Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:pypi/rdiffweb@2.5.0
Typepypi
Namespace
Namerdiffweb
Version2.5.0
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version2.8.4
Latest_non_vulnerable_version2.8.4
Affected_by_vulnerabilities
0
url VCID-25yw-5nru-aygm
vulnerability_id VCID-25yw-5nru-aygm
summary Improper Privilege Management in GitHub repository ikus060/rdiffweb prior to 2.5.2.
references
0
reference_url https://github.com/ikus060/rdiffweb/commit/b2df3679564d0daa2856213bb307d3e34bd89a25
reference_id
reference_type
scores
url https://github.com/ikus060/rdiffweb/commit/b2df3679564d0daa2856213bb307d3e34bd89a25
1
reference_url https://huntr.dev/bounties/b2dc504d-92ae-4221-a096-12ff223d95a8
reference_id
reference_type
scores
url https://huntr.dev/bounties/b2dc504d-92ae-4221-a096-12ff223d95a8
fixed_packages
0
url pkg:pypi/rdiffweb@2.5.2
purl pkg:pypi/rdiffweb@2.5.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-287j-23ju-9fhk
1
vulnerability VCID-52wf-fheq-cuer
2
vulnerability VCID-57wc-s2nn-cyeu
3
vulnerability VCID-6zc1-xs64-1bc6
4
vulnerability VCID-ep38-eu98-fbas
5
vulnerability VCID-h6v3-24fq-3udw
6
vulnerability VCID-qcsd-5htt-h3ev
7
vulnerability VCID-tv4c-g8r6-xbf6
8
vulnerability VCID-wyn5-w4qh-nfht
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.2
aliases CVE-2022-4314, PYSEC-2022-43002
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-25yw-5nru-aygm
1
url VCID-287j-23ju-9fhk
vulnerability_id VCID-287j-23ju-9fhk
summary Open Redirect in GitHub repository ikus060/rdiffweb prior to 2.5.5.
references
0
reference_url https://github.com/ikus060/rdiffweb/commit/6afaae56a29536f0118b3380d296c416aa6d078d
reference_id
reference_type
scores
url https://github.com/ikus060/rdiffweb/commit/6afaae56a29536f0118b3380d296c416aa6d078d
1
reference_url https://huntr.dev/bounties/339687af-6e25-4ad8-823d-c097f607ea70
reference_id
reference_type
scores
url https://huntr.dev/bounties/339687af-6e25-4ad8-823d-c097f607ea70
fixed_packages
0
url pkg:pypi/rdiffweb@2.5.5
purl pkg:pypi/rdiffweb@2.5.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-52wf-fheq-cuer
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.5
aliases CVE-2022-4720, PYSEC-2022-43006
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-287j-23ju-9fhk
2
url VCID-52wf-fheq-cuer
vulnerability_id VCID-52wf-fheq-cuer
summary Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.8.4.
references
0
reference_url https://github.com/ikus060/rdiffweb
reference_id
reference_type
scores
url https://github.com/ikus060/rdiffweb
1
reference_url https://github.com/ikus060/rdiffweb/commit/06f89b43469aae70e8833e55192721523f86c5a2
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://github.com/ikus060/rdiffweb/commit/06f89b43469aae70e8833e55192721523f86c5a2
2
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/rdiffweb/PYSEC-2023-186.yaml
reference_id
reference_type
scores
url https://github.com/pypa/advisory-database/tree/main/vulns/rdiffweb/PYSEC-2023-186.yaml
3
reference_url https://huntr.dev/bounties/8d0e0804-d3fd-49fe-bfa4-7a91135767ce
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://huntr.dev/bounties/8d0e0804-d3fd-49fe-bfa4-7a91135767ce
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-5289
reference_id CVE-2023-5289
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2023-5289
5
reference_url https://github.com/advisories/GHSA-c4rv-2j6x-pq7x
reference_id GHSA-c4rv-2j6x-pq7x
reference_type
scores
url https://github.com/advisories/GHSA-c4rv-2j6x-pq7x
fixed_packages
0
url pkg:pypi/rdiffweb@2.8.4
purl pkg:pypi/rdiffweb@2.8.4
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.8.4
aliases CVE-2023-5289, GHSA-c4rv-2j6x-pq7x, PYSEC-2023-186
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-52wf-fheq-cuer
3
url VCID-57wc-s2nn-cyeu
vulnerability_id VCID-57wc-s2nn-cyeu
summary Cross-Site Request Forgery (CSRF) in GitHub repository ikus060/rdiffweb prior to 2.5.4.
references
0
reference_url https://github.com/ikus060/rdiffweb/commit/e6f0d8002129be90fe82fa3e3ea0a6942caba398
reference_id
reference_type
scores
url https://github.com/ikus060/rdiffweb/commit/e6f0d8002129be90fe82fa3e3ea0a6942caba398
1
reference_url https://huntr.dev/bounties/17bc1b0f-1f5c-432f-88e4-c9866ccf6e10
reference_id
reference_type
scores
url https://huntr.dev/bounties/17bc1b0f-1f5c-432f-88e4-c9866ccf6e10
fixed_packages
0
url pkg:pypi/rdiffweb@2.5.4
purl pkg:pypi/rdiffweb@2.5.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-287j-23ju-9fhk
1
vulnerability VCID-52wf-fheq-cuer
2
vulnerability VCID-6zc1-xs64-1bc6
3
vulnerability VCID-ep38-eu98-fbas
4
vulnerability VCID-h6v3-24fq-3udw
5
vulnerability VCID-qcsd-5htt-h3ev
6
vulnerability VCID-wyn5-w4qh-nfht
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.4
aliases CVE-2022-4646, PYSEC-2022-43004
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-57wc-s2nn-cyeu
4
url VCID-6zc1-xs64-1bc6
vulnerability_id VCID-6zc1-xs64-1bc6
summary Improper Access Control in GitHub repository ikus060/rdiffweb prior to 2.5.5.
references
0
reference_url https://github.com/ikus060/rdiffweb/commit/c4a19cf67d575c4886171b8efcbf4675d51f3929
reference_id
reference_type
scores
url https://github.com/ikus060/rdiffweb/commit/c4a19cf67d575c4886171b8efcbf4675d51f3929
1
reference_url https://huntr.dev/bounties/e6fb1931-8d9c-4895-be4a-59839b4b6445
reference_id
reference_type
scores
url https://huntr.dev/bounties/e6fb1931-8d9c-4895-be4a-59839b4b6445
fixed_packages
0
url pkg:pypi/rdiffweb@2.5.5
purl pkg:pypi/rdiffweb@2.5.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-52wf-fheq-cuer
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.5
aliases CVE-2022-4724, PYSEC-2022-43010
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6zc1-xs64-1bc6
5
url VCID-ep38-eu98-fbas
vulnerability_id VCID-ep38-eu98-fbas
summary Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) in GitHub repository ikus060/rdiffweb prior to 2.5.5.
references
0
reference_url https://github.com/ikus060/rdiffweb/commit/6afaae56a29536f0118b3380d296c416aa6d078d
reference_id
reference_type
scores
url https://github.com/ikus060/rdiffweb/commit/6afaae56a29536f0118b3380d296c416aa6d078d
1
reference_url https://huntr.dev/bounties/3c48ef5d-da4d-4ee4-aaca-af65e7273720
reference_id
reference_type
scores
url https://huntr.dev/bounties/3c48ef5d-da4d-4ee4-aaca-af65e7273720
fixed_packages
0
url pkg:pypi/rdiffweb@2.5.5
purl pkg:pypi/rdiffweb@2.5.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-52wf-fheq-cuer
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.5
aliases CVE-2022-4721, PYSEC-2022-43007
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ep38-eu98-fbas
6
url VCID-h6v3-24fq-3udw
vulnerability_id VCID-h6v3-24fq-3udw
summary Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.5.
references
0
reference_url https://github.com/ikus060/rdiffweb/commit/6e9ee210548f6d3210704cac302cfc7cdb239765
reference_id
reference_type
scores
url https://github.com/ikus060/rdiffweb/commit/6e9ee210548f6d3210704cac302cfc7cdb239765
1
reference_url https://huntr.dev/bounties/9369681b-8bfc-4146-a54c-c5108442d92c
reference_id
reference_type
scores
url https://huntr.dev/bounties/9369681b-8bfc-4146-a54c-c5108442d92c
fixed_packages
0
url pkg:pypi/rdiffweb@2.5.5
purl pkg:pypi/rdiffweb@2.5.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-52wf-fheq-cuer
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.5
aliases CVE-2022-4723, PYSEC-2022-43009
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-h6v3-24fq-3udw
7
url VCID-qcsd-5htt-h3ev
vulnerability_id VCID-qcsd-5htt-h3ev
summary Authentication Bypass by Primary Weakness in GitHub repository ikus060/rdiffweb prior to 2.5.5.
references
0
reference_url https://github.com/ikus060/rdiffweb/commit/d1aaa96b665a39fba9e98d6054a9de511ba0a837
reference_id
reference_type
scores
url https://github.com/ikus060/rdiffweb/commit/d1aaa96b665a39fba9e98d6054a9de511ba0a837
1
reference_url https://huntr.dev/bounties/c62126dc-d9a6-4d3e-988d-967031876c58
reference_id
reference_type
scores
url https://huntr.dev/bounties/c62126dc-d9a6-4d3e-988d-967031876c58
fixed_packages
0
url pkg:pypi/rdiffweb@2.5.5
purl pkg:pypi/rdiffweb@2.5.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-52wf-fheq-cuer
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.5
aliases CVE-2022-4722, PYSEC-2022-43008
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-qcsd-5htt-h3ev
8
url VCID-tv4c-g8r6-xbf6
vulnerability_id VCID-tv4c-g8r6-xbf6
summary Open Redirect in GitHub repository ikus060/rdiffweb prior to 2.5.4.
references
0
reference_url https://github.com/ikus060/rdiffweb/commit/5f861670ef8f38ca8eea52a98672d0e0fabb5368
reference_id
reference_type
scores
url https://github.com/ikus060/rdiffweb/commit/5f861670ef8f38ca8eea52a98672d0e0fabb5368
1
reference_url https://huntr.dev/bounties/77e5f425-c764-4cb0-936a-7a76bfcf19b0
reference_id
reference_type
scores
url https://huntr.dev/bounties/77e5f425-c764-4cb0-936a-7a76bfcf19b0
fixed_packages
0
url pkg:pypi/rdiffweb@2.5.4
purl pkg:pypi/rdiffweb@2.5.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-287j-23ju-9fhk
1
vulnerability VCID-52wf-fheq-cuer
2
vulnerability VCID-6zc1-xs64-1bc6
3
vulnerability VCID-ep38-eu98-fbas
4
vulnerability VCID-h6v3-24fq-3udw
5
vulnerability VCID-qcsd-5htt-h3ev
6
vulnerability VCID-wyn5-w4qh-nfht
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.4
aliases CVE-2022-4644, PYSEC-2022-43003
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tv4c-g8r6-xbf6
9
url VCID-wyn5-w4qh-nfht
vulnerability_id VCID-wyn5-w4qh-nfht
summary Business Logic Errors in GitHub repository ikus060/rdiffweb prior to 2.5.5.
references
0
reference_url https://github.com/ikus060/rdiffweb/commit/bc4bed89affcba71251fe54ed10639da9d392c1d
reference_id
reference_type
scores
url https://github.com/ikus060/rdiffweb/commit/bc4bed89affcba71251fe54ed10639da9d392c1d
1
reference_url https://huntr.dev/bounties/9f746881-ad42-446b-9b1d-153391eacc09
reference_id
reference_type
scores
url https://huntr.dev/bounties/9f746881-ad42-446b-9b1d-153391eacc09
fixed_packages
0
url pkg:pypi/rdiffweb@2.5.5
purl pkg:pypi/rdiffweb@2.5.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-52wf-fheq-cuer
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.5
aliases CVE-2022-4719, PYSEC-2022-43005
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wyn5-w4qh-nfht
Fixing_vulnerabilities
0
url VCID-5xg7-u3nr-nkfg
vulnerability_id VCID-5xg7-u3nr-nkfg
summary Insufficient Session Expiration in GitHub repository ikus060/rdiffweb prior to 2.5.0.
references
0
reference_url https://github.com/ikus060/rdiffweb/commit/6efb995bc32c8a8e9ad755eb813dec991dffb2b8
reference_id
reference_type
scores
url https://github.com/ikus060/rdiffweb/commit/6efb995bc32c8a8e9ad755eb813dec991dffb2b8
1
reference_url https://huntr.dev/bounties/ca428c31-858d-47fa-adc9-2a59f8e8b2b1
reference_id
reference_type
scores
url https://huntr.dev/bounties/ca428c31-858d-47fa-adc9-2a59f8e8b2b1
fixed_packages
0
url pkg:pypi/rdiffweb@2.5.0
purl pkg:pypi/rdiffweb@2.5.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-25yw-5nru-aygm
1
vulnerability VCID-287j-23ju-9fhk
2
vulnerability VCID-52wf-fheq-cuer
3
vulnerability VCID-57wc-s2nn-cyeu
4
vulnerability VCID-6zc1-xs64-1bc6
5
vulnerability VCID-ep38-eu98-fbas
6
vulnerability VCID-h6v3-24fq-3udw
7
vulnerability VCID-qcsd-5htt-h3ev
8
vulnerability VCID-tv4c-g8r6-xbf6
9
vulnerability VCID-wyn5-w4qh-nfht
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.0
aliases CVE-2022-3362, PYSEC-2022-43000
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5xg7-u3nr-nkfg
1
url VCID-fcym-y8c1-xqdq
vulnerability_id VCID-fcym-y8c1-xqdq
summary Origin Validation Error in GitHub repository ikus060/rdiffweb prior to 2.5.0a5.
references
0
reference_url https://github.com/ikus060/rdiffweb/commit/afc1bdfab5161c74012ff2590a6ec49cc0d8fde0
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://github.com/ikus060/rdiffweb/commit/afc1bdfab5161c74012ff2590a6ec49cc0d8fde0
1
reference_url https://huntr.dev/bounties/cfcab02e-d6ad-4dcf-b1b0-da90434bc55b
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://huntr.dev/bounties/cfcab02e-d6ad-4dcf-b1b0-da90434bc55b
fixed_packages
0
url pkg:pypi/rdiffweb@2.5.0
purl pkg:pypi/rdiffweb@2.5.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-25yw-5nru-aygm
1
vulnerability VCID-287j-23ju-9fhk
2
vulnerability VCID-52wf-fheq-cuer
3
vulnerability VCID-57wc-s2nn-cyeu
4
vulnerability VCID-6zc1-xs64-1bc6
5
vulnerability VCID-ep38-eu98-fbas
6
vulnerability VCID-h6v3-24fq-3udw
7
vulnerability VCID-qcsd-5htt-h3ev
8
vulnerability VCID-tv4c-g8r6-xbf6
9
vulnerability VCID-wyn5-w4qh-nfht
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.0
aliases CVE-2022-3457, PYSEC-2022-43161
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fcym-y8c1-xqdq
2
url VCID-n88y-9qre-n3bz
vulnerability_id VCID-n88y-9qre-n3bz
summary Open Redirect in GitHub repository ikus060/rdiffweb prior to 2.5.0a4.
references
0
reference_url https://github.com/ikus060/rdiffweb/commit/4d464b467f14b8eb9103d7f5f0774e49995527c7
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
url https://github.com/ikus060/rdiffweb/commit/4d464b467f14b8eb9103d7f5f0774e49995527c7
1
reference_url https://huntr.dev/bounties/bc5689e4-221a-4200-a8ab-42c659f89f67
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
url https://huntr.dev/bounties/bc5689e4-221a-4200-a8ab-42c659f89f67
fixed_packages
0
url pkg:pypi/rdiffweb@2.5.0
purl pkg:pypi/rdiffweb@2.5.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-25yw-5nru-aygm
1
vulnerability VCID-287j-23ju-9fhk
2
vulnerability VCID-52wf-fheq-cuer
3
vulnerability VCID-57wc-s2nn-cyeu
4
vulnerability VCID-6zc1-xs64-1bc6
5
vulnerability VCID-ep38-eu98-fbas
6
vulnerability VCID-h6v3-24fq-3udw
7
vulnerability VCID-qcsd-5htt-h3ev
8
vulnerability VCID-tv4c-g8r6-xbf6
9
vulnerability VCID-wyn5-w4qh-nfht
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.0
aliases CVE-2022-3438, PYSEC-2022-43158
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-n88y-9qre-n3bz
3
url VCID-ps4e-cg34-wyah
vulnerability_id VCID-ps4e-cg34-wyah
summary Business Logic Errors in GitHub repository ikus060/rdiffweb prior to 2.5.0a7.
references
0
reference_url https://github.com/ikus060/rdiffweb/commit/c27c46bac656b1da74f28eac1b52dfa5df76e6f2
reference_id
reference_type
scores
url https://github.com/ikus060/rdiffweb/commit/c27c46bac656b1da74f28eac1b52dfa5df76e6f2
1
reference_url https://huntr.dev/bounties/b8a40ba6-2452-4abe-a80a-2d065ee8891e
reference_id
reference_type
scores
url https://huntr.dev/bounties/b8a40ba6-2452-4abe-a80a-2d065ee8891e
fixed_packages
0
url pkg:pypi/rdiffweb@2.5.0
purl pkg:pypi/rdiffweb@2.5.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-25yw-5nru-aygm
1
vulnerability VCID-287j-23ju-9fhk
2
vulnerability VCID-52wf-fheq-cuer
3
vulnerability VCID-57wc-s2nn-cyeu
4
vulnerability VCID-6zc1-xs64-1bc6
5
vulnerability VCID-ep38-eu98-fbas
6
vulnerability VCID-h6v3-24fq-3udw
7
vulnerability VCID-qcsd-5htt-h3ev
8
vulnerability VCID-tv4c-g8r6-xbf6
9
vulnerability VCID-wyn5-w4qh-nfht
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.0
aliases CVE-2022-3363, PYSEC-2022-42978
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ps4e-cg34-wyah
4
url VCID-rynh-v7q5-6kdg
vulnerability_id VCID-rynh-v7q5-6kdg
summary Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0.
references
0
reference_url https://github.com/ikus060/rdiffweb/commit/b78ec09f4582e363f6f449df6f987127e126c311
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://github.com/ikus060/rdiffweb/commit/b78ec09f4582e363f6f449df6f987127e126c311
1
reference_url https://huntr.dev/bounties/37b86c45-b240-4626-bd53-b6f02d10e0d7
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://huntr.dev/bounties/37b86c45-b240-4626-bd53-b6f02d10e0d7
fixed_packages
0
url pkg:pypi/rdiffweb@2.5.0
purl pkg:pypi/rdiffweb@2.5.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-25yw-5nru-aygm
1
vulnerability VCID-287j-23ju-9fhk
2
vulnerability VCID-52wf-fheq-cuer
3
vulnerability VCID-57wc-s2nn-cyeu
4
vulnerability VCID-6zc1-xs64-1bc6
5
vulnerability VCID-ep38-eu98-fbas
6
vulnerability VCID-h6v3-24fq-3udw
7
vulnerability VCID-qcsd-5htt-h3ev
8
vulnerability VCID-tv4c-g8r6-xbf6
9
vulnerability VCID-wyn5-w4qh-nfht
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.0
aliases CVE-2022-3439, PYSEC-2022-43159
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-rynh-v7q5-6kdg
5
url VCID-yssm-eyx3-efhs
vulnerability_id VCID-yssm-eyx3-efhs
summary Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0.
references
0
reference_url https://github.com/ikus060/rdiffweb/commit/b78ec09f4582e363f6f449df6f987127e126c311
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://github.com/ikus060/rdiffweb/commit/b78ec09f4582e363f6f449df6f987127e126c311
1
reference_url https://huntr.dev/bounties/b34412ca-50c5-4615-b7e3-5d07d33acfce
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://huntr.dev/bounties/b34412ca-50c5-4615-b7e3-5d07d33acfce
fixed_packages
0
url pkg:pypi/rdiffweb@2.5.0
purl pkg:pypi/rdiffweb@2.5.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-25yw-5nru-aygm
1
vulnerability VCID-287j-23ju-9fhk
2
vulnerability VCID-52wf-fheq-cuer
3
vulnerability VCID-57wc-s2nn-cyeu
4
vulnerability VCID-6zc1-xs64-1bc6
5
vulnerability VCID-ep38-eu98-fbas
6
vulnerability VCID-h6v3-24fq-3udw
7
vulnerability VCID-qcsd-5htt-h3ev
8
vulnerability VCID-tv4c-g8r6-xbf6
9
vulnerability VCID-wyn5-w4qh-nfht
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.0
aliases CVE-2022-3456, PYSEC-2022-43160
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-yssm-eyx3-efhs
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:pypi/rdiffweb@2.5.0