Django REST framework
Api Root
Package List
Package Instance
Format
json
api
admin
Package Instance
Lookup for vulnerable packages by Package URL.
Purl
pkg:pypi/pygments@2.15.0
Type
pypi
Namespace
Name
pygments
Version
2.15.0
Qualifiers
Subpath
Is_vulnerable
true
Next_non_vulnerable_version
2.15.1
Latest_non_vulnerable_version
2.15.1
Affected_by_vulnerabilities
0
url
VCID-rm69-vst8-xqbq
vulnerability_id
VCID-rm69-vst8-xqbq
summary
A ReDoS issue was discovered in pygments/lexers/smithy.py in pygments through 2.15.0 via SmithyLexer.
references
0
reference_url
https://github.com/pygments/pygments
reference_id
reference_type
scores
url
https://github.com/pygments/pygments
1
reference_url
https://github.com/pygments/pygments/blob/master/pygments/lexers/smithy.py#L61
reference_id
reference_type
scores
url
https://github.com/pygments/pygments/blob/master/pygments/lexers/smithy.py#L61
2
reference_url
https://github.com/pygments/pygments/commit/97eb3d5ec7c1b3ea4fcf9dee30a2309cf92bd194
reference_id
reference_type
scores
url
https://github.com/pygments/pygments/commit/97eb3d5ec7c1b3ea4fcf9dee30a2309cf92bd194
3
reference_url
https://github.com/pygments/pygments/commit/dd52102c38ebe78cd57748e09f38929fd283ad04
reference_id
reference_type
scores
url
https://github.com/pygments/pygments/commit/dd52102c38ebe78cd57748e09f38929fd283ad04
4
reference_url
https://github.com/pygments/pygments/commit/fdf182a7af85b1deeeb637ca970d31935e7c9d52
reference_id
reference_type
scores
url
https://github.com/pygments/pygments/commit/fdf182a7af85b1deeeb637ca970d31935e7c9d52
5
reference_url
https://github.com/pypa/advisory-database/tree/main/vulns/pygments/PYSEC-2023-117.yaml
reference_id
reference_type
scores
url
https://github.com/pypa/advisory-database/tree/main/vulns/pygments/PYSEC-2023-117.yaml
6
reference_url
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EZGMXALE3HSP4OXC7UUWIKX3OXKZDTY3
reference_id
reference_type
scores
url
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EZGMXALE3HSP4OXC7UUWIKX3OXKZDTY3
7
reference_url
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VUZO4BQCIY2S2KZYHERQMKURB7AHXDBO
reference_id
reference_type
scores
url
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VUZO4BQCIY2S2KZYHERQMKURB7AHXDBO
8
reference_url
https://pypi.org/project/Pygments
reference_id
reference_type
scores
url
https://pypi.org/project/Pygments
9
reference_url
https://pypi.org/project/Pygments/
reference_id
reference_type
scores
url
https://pypi.org/project/Pygments/
10
reference_url
https://pyup.io/posts/pyup-discovers-redos-vulnerabilities-in-top-python-packages-part-2
reference_id
reference_type
scores
url
https://pyup.io/posts/pyup-discovers-redos-vulnerabilities-in-top-python-packages-part-2
11
reference_url
https://pyup.io/posts/pyup-discovers-redos-vulnerabilities-in-top-python-packages-part-2/
reference_id
reference_type
scores
url
https://pyup.io/posts/pyup-discovers-redos-vulnerabilities-in-top-python-packages-part-2/
12
reference_url
https://nvd.nist.gov/vuln/detail/CVE-2022-40896
reference_id
CVE-2022-40896
reference_type
scores
url
https://nvd.nist.gov/vuln/detail/CVE-2022-40896
13
reference_url
https://github.com/advisories/GHSA-mrwq-x4v8-fh7p
reference_id
GHSA-mrwq-x4v8-fh7p
reference_type
scores
url
https://github.com/advisories/GHSA-mrwq-x4v8-fh7p
fixed_packages
0
url
pkg:pypi/pygments@2.15.1
purl
pkg:pypi/pygments@2.15.1
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:pypi/pygments@2.15.1
aliases
CVE-2022-40896, GHSA-mrwq-x4v8-fh7p, PYSEC-2023-117
risk_score
null
exploitability
null
weighted_severity
null
resource_url
http://public2.vulnerablecode.io/vulnerabilities/VCID-rm69-vst8-xqbq
Fixing_vulnerabilities
0
url
VCID-rm69-vst8-xqbq
vulnerability_id
VCID-rm69-vst8-xqbq
summary
A ReDoS issue was discovered in pygments/lexers/smithy.py in pygments through 2.15.0 via SmithyLexer.
references
0
reference_url
https://github.com/pygments/pygments
reference_id
reference_type
scores
url
https://github.com/pygments/pygments
1
reference_url
https://github.com/pygments/pygments/blob/master/pygments/lexers/smithy.py#L61
reference_id
reference_type
scores
url
https://github.com/pygments/pygments/blob/master/pygments/lexers/smithy.py#L61
2
reference_url
https://github.com/pygments/pygments/commit/97eb3d5ec7c1b3ea4fcf9dee30a2309cf92bd194
reference_id
reference_type
scores
url
https://github.com/pygments/pygments/commit/97eb3d5ec7c1b3ea4fcf9dee30a2309cf92bd194
3
reference_url
https://github.com/pygments/pygments/commit/dd52102c38ebe78cd57748e09f38929fd283ad04
reference_id
reference_type
scores
url
https://github.com/pygments/pygments/commit/dd52102c38ebe78cd57748e09f38929fd283ad04
4
reference_url
https://github.com/pygments/pygments/commit/fdf182a7af85b1deeeb637ca970d31935e7c9d52
reference_id
reference_type
scores
url
https://github.com/pygments/pygments/commit/fdf182a7af85b1deeeb637ca970d31935e7c9d52
5
reference_url
https://github.com/pypa/advisory-database/tree/main/vulns/pygments/PYSEC-2023-117.yaml
reference_id
reference_type
scores
url
https://github.com/pypa/advisory-database/tree/main/vulns/pygments/PYSEC-2023-117.yaml
6
reference_url
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EZGMXALE3HSP4OXC7UUWIKX3OXKZDTY3
reference_id
reference_type
scores
url
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EZGMXALE3HSP4OXC7UUWIKX3OXKZDTY3
7
reference_url
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VUZO4BQCIY2S2KZYHERQMKURB7AHXDBO
reference_id
reference_type
scores
url
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VUZO4BQCIY2S2KZYHERQMKURB7AHXDBO
8
reference_url
https://pypi.org/project/Pygments
reference_id
reference_type
scores
url
https://pypi.org/project/Pygments
9
reference_url
https://pypi.org/project/Pygments/
reference_id
reference_type
scores
url
https://pypi.org/project/Pygments/
10
reference_url
https://pyup.io/posts/pyup-discovers-redos-vulnerabilities-in-top-python-packages-part-2
reference_id
reference_type
scores
url
https://pyup.io/posts/pyup-discovers-redos-vulnerabilities-in-top-python-packages-part-2
11
reference_url
https://pyup.io/posts/pyup-discovers-redos-vulnerabilities-in-top-python-packages-part-2/
reference_id
reference_type
scores
url
https://pyup.io/posts/pyup-discovers-redos-vulnerabilities-in-top-python-packages-part-2/
12
reference_url
https://nvd.nist.gov/vuln/detail/CVE-2022-40896
reference_id
CVE-2022-40896
reference_type
scores
url
https://nvd.nist.gov/vuln/detail/CVE-2022-40896
13
reference_url
https://github.com/advisories/GHSA-mrwq-x4v8-fh7p
reference_id
GHSA-mrwq-x4v8-fh7p
reference_type
scores
url
https://github.com/advisories/GHSA-mrwq-x4v8-fh7p
fixed_packages
0
url
pkg:pypi/pygments@2.15.0
purl
pkg:pypi/pygments@2.15.0
is_vulnerable
true
affected_by_vulnerabilities
0
vulnerability
VCID-rm69-vst8-xqbq
resource_url
http://public2.vulnerablecode.io/packages/pkg:pypi/pygments@2.15.0
1
url
pkg:pypi/pygments@2.15.1
purl
pkg:pypi/pygments@2.15.1
is_vulnerable
false
affected_by_vulnerabilities
resource_url
http://public2.vulnerablecode.io/packages/pkg:pypi/pygments@2.15.1
aliases
CVE-2022-40896, GHSA-mrwq-x4v8-fh7p, PYSEC-2023-117
risk_score
null
exploitability
null
weighted_severity
null
resource_url
http://public2.vulnerablecode.io/vulnerabilities/VCID-rm69-vst8-xqbq
Risk_score
null
Resource_url
http://public2.vulnerablecode.io/packages/pkg:pypi/pygments@2.15.0
×
Create
None
×
Edit
None