Django REST framework
Api Root
Package List
Package Instance
Format
json
api
admin
Package Instance
Lookup for vulnerable packages by Package URL.
Purl
pkg:nuget/Microsoft.AspNetCore.Mvc.Cors@1.1.5
Type
nuget
Namespace
Name
Microsoft.AspNetCore.Mvc.Cors
Version
1.1.5
Qualifiers
Subpath
Is_vulnerable
false
Next_non_vulnerable_version
null
Latest_non_vulnerable_version
null
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url
VCID-ju3g-r5sj-4ueq
vulnerability_id
VCID-ju3g-r5sj-4ueq
summary
Microsoft Security Advisory CVE-2017-8700: CORS bypass can enable Information Disclosure
references
0
reference_url
https://github.com/aspnet/Announcements/issues/279
reference_id
reference_type
scores
url
https://github.com/aspnet/Announcements/issues/279
1
reference_url
https://github.com/github/advisory-database/issues/302
reference_id
reference_type
scores
url
https://github.com/github/advisory-database/issues/302
2
reference_url
http://www.securityfocus.com/bid/101712
reference_id
reference_type
scores
url
http://www.securityfocus.com/bid/101712
3
reference_url
http://www.securitytracker.com/id/1039793
reference_id
reference_type
scores
url
http://www.securitytracker.com/id/1039793
4
reference_url
https://nvd.nist.gov/vuln/detail/CVE-2017-8700
reference_id
CVE-2017-8700
reference_type
scores
url
https://nvd.nist.gov/vuln/detail/CVE-2017-8700
5
reference_url
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8700
reference_id
CVE-2017-8700
reference_type
scores
url
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8700
6
reference_url
https://github.com/advisories/GHSA-3rp6-rjw4-cq39
reference_id
GHSA-3rp6-rjw4-cq39
reference_type
scores
url
https://github.com/advisories/GHSA-3rp6-rjw4-cq39
fixed_packages
0
url
pkg:nuget/Microsoft.AspNetCore.Mvc.Cors@1.1.6
purl
pkg:nuget/Microsoft.AspNetCore.Mvc.Cors@1.1.6
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.Cors@1.1.6
1
url
pkg:nuget/Microsoft.AspNetCore.Mvc.Cors@1.0.6
purl
pkg:nuget/Microsoft.AspNetCore.Mvc.Cors@1.0.6
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.Cors@1.0.6
2
url
pkg:nuget/Microsoft.AspNetCore.Mvc.Cors@1.1.5
purl
pkg:nuget/Microsoft.AspNetCore.Mvc.Cors@1.1.5
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.Cors@1.1.5
aliases
CVE-2017-8700, GHSA-3rp6-rjw4-cq39
risk_score
null
exploitability
null
weighted_severity
null
resource_url
http://public2.vulnerablecode.io/vulnerabilities/VCID-ju3g-r5sj-4ueq
Risk_score
null
Resource_url
http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.Cors@1.1.5
×
Create
None
×
Edit
None