api",
            "vulnerability_id": "VCID-6zc1-xs64-1bc6",
            "summary": "Improper Access Control in GitHub repository ikus060/rdiffweb prior to 2.5.5.",
            "references": [
                {
                    "reference_url": "https://github.com/ikus060/rdiffweb/commit/c4a19cf67d575c4886171b8efcbf4675d51f3929",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://github.com/ikus060/rdiffweb/commit/c4a19cf67d575c4886171b8efcbf4675d51f3929"
                },
                {
                    "reference_url": "https://huntr.dev/bounties/e6fb1931-8d9c-4895-be4a-59839b4b6445",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://huntr.dev/bounties/e6fb1931-8d9c-4895-be4a-59839b4b6445"
                }
            ],
            "fixed_packages": [
                {
                    "url": "http://public2.vulnerablecode.io/api/packages/31062?format=api",
                    "purl": "pkg:pypi/rdiffweb@2.5.5",
                    "is_vulnerable": true,
                    "affected_by_vulnerabilities": [
                        {
                            "vulnerability": "VCID-52wf-fheq-cuer"
                        }
                    ],
                    "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.5"
                }
            ],
            "aliases": [
                "CVE-2022-4724",
                "PYSEC-2022-43010"
            ],
            "risk_score": null,
            "exploitability": null,
            "weighted_severity": null,
            "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6zc1-xs64-1bc6"
        },
        {
            "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36314?format=api",
            "vulnerability_id": "VCID-9f5c-ne9b-27fd",
            "summary": "Missing Authentication for Critical Function in GitHub repository ikus060/rdiffweb prior to 2.5.0a6.",
            "references": [
                {
                    "reference_url": "https://github.com/ikus060/rdiffweb/commit/f2a32f2a9f3fb8be1a9432ac3d81d3aacdb13095",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://github.com/ikus060/rdiffweb/commit/f2a32f2a9f3fb8be1a9432ac3d81d3aacdb13095"
                },
                {
                    "reference_url": "https://huntr.dev/bounties/5340c2f6-0252-40f6-8929-cca5d64958a5",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://huntr.dev/bounties/5340c2f6-0252-40f6-8929-cca5d64958a5"
                }
            ],
            "fixed_packages": [
                {
                    "url": "http://public2.vulnerablecode.io/api/packages/29462?format=api",
                    "purl": "pkg:pypi/rdiffweb@2.4.11a1",
                    "is_vulnerable": true,
                    "affected_by_vulnerabilities": [
                        {
                            "vulnerability": "VCID-25yw-5nru-aygm"
                        },
                        {
                            "vulnerability": "VCID-287j-23ju-9fhk"
                        },
                        {
                            "vulnerability": "VCID-52wf-fheq-cuer"
                        },
                        {
                            "vulnerability": "VCID-57wc-s2nn-cyeu"
                        },
                        {
                            "vulnerability": "VCID-5xg7-u3nr-nkfg"
                        },
                        {
                            "vulnerability": "VCID-6zc1-xs64-1bc6"
                        },
                        {
                            "vulnerability": "VCID-ep38-eu98-fbas"
                        },
                        {
                            "vulnerability": "VCID-fcym-y8c1-xqdq"
                        },
                        {
                            "vulnerability": "VCID-h6v3-24fq-3udw"
                        },
                        {
                            "vulnerability": "VCID-n88y-9qre-n3bz"
                        },
                        {
                            "vulnerability": "VCID-ps4e-cg34-wyah"
                        },
                        {
                            "vulnerability": "VCID-qcsd-5htt-h3ev"
                        },
                        {
                            "vulnerability": "VCID-rynh-v7q5-6kdg"
                        },
                        {
                            "vulnerability": "VCID-tv4c-g8r6-xbf6"
                        },
                        {
                            "vulnerability": "VCID-wyn5-w4qh-nfht"
                        },
                        {
                            "vulnerability": "VCID-yssm-eyx3-efhs"
                        }
                    ],
                    "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.4.11a1"
                }
            ],
            "aliases": [
                "CVE-2022-4018",
                "PYSEC-2022-43001"
            ],
            "risk_score": null,
            "exploitability": null,
            "weighted_severity": null,
            "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9f5c-ne9b-27fd"
        },
        {
            "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36351?format=api",
            "vulnerability_id": "VCID-ep38-eu98-fbas",
            "summary": "Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) in GitHub repository ikus060/rdiffweb prior to 2.5.5.",
            "references": [
                {
                    "reference_url": "https://github.com/ikus060/rdiffweb/commit/6afaae56a29536f0118b3380d296c416aa6d078d",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://github.com/ikus060/rdiffweb/commit/6afaae56a29536f0118b3380d296c416aa6d078d"
                },
                {
                    "reference_url": "https://huntr.dev/bounties/3c48ef5d-da4d-4ee4-aaca-af65e7273720",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://huntr.dev/bounties/3c48ef5d-da4d-4ee4-aaca-af65e7273720"
                }
            ],
            "fixed_packages": [
                {
                    "url": "http://public2.vulnerablecode.io/api/packages/31062?format=api",
                    "purl": "pkg:pypi/rdiffweb@2.5.5",
                    "is_vulnerable": true,
                    "affected_by_vulnerabilities": [
                        {
                            "vulnerability": "VCID-52wf-fheq-cuer"
                        }
                    ],
                    "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.5"
                }
            ],
            "aliases": [
                "CVE-2022-4721",
                "PYSEC-2022-43007"
            ],
            "risk_score": null,
            "exploitability": null,
            "weighted_severity": null,
            "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ep38-eu98-fbas"
        },
        {
            "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36279?format=api",
            "vulnerability_id": "VCID-fcym-y8c1-xqdq",
            "summary": "Origin Validation Error in GitHub repository ikus060/rdiffweb prior to 2.5.0a5.",
            "references": [
                {
                    "reference_url": "https://github.com/ikus060/rdiffweb/commit/afc1bdfab5161c74012ff2590a6ec49cc0d8fde0",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [
                        {
                            "value": "9.8",
                            "scoring_system": "cvssv3.1",
                            "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
                        }
                    ],
                    "url": "https://github.com/ikus060/rdiffweb/commit/afc1bdfab5161c74012ff2590a6ec49cc0d8fde0"
                },
                {
                    "reference_url": "https://huntr.dev/bounties/cfcab02e-d6ad-4dcf-b1b0-da90434bc55b",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [
                        {
                            "value": "9.8",
                            "scoring_system": "cvssv3.1",
                            "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
                        }
                    ],
                    "url": "https://huntr.dev/bounties/cfcab02e-d6ad-4dcf-b1b0-da90434bc55b"
                }
            ],
            "fixed_packages": [
                {
                    "url": "http://public2.vulnerablecode.io/api/packages/29472?format=api",
                    "purl": "pkg:pypi/rdiffweb@2.5.0",
                    "is_vulnerable": true,
                    "affected_by_vulnerabilities": [
                        {
                            "vulnerability": "VCID-25yw-5nru-aygm"
                        },
                        {
                            "vulnerability": "VCID-287j-23ju-9fhk"
                        },
                        {
                            "vulnerability": "VCID-52wf-fheq-cuer"
                        },
                        {
                            "vulnerability": "VCID-57wc-s2nn-cyeu"
                        },
                        {
                            "vulnerability": "VCID-6zc1-xs64-1bc6"
                        },
                        {
                            "vulnerability": "VCID-ep38-eu98-fbas"
                        },
                        {
                            "vulnerability": "VCID-h6v3-24fq-3udw"
                        },
                        {
                            "vulnerability": "VCID-qcsd-5htt-h3ev"
                        },
                        {
                            "vulnerability": "VCID-tv4c-g8r6-xbf6"
                        },
                        {
                            "vulnerability": "VCID-wyn5-w4qh-nfht"
                        }
                    ],
                    "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.0"
                }
            ],
            "aliases": [
                "CVE-2022-3457",
                "PYSEC-2022-43161"
            ],
            "risk_score": null,
            "exploitability": null,
            "weighted_severity": null,
            "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fcym-y8c1-xqdq"
        },
        {
            "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36350?format=api",
            "vulnerability_id": "VCID-h6v3-24fq-3udw",
            "summary": "Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.5.",
            "references": [
                {
                    "reference_url": "https://github.com/ikus060/rdiffweb/commit/6e9ee210548f6d3210704cac302cfc7cdb239765",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://github.com/ikus060/rdiffweb/commit/6e9ee210548f6d3210704cac302cfc7cdb239765"
                },
                {
                    "reference_url": "https://huntr.dev/bounties/9369681b-8bfc-4146-a54c-c5108442d92c",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://huntr.dev/bounties/9369681b-8bfc-4146-a54c-c5108442d92c"
                }
            ],
            "fixed_packages": [
                {
                    "url": "http://public2.vulnerablecode.io/api/packages/31062?format=api",
                    "purl": "pkg:pypi/rdiffweb@2.5.5",
                    "is_vulnerable": true,
                    "affected_by_vulnerabilities": [
                        {
                            "vulnerability": "VCID-52wf-fheq-cuer"
                        }
                    ],
                    "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.5"
                }
            ],
            "aliases": [
                "CVE-2022-4723",
                "PYSEC-2022-43009"
            ],
            "risk_score": null,
            "exploitability": null,
            "weighted_severity": null,
            "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-h6v3-24fq-3udw"
        },
        {
            "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36259?format=api",
            "vulnerability_id": "VCID-n88y-9qre-n3bz",
            "summary": "Open Redirect in GitHub repository ikus060/rdiffweb prior to 2.5.0a4.",
            "references": [
                {
                    "reference_url": "https://github.com/ikus060/rdiffweb/commit/4d464b467f14b8eb9103d7f5f0774e49995527c7",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [
                        {
                            "value": "6.1",
                            "scoring_system": "cvssv3.1",
                            "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"
                        }
                    ],
                    "url": "https://github.com/ikus060/rdiffweb/commit/4d464b467f14b8eb9103d7f5f0774e49995527c7"
                },
                {
                    "reference_url": "https://huntr.dev/bounties/bc5689e4-221a-4200-a8ab-42c659f89f67",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [
                        {
                            "value": "6.1",
                            "scoring_system": "cvssv3.1",
                            "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"
                        }
                    ],
                    "url": "https://huntr.dev/bounties/bc5689e4-221a-4200-a8ab-42c659f89f67"
                }
            ],
            "fixed_packages": [
                {
                    "url": "http://public2.vulnerablecode.io/api/packages/29472?format=api",
                    "purl": "pkg:pypi/rdiffweb@2.5.0",
                    "is_vulnerable": true,
                    "affected_by_vulnerabilities": [
                        {
                            "vulnerability": "VCID-25yw-5nru-aygm"
                        },
                        {
                            "vulnerability": "VCID-287j-23ju-9fhk"
                        },
                        {
                            "vulnerability": "VCID-52wf-fheq-cuer"
                        },
                        {
                            "vulnerability": "VCID-57wc-s2nn-cyeu"
                        },
                        {
                            "vulnerability": "VCID-6zc1-xs64-1bc6"
                        },
                        {
                            "vulnerability": "VCID-ep38-eu98-fbas"
                        },
                        {
                            "vulnerability": "VCID-h6v3-24fq-3udw"
                        },
                        {
                            "vulnerability": "VCID-qcsd-5htt-h3ev"
                        },
                        {
                            "vulnerability": "VCID-tv4c-g8r6-xbf6"
                        },
                        {
                            "vulnerability": "VCID-wyn5-w4qh-nfht"
                        }
                    ],
                    "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.0"
                }
            ],
            "aliases": [
                "CVE-2022-3438",
                "PYSEC-2022-43158"
            ],
            "risk_score": null,
            "exploitability": null,
            "weighted_severity": null,
            "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-n88y-9qre-n3bz"
        },
        {
            "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36287?format=api",
            "vulnerability_id": "VCID-ps4e-cg34-wyah",
            "summary": "Business Logic Errors in GitHub repository ikus060/rdiffweb prior to 2.5.0a7.",
            "references": [
                {
                    "reference_url": "https://github.com/ikus060/rdiffweb/commit/c27c46bac656b1da74f28eac1b52dfa5df76e6f2",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://github.com/ikus060/rdiffweb/commit/c27c46bac656b1da74f28eac1b52dfa5df76e6f2"
                },
                {
                    "reference_url": "https://huntr.dev/bounties/b8a40ba6-2452-4abe-a80a-2d065ee8891e",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://huntr.dev/bounties/b8a40ba6-2452-4abe-a80a-2d065ee8891e"
                }
            ],
            "fixed_packages": [
                {
                    "url": "http://public2.vulnerablecode.io/api/packages/29472?format=api",
                    "purl": "pkg:pypi/rdiffweb@2.5.0",
                    "is_vulnerable": true,
                    "affected_by_vulnerabilities": [
                        {
                            "vulnerability": "VCID-25yw-5nru-aygm"
                        },
                        {
                            "vulnerability": "VCID-287j-23ju-9fhk"
                        },
                        {
                            "vulnerability": "VCID-52wf-fheq-cuer"
                        },
                        {
                            "vulnerability": "VCID-57wc-s2nn-cyeu"
                        },
                        {
                            "vulnerability": "VCID-6zc1-xs64-1bc6"
                        },
                        {
                            "vulnerability": "VCID-ep38-eu98-fbas"
                        },
                        {
                            "vulnerability": "VCID-h6v3-24fq-3udw"
                        },
                        {
                            "vulnerability": "VCID-qcsd-5htt-h3ev"
                        },
                        {
                            "vulnerability": "VCID-tv4c-g8r6-xbf6"
                        },
                        {
                            "vulnerability": "VCID-wyn5-w4qh-nfht"
                        }
                    ],
                    "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.0"
                }
            ],
            "aliases": [
                "CVE-2022-3363",
                "PYSEC-2022-42978"
            ],
            "risk_score": null,
            "exploitability": null,
            "weighted_severity": null,
            "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ps4e-cg34-wyah"
        },
        {
            "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36346?format=api",
            "vulnerability_id": "VCID-qcsd-5htt-h3ev",
            "summary": "Authentication Bypass by Primary Weakness in GitHub repository ikus060/rdiffweb prior to 2.5.5.",
            "references": [
                {
                    "reference_url": "https://github.com/ikus060/rdiffweb/commit/d1aaa96b665a39fba9e98d6054a9de511ba0a837",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://github.com/ikus060/rdiffweb/commit/d1aaa96b665a39fba9e98d6054a9de511ba0a837"
                },
                {
                    "reference_url": "https://huntr.dev/bounties/c62126dc-d9a6-4d3e-988d-967031876c58",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://huntr.dev/bounties/c62126dc-d9a6-4d3e-988d-967031876c58"
                }
            ],
            "fixed_packages": [
                {
                    "url": "http://public2.vulnerablecode.io/api/packages/31062?format=api",
                    "purl": "pkg:pypi/rdiffweb@2.5.5",
                    "is_vulnerable": true,
                    "affected_by_vulnerabilities": [
                        {
                            "vulnerability": "VCID-52wf-fheq-cuer"
                        }
                    ],
                    "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.5"
                }
            ],
            "aliases": [
                "CVE-2022-4722",
                "PYSEC-2022-43008"
            ],
            "risk_score": null,
            "exploitability": null,
            "weighted_severity": null,
            "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qcsd-5htt-h3ev"
        },
        {
            "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36280?format=api",
            "vulnerability_id": "VCID-rynh-v7q5-6kdg",
            "summary": "Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0.",
            "references": [
                {
                    "reference_url": "https://github.com/ikus060/rdiffweb/commit/b78ec09f4582e363f6f449df6f987127e126c311",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [
                        {
                            "value": "9.8",
                            "scoring_system": "cvssv3.1",
                            "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
                        }
                    ],
                    "url": "https://github.com/ikus060/rdiffweb/commit/b78ec09f4582e363f6f449df6f987127e126c311"
                },
                {
                    "reference_url": "https://huntr.dev/bounties/37b86c45-b240-4626-bd53-b6f02d10e0d7",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [
                        {
                            "value": "9.8",
                            "scoring_system": "cvssv3.1",
                            "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
                        }
                    ],
                    "url": "https://huntr.dev/bounties/37b86c45-b240-4626-bd53-b6f02d10e0d7"
                }
            ],
            "fixed_packages": [
                {
                    "url": "http://public2.vulnerablecode.io/api/packages/29472?format=api",
                    "purl": "pkg:pypi/rdiffweb@2.5.0",
                    "is_vulnerable": true,
                    "affected_by_vulnerabilities": [
                        {
                            "vulnerability": "VCID-25yw-5nru-aygm"
                        },
                        {
                            "vulnerability": "VCID-287j-23ju-9fhk"
                        },
                        {
                            "vulnerability": "VCID-52wf-fheq-cuer"
                        },
                        {
                            "vulnerability": "VCID-57wc-s2nn-cyeu"
                        },
                        {
                            "vulnerability": "VCID-6zc1-xs64-1bc6"
                        },
                        {
                            "vulnerability": "VCID-ep38-eu98-fbas"
                        },
                        {
                            "vulnerability": "VCID-h6v3-24fq-3udw"
                        },
                        {
                            "vulnerability": "VCID-qcsd-5htt-h3ev"
                        },
                        {
                            "vulnerability": "VCID-tv4c-g8r6-xbf6"
                        },
                        {
                            "vulnerability": "VCID-wyn5-w4qh-nfht"
                        }
                    ],
                    "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.0"
                }
            ],
            "aliases": [
                "CVE-2022-3439",
                "PYSEC-2022-43159"
            ],
            "risk_score": null,
            "exploitability": null,
            "weighted_severity": null,
            "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rynh-v7q5-6kdg"
        },
        {
            "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36257?format=api",
            "vulnerability_id": "VCID-sn4z-f439-6qe7",
            "summary": "Weak Password Requirements in GitHub repository ikus060/rdiffweb prior to 2.5.0a4.",
            "references": [
                {
                    "reference_url": "https://github.com/ikus060/rdiffweb/commit/2ffc2af65c8f8113b06e0b89929c604bcdf844b9",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [
                        {
                            "value": "5.3",
                            "scoring_system": "cvssv3.1",
                            "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"
                        }
                    ],
                    "url": "https://github.com/ikus060/rdiffweb/commit/2ffc2af65c8f8113b06e0b89929c604bcdf844b9"
                },
                {
                    "reference_url": "https://huntr.dev/bounties/a9021e93-6d18-4ac1-98ce-550c4697a4ed",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [
                        {
                            "value": "5.3",
                            "scoring_system": "cvssv3.1",
                            "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"
                        }
                    ],
                    "url": "https://huntr.dev/bounties/a9021e93-6d18-4ac1-98ce-550c4697a4ed"
                }
            ],
            "fixed_packages": [
                {
                    "url": "http://public2.vulnerablecode.io/api/packages/29462?format=api",
                    "purl": "pkg:pypi/rdiffweb@2.4.11a1",
                    "is_vulnerable": true,
                    "affected_by_vulnerabilities": [
                        {
                            "vulnerability": "VCID-25yw-5nru-aygm"
                        },
                        {
                            "vulnerability": "VCID-287j-23ju-9fhk"
                        },
                        {
                            "vulnerability": "VCID-52wf-fheq-cuer"
                        },
                        {
                            "vulnerability": "VCID-57wc-s2nn-cyeu"
                        },
                        {
                            "vulnerability": "VCID-5xg7-u3nr-nkfg"
                        },
                        {
                            "vulnerability": "VCID-6zc1-xs64-1bc6"
                        },
                        {
                            "vulnerability": "VCID-ep38-eu98-fbas"
                        },
                        {
                            "vulnerability": "VCID-fcym-y8c1-xqdq"
                        },
                        {
                            "vulnerability": "VCID-h6v3-24fq-3udw"
                        },
                        {
                            "vulnerability": "VCID-n88y-9qre-n3bz"
                        },
                        {
                            "vulnerability": "VCID-ps4e-cg34-wyah"
                        },
                        {
                            "vulnerability": "VCID-qcsd-5htt-h3ev"
                        },
                        {
                            "vulnerability": "VCID-rynh-v7q5-6kdg"
                        },
                        {
                            "vulnerability": "VCID-tv4c-g8r6-xbf6"
                        },
                        {
                            "vulnerability": "VCID-wyn5-w4qh-nfht"
                        },
                        {
                            "vulnerability": "VCID-yssm-eyx3-efhs"
                        }
                    ],
                    "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.4.11a1"
                }
            ],
            "aliases": [
                "CVE-2022-3376",
                "PYSEC-2022-43157"
            ],
            "risk_score": null,
            "exploitability": null,
            "weighted_severity": null,
            "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-sn4z-f439-6qe7"
        },
        {
            "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36339?format=api",
            "vulnerability_id": "VCID-tv4c-g8r6-xbf6",
            "summary": "Open Redirect in GitHub repository ikus060/rdiffweb prior to 2.5.4.",
            "references": [
                {
                    "reference_url": "https://github.com/ikus060/rdiffweb/commit/5f861670ef8f38ca8eea52a98672d0e0fabb5368",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://github.com/ikus060/rdiffweb/commit/5f861670ef8f38ca8eea52a98672d0e0fabb5368"
                },
                {
                    "reference_url": "https://huntr.dev/bounties/77e5f425-c764-4cb0-936a-7a76bfcf19b0",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://huntr.dev/bounties/77e5f425-c764-4cb0-936a-7a76bfcf19b0"
                }
            ],
            "fixed_packages": [
                {
                    "url": "http://public2.vulnerablecode.io/api/packages/30418?format=api",
                    "purl": "pkg:pypi/rdiffweb@2.5.4",
                    "is_vulnerable": true,
                    "affected_by_vulnerabilities": [
                        {
                            "vulnerability": "VCID-287j-23ju-9fhk"
                        },
                        {
                            "vulnerability": "VCID-52wf-fheq-cuer"
                        },
                        {
                            "vulnerability": "VCID-6zc1-xs64-1bc6"
                        },
                        {
                            "vulnerability": "VCID-ep38-eu98-fbas"
                        },
                        {
                            "vulnerability": "VCID-h6v3-24fq-3udw"
                        },
                        {
                            "vulnerability": "VCID-qcsd-5htt-h3ev"
                        },
                        {
                            "vulnerability": "VCID-wyn5-w4qh-nfht"
                        }
                    ],
                    "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.4"
                }
            ],
            "aliases": [
                "CVE-2022-4644",
                "PYSEC-2022-43003"
            ],
            "risk_score": null,
            "exploitability": null,
            "weighted_severity": null,
            "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tv4c-g8r6-xbf6"
        },
        {
            "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36348?format=api",
            "vulnerability_id": "VCID-wyn5-w4qh-nfht",
            "summary": "Business Logic Errors in GitHub repository ikus060/rdiffweb prior to 2.5.5.",
            "references": [
                {
                    "reference_url": "https://github.com/ikus060/rdiffweb/commit/bc4bed89affcba71251fe54ed10639da9d392c1d",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://github.com/ikus060/rdiffweb/commit/bc4bed89affcba71251fe54ed10639da9d392c1d"
                },
                {
                    "reference_url": "https://huntr.dev/bounties/9f746881-ad42-446b-9b1d-153391eacc09",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://huntr.dev/bounties/9f746881-ad42-446b-9b1d-153391eacc09"
                }
            ],
            "fixed_packages": [
                {
                    "url": "http://public2.vulnerablecode.io/api/packages/31062?format=api",
                    "purl": "pkg:pypi/rdiffweb@2.5.5",
                    "is_vulnerable": true,
                    "affected_by_vulnerabilities": [
                        {
                            "vulnerability": "VCID-52wf-fheq-cuer"
                        }
                    ],
                    "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.5"
                }
            ],
            "aliases": [
                "CVE-2022-4719",
                "PYSEC-2022-43005"
            ],
            "risk_score": null,
            "exploitability": null,
            "weighted_severity": null,
            "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wyn5-w4qh-nfht"
        },
        {
            "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36278?format=api",
            "vulnerability_id": "VCID-yssm-eyx3-efhs",
            "summary": "Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0.",
            "references": [
                {
                    "reference_url": "https://github.com/ikus060/rdiffweb/commit/b78ec09f4582e363f6f449df6f987127e126c311",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [
                        {
                            "value": "9.8",
                            "scoring_system": "cvssv3.1",
                            "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
                        }
                    ],
                    "url": "https://github.com/ikus060/rdiffweb/commit/b78ec09f4582e363f6f449df6f987127e126c311"
                },
                {
                    "reference_url": "https://huntr.dev/bounties/b34412ca-50c5-4615-b7e3-5d07d33acfce",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [
                        {
                            "value": "9.8",
                            "scoring_system": "cvssv3.1",
                            "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
                        }
                    ],
                    "url": "https://huntr.dev/bounties/b34412ca-50c5-4615-b7e3-5d07d33acfce"
                }
            ],
            "fixed_packages": [
                {
                    "url": "http://public2.vulnerablecode.io/api/packages/29472?format=api",
                    "purl": "pkg:pypi/rdiffweb@2.5.0",
                    "is_vulnerable": true,
                    "affected_by_vulnerabilities": [
                        {
                            "vulnerability": "VCID-25yw-5nru-aygm"
                        },
                        {
                            "vulnerability": "VCID-287j-23ju-9fhk"
                        },
                        {
                            "vulnerability": "VCID-52wf-fheq-cuer"
                        },
                        {
                            "vulnerability": "VCID-57wc-s2nn-cyeu"
                        },
                        {
                            "vulnerability": "VCID-6zc1-xs64-1bc6"
                        },
                        {
                            "vulnerability": "VCID-ep38-eu98-fbas"
                        },
                        {
                            "vulnerability": "VCID-h6v3-24fq-3udw"
                        },
                        {
                            "vulnerability": "VCID-qcsd-5htt-h3ev"
                        },
                        {
                            "vulnerability": "VCID-tv4c-g8r6-xbf6"
                        },
                        {
                            "vulnerability": "VCID-wyn5-w4qh-nfht"
                        }
                    ],
                    "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.0"
                }
            ],
            "aliases": [
                "CVE-2022-3456",
                "PYSEC-2022-43160"
            ],
            "risk_score": null,
            "exploitability": null,
            "weighted_severity": null,
            "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-yssm-eyx3-efhs"
        },
        {
            "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36256?format=api",
            "vulnerability_id": "VCID-zzjz-9wv2-vfcc",
            "summary": "Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0a4.",
            "references": [
                {
                    "reference_url": "https://github.com/ikus060/rdiffweb/commit/b5e3bb0a98268d18ceead36ab9b2b7eaacd659a8",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [
                        {
                            "value": "9.8",
                            "scoring_system": "cvssv3.1",
                            "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
                        }
                    ],
                    "url": "https://github.com/ikus060/rdiffweb/commit/b5e3bb0a98268d18ceead36ab9b2b7eaacd659a8"
                },
                {
                    "reference_url": "https://huntr.dev/bounties/a6df4bad-3382-4add-8918-760d885690f6",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [
                        {
                            "value": "9.8",
                            "scoring_system": "cvssv3.1",
                            "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
                        }
                    ],
                    "url": "https://huntr.dev/bounties/a6df4bad-3382-4add-8918-760d885690f6"
                }
            ],
            "fixed_packages": [
                {
                    "url": "http://public2.vulnerablecode.io/api/packages/29462?format=api",
                    "purl": "pkg:pypi/rdiffweb@2.4.11a1",
                    "is_vulnerable": true,
                    "affected_by_vulnerabilities": [
                        {
                            "vulnerability": "VCID-25yw-5nru-aygm"
                        },
                        {
                            "vulnerability": "VCID-287j-23ju-9fhk"
                        },
                        {
                            "vulnerability": "VCID-52wf-fheq-cuer"
                        },
                        {
                            "vulnerability": "VCID-57wc-s2nn-cyeu"
                        },
                        {
                            "vulnerability": "VCID-5xg7-u3nr-nkfg"
                        },
                        {
                            "vulnerability": "VCID-6zc1-xs64-1bc6"
                        },
                        {
                            "vulnerability": "VCID-ep38-eu98-fbas"
                        },
                        {
                            "vulnerability": "VCID-fcym-y8c1-xqdq"
                        },
                        {
                            "vulnerability": "VCID-h6v3-24fq-3udw"
                        },
                        {
                            "vulnerability": "VCID-n88y-9qre-n3bz"
                        },
                        {
                            "vulnerability": "VCID-ps4e-cg34-wyah"
                        },
                        {
                            "vulnerability": "VCID-qcsd-5htt-h3ev"
                        },
                        {
                            "vulnerability": "VCID-rynh-v7q5-6kdg"
                        },
                        {
                            "vulnerability": "VCID-tv4c-g8r6-xbf6"
                        },
                        {
                            "vulnerability": "VCID-wyn5-w4qh-nfht"
                        },
                        {
                            "vulnerability": "VCID-yssm-eyx3-efhs"
                        }
                    ],
                    "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.4.11a1"
                }
            ],
            "aliases": [
                "CVE-2022-3273",
                "PYSEC-2022-43156"
            ],
            "risk_score": null,
            "exploitability": null,
            "weighted_severity": null,
            "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zzjz-9wv2-vfcc"
        }
    ],
    "fixing_vulnerabilities": [
        {
            "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36250?format=api",
            "vulnerability_id": "VCID-fdqn-8pt3-2bfz",
            "summary": "Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0a3.",
            "references": [
                {
                    "reference_url": "https://github.com/ikus060/rdiffweb/commit/b62c479ff6979563c7c23e7182942bc4f460a2c7",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://github.com/ikus060/rdiffweb/commit/b62c479ff6979563c7c23e7182942bc4f460a2c7"
                },
                {
                    "reference_url": "https://huntr.dev/bounties/4e8f6136-50c7-4fa1-ac98-699bcb7b35ce",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://huntr.dev/bounties/4e8f6136-50c7-4fa1-ac98-699bcb7b35ce"
                }
            ],
            "fixed_packages": [
                {
                    "url": "http://public2.vulnerablecode.io/api/packages/29295?format=api",
                    "purl": "pkg:pypi/rdiffweb@2.4.10",
                    "is_vulnerable": true,
                    "affected_by_vulnerabilities": [
                        {
                            "vulnerability": "VCID-25yw-5nru-aygm"
                        },
                        {
                            "vulnerability": "VCID-287j-23ju-9fhk"
                        },
                        {
                            "vulnerability": "VCID-52wf-fheq-cuer"
                        },
                        {
                            "vulnerability": "VCID-57wc-s2nn-cyeu"
                        },
                        {
                            "vulnerability": "VCID-5xg7-u3nr-nkfg"
                        },
                        {
                            "vulnerability": "VCID-6zc1-xs64-1bc6"
                        },
                        {
                            "vulnerability": "VCID-9f5c-ne9b-27fd"
                        },
                        {
                            "vulnerability": "VCID-ep38-eu98-fbas"
                        },
                        {
                            "vulnerability": "VCID-fcym-y8c1-xqdq"
                        },
                        {
                            "vulnerability": "VCID-h6v3-24fq-3udw"
                        },
                        {
                            "vulnerability": "VCID-n88y-9qre-n3bz"
                        },
                        {
                            "vulnerability": "VCID-ps4e-cg34-wyah"
                        },
                        {
                            "vulnerability": "VCID-qcsd-5htt-h3ev"
                        },
                        {
                            "vulnerability": "VCID-rynh-v7q5-6kdg"
                        },
                        {
                            "vulnerability": "VCID-sn4z-f439-6qe7"
                        },
                        {
                            "vulnerability": "VCID-tv4c-g8r6-xbf6"
                        },
                        {
                            "vulnerability": "VCID-wyn5-w4qh-nfht"
                        },
                        {
                            "vulnerability": "VCID-yssm-eyx3-efhs"
                        },
                        {
                            "vulnerability": "VCID-zzjz-9wv2-vfcc"
                        }
                    ],
                    "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.4.10"
                }
            ],
            "aliases": [
                "CVE-2022-3371",
                "PYSEC-2022-299"
            ],
            "risk_score": null,
            "exploitability": null,
            "weighted_severity": null,
            "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fdqn-8pt3-2bfz"
        },
        {
            "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36249?format=api",
            "vulnerability_id": "VCID-ffd3-kujb-f7fq",
            "summary": "Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0a3.",
            "references": [
                {
                    "reference_url": "https://github.com/ikus060/rdiffweb/commit/b62c479ff6979563c7c23e7182942bc4f460a2c7",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://github.com/ikus060/rdiffweb/commit/b62c479ff6979563c7c23e7182942bc4f460a2c7"
                },
                {
                    "reference_url": "https://huntr.dev/bounties/e70ad507-1424-463b-bdf1-c4a6fbe6e720",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://huntr.dev/bounties/e70ad507-1424-463b-bdf1-c4a6fbe6e720"
                }
            ],
            "fixed_packages": [
                {
                    "url": "http://public2.vulnerablecode.io/api/packages/29295?format=api",
                    "purl": "pkg:pypi/rdiffweb@2.4.10",
                    "is_vulnerable": true,
                    "affected_by_vulnerabilities": [
                        {
                            "vulnerability": "VCID-25yw-5nru-aygm"
                        },
                        {
                            "vulnerability": "VCID-287j-23ju-9fhk"
                        },
                        {
                            "vulnerability": "VCID-52wf-fheq-cuer"
                        },
                        {
                            "vulnerability": "VCID-57wc-s2nn-cyeu"
                        },
                        {
                            "vulnerability": "VCID-5xg7-u3nr-nkfg"
                        },
                        {
                            "vulnerability": "VCID-6zc1-xs64-1bc6"
                        },
                        {
                            "vulnerability": "VCID-9f5c-ne9b-27fd"
                        },
                        {
                            "vulnerability": "VCID-ep38-eu98-fbas"
                        },
                        {
                            "vulnerability": "VCID-fcym-y8c1-xqdq"
                        },
                        {
                            "vulnerability": "VCID-h6v3-24fq-3udw"
                        },
                        {
                            "vulnerability": "VCID-n88y-9qre-n3bz"
                        },
                        {
                            "vulnerability": "VCID-ps4e-cg34-wyah"
                        },
                        {
                            "vulnerability": "VCID-qcsd-5htt-h3ev"
                        },
                        {
                            "vulnerability": "VCID-rynh-v7q5-6kdg"
                        },
                        {
                            "vulnerability": "VCID-sn4z-f439-6qe7"
                        },
                        {
                            "vulnerability": "VCID-tv4c-g8r6-xbf6"
                        },
                        {
                            "vulnerability": "VCID-wyn5-w4qh-nfht"
                        },
                        {
                            "vulnerability": "VCID-yssm-eyx3-efhs"
                        },
                        {
                            "vulnerability": "VCID-zzjz-9wv2-vfcc"
                        }
                    ],
                    "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.4.10"
                }
            ],
            "aliases": [
                "CVE-2022-3364",
                "PYSEC-2022-298"
            ],
            "risk_score": null,
            "exploitability": null,
            "weighted_severity": null,
            "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ffd3-kujb-f7fq"
        },
        {
            "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36254?format=api",
            "vulnerability_id": "VCID-nbqy-kang-vfau",
            "summary": "Path Traversal in GitHub repository ikus060/rdiffweb prior to 2.4.10.",
            "references": [
                {
                    "reference_url": "https://github.com/ikus060/rdiffweb/commit/323383d1db656f1b1291be529947bd943a6b0e99",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://github.com/ikus060/rdiffweb/commit/323383d1db656f1b1291be529947bd943a6b0e99"
                },
                {
                    "reference_url": "https://huntr.dev/bounties/f7d2a6ab-2faf-4719-bdb6-e4e5d6065752",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://huntr.dev/bounties/f7d2a6ab-2faf-4719-bdb6-e4e5d6065752"
                }
            ],
            "fixed_packages": [
                {
                    "url": "http://public2.vulnerablecode.io/api/packages/29295?format=api",
                    "purl": "pkg:pypi/rdiffweb@2.4.10",
                    "is_vulnerable": true,
                    "affected_by_vulnerabilities": [
                        {
                            "vulnerability": "VCID-25yw-5nru-aygm"
                        },
                        {
                            "vulnerability": "VCID-287j-23ju-9fhk"
                        },
                        {
                            "vulnerability": "VCID-52wf-fheq-cuer"
                        },
                        {
                            "vulnerability": "VCID-57wc-s2nn-cyeu"
                        },
                        {
                            "vulnerability": "VCID-5xg7-u3nr-nkfg"
                        },
                        {
                            "vulnerability": "VCID-6zc1-xs64-1bc6"
                        },
                        {
                            "vulnerability": "VCID-9f5c-ne9b-27fd"
                        },
                        {
                            "vulnerability": "VCID-ep38-eu98-fbas"
                        },
                        {
                            "vulnerability": "VCID-fcym-y8c1-xqdq"
                        },
                        {
                            "vulnerability": "VCID-h6v3-24fq-3udw"
                        },
                        {
                            "vulnerability": "VCID-n88y-9qre-n3bz"
                        },
                        {
                            "vulnerability": "VCID-ps4e-cg34-wyah"
                        },
                        {
                            "vulnerability": "VCID-qcsd-5htt-h3ev"
                        },
                        {
                            "vulnerability": "VCID-rynh-v7q5-6kdg"
                        },
                        {
                            "vulnerability": "VCID-sn4z-f439-6qe7"
                        },
                        {
                            "vulnerability": "VCID-tv4c-g8r6-xbf6"
                        },
                        {
                            "vulnerability": "VCID-wyn5-w4qh-nfht"
                        },
                        {
                            "vulnerability": "VCID-yssm-eyx3-efhs"
                        },
                        {
                            "vulnerability": "VCID-zzjz-9wv2-vfcc"
                        }
                    ],
                    "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.4.10"
                }
            ],
            "aliases": [
                "CVE-2022-3389",
                "PYSEC-2022-302"
            ],
            "risk_score": null,
            "exploitability": null,
            "weighted_severity": null,
            "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nbqy-kang-vfau"
        },
        {
            "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36283?format=api",
            "vulnerability_id": "VCID-yz9x-nz9u-wybe",
            "summary": "Missing Authentication for Critical Function in GitHub repository ikus060/rdiffweb prior to 2.5.0a6.",
            "references": [
                {
                    "reference_url": "https://github.com/ikus060/rdiffweb/commit/f2a32f2a9f3fb8be1a9432ac3d81d3aacdb13095",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://github.com/ikus060/rdiffweb/commit/f2a32f2a9f3fb8be1a9432ac3d81d3aacdb13095"
                },
                {
                    "reference_url": "https://huntr.dev/bounties/02207c8f-2b15-4a31-a86a-74fd2fca0ed1",
                    "reference_id": "",
                    "reference_type": "",
                    "scores": [],
                    "url": "https://huntr.dev/bounties/02207c8f-2b15-4a31-a86a-74fd2fca0ed1"
                }
            ],
            "fixed_packages": [
                {
                    "url": "http://public2.vulnerablecode.io/api/packages/29295?format=api",
                    "purl": "pkg:pypi/rdiffweb@2.4.10",
                    "is_vulnerable": true,
                    "affected_by_vulnerabilities": [
                        {
                            "vulnerability": "VCID-25yw-5nru-aygm"
                        },
                        {
                            "vulnerability": "VCID-287j-23ju-9fhk"
                        },
                        {
                            "vulnerability": "VCID-52wf-fheq-cuer"
                        },
                        {
                            "vulnerability": "VCID-57wc-s2nn-cyeu"
                        },
                        {
                            "vulnerability": "VCID-5xg7-u3nr-nkfg"
                        },
                        {
                            "vulnerability": "VCID-6zc1-xs64-1bc6"
                        },
                        {
                            "vulnerability": "VCID-9f5c-ne9b-27fd"
                        },
                        {
                            "vulnerability": "VCID-ep38-eu98-fbas"
                        },
                        {
                            "vulnerability": "VCID-fcym-y8c1-xqdq"
                        },
                        {
                            "vulnerability": "VCID-h6v3-24fq-3udw"
                        },
                        {
                            "vulnerability": "VCID-n88y-9qre-n3bz"
                        },
                        {
                            "vulnerability": "VCID-ps4e-cg34-wyah"
                        },
                        {
                            "vulnerability": "VCID-qcsd-5htt-h3ev"
                        },
                        {
                            "vulnerability": "VCID-rynh-v7q5-6kdg"
                        },
                        {
                            "vulnerability": "VCID-sn4z-f439-6qe7"
                        },
                        {
                            "vulnerability": "VCID-tv4c-g8r6-xbf6"
                        },
                        {
                            "vulnerability": "VCID-wyn5-w4qh-nfht"
                        },
                        {
                            "vulnerability": "VCID-yssm-eyx3-efhs"
                        },
                        {
                            "vulnerability": "VCID-zzjz-9wv2-vfcc"
                        }
                    ],
                    "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.4.10"
                }
            ],
            "aliases": [
                "CVE-2022-3327",
                "PYSEC-2022-42977"
            ],
            "risk_score": null,
            "exploitability": null,
            "weighted_severity": null,
            "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-yz9x-nz9u-wybe"
        }
    ],
    "risk_score": null,
    "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.4.10"
}

Package Instance