Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:alpm/archlinux/gitlab@14.2.1-1
Typealpm
Namespacearchlinux
Namegitlab
Version14.2.1-1
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version14.2.2-1
Latest_non_vulnerable_version15.2.1-1
Affected_by_vulnerabilities
0
url VCID-ss7h-4jqj-rycp
vulnerability_id VCID-ss7h-4jqj-rycp
summary The project import/export feature in GitLab 8.9 and greater could be used to obtain otherwise private email addresses
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-22258
reference_id
reference_type
scores
0
value 0.00274
scoring_system epss
scoring_elements 0.50853
published_at 2026-04-24T12:55:00Z
1
value 0.00274
scoring_system epss
scoring_elements 0.50782
published_at 2026-04-01T12:55:00Z
2
value 0.00274
scoring_system epss
scoring_elements 0.50838
published_at 2026-04-02T12:55:00Z
3
value 0.00274
scoring_system epss
scoring_elements 0.50864
published_at 2026-04-04T12:55:00Z
4
value 0.00274
scoring_system epss
scoring_elements 0.50821
published_at 2026-04-07T12:55:00Z
5
value 0.00274
scoring_system epss
scoring_elements 0.50878
published_at 2026-04-08T12:55:00Z
6
value 0.00274
scoring_system epss
scoring_elements 0.50876
published_at 2026-04-09T12:55:00Z
7
value 0.00274
scoring_system epss
scoring_elements 0.50918
published_at 2026-04-16T12:55:00Z
8
value 0.00274
scoring_system epss
scoring_elements 0.50896
published_at 2026-04-12T12:55:00Z
9
value 0.00274
scoring_system epss
scoring_elements 0.5088
published_at 2026-04-13T12:55:00Z
10
value 0.00274
scoring_system epss
scoring_elements 0.50924
published_at 2026-04-18T12:55:00Z
11
value 0.00274
scoring_system epss
scoring_elements 0.50904
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-22258
1
reference_url https://security.archlinux.org/AVG-2335
reference_id AVG-2335
reference_type
scores
0
value Medium
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2335
fixed_packages
0
url pkg:alpm/archlinux/gitlab@14.2.2-1
purl pkg:alpm/archlinux/gitlab@14.2.2-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/gitlab@14.2.2-1
aliases CVE-2021-22258
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ss7h-4jqj-rycp
1
url VCID-tfat-25ty-rfgj
vulnerability_id VCID-tfat-25ty-rfgj
summary An issue has been discovered in GitLab affecting all versions starting with 13.3. GitLab was vulnerable to a stored XSS by using the design feature in issues.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-22238
reference_id
reference_type
scores
0
value 0.01196
scoring_system epss
scoring_elements 0.78937
published_at 2026-04-24T12:55:00Z
1
value 0.01196
scoring_system epss
scoring_elements 0.78838
published_at 2026-04-01T12:55:00Z
2
value 0.01196
scoring_system epss
scoring_elements 0.78844
published_at 2026-04-02T12:55:00Z
3
value 0.01196
scoring_system epss
scoring_elements 0.78873
published_at 2026-04-04T12:55:00Z
4
value 0.01196
scoring_system epss
scoring_elements 0.78855
published_at 2026-04-07T12:55:00Z
5
value 0.01196
scoring_system epss
scoring_elements 0.7888
published_at 2026-04-08T12:55:00Z
6
value 0.01196
scoring_system epss
scoring_elements 0.78887
published_at 2026-04-09T12:55:00Z
7
value 0.01196
scoring_system epss
scoring_elements 0.7891
published_at 2026-04-11T12:55:00Z
8
value 0.01196
scoring_system epss
scoring_elements 0.78894
published_at 2026-04-12T12:55:00Z
9
value 0.01196
scoring_system epss
scoring_elements 0.78885
published_at 2026-04-13T12:55:00Z
10
value 0.01196
scoring_system epss
scoring_elements 0.78913
published_at 2026-04-16T12:55:00Z
11
value 0.01196
scoring_system epss
scoring_elements 0.78911
published_at 2026-04-18T12:55:00Z
12
value 0.01196
scoring_system epss
scoring_elements 0.78908
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-22238
1
reference_url https://security.archlinux.org/AVG-2335
reference_id AVG-2335
reference_type
scores
0
value Medium
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2335
fixed_packages
0
url pkg:alpm/archlinux/gitlab@14.2.2-1
purl pkg:alpm/archlinux/gitlab@14.2.2-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/gitlab@14.2.2-1
aliases CVE-2021-22238
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tfat-25ty-rfgj
2
url VCID-ykmk-ymk1-b3a6
vulnerability_id VCID-ykmk-ymk1-b3a6
summary An issue has been discovered in GitLab affecting all versions starting from 14.0 before 14.0.9, all versions starting from 14.1 before 14.1.4, all versions starting from 14.2 before 14.2.2. The route for /user.keys is not restricted on instances with public visibility disabled. This allows user enumeration on such instances.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-22257
reference_id
reference_type
scores
0
value 0.00218
scoring_system epss
scoring_elements 0.44337
published_at 2026-04-24T12:55:00Z
1
value 0.00218
scoring_system epss
scoring_elements 0.4437
published_at 2026-04-01T12:55:00Z
2
value 0.00218
scoring_system epss
scoring_elements 0.44441
published_at 2026-04-12T12:55:00Z
3
value 0.00218
scoring_system epss
scoring_elements 0.44462
published_at 2026-04-04T12:55:00Z
4
value 0.00218
scoring_system epss
scoring_elements 0.44397
published_at 2026-04-07T12:55:00Z
5
value 0.00218
scoring_system epss
scoring_elements 0.44448
published_at 2026-04-08T12:55:00Z
6
value 0.00218
scoring_system epss
scoring_elements 0.44455
published_at 2026-04-09T12:55:00Z
7
value 0.00218
scoring_system epss
scoring_elements 0.44471
published_at 2026-04-11T12:55:00Z
8
value 0.00218
scoring_system epss
scoring_elements 0.4444
published_at 2026-04-13T12:55:00Z
9
value 0.00218
scoring_system epss
scoring_elements 0.44496
published_at 2026-04-16T12:55:00Z
10
value 0.00218
scoring_system epss
scoring_elements 0.44487
published_at 2026-04-18T12:55:00Z
11
value 0.00218
scoring_system epss
scoring_elements 0.44417
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-22257
1
reference_url https://security.archlinux.org/AVG-2335
reference_id AVG-2335
reference_type
scores
0
value Medium
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2335
fixed_packages
0
url pkg:alpm/archlinux/gitlab@14.2.2-1
purl pkg:alpm/archlinux/gitlab@14.2.2-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/gitlab@14.2.2-1
aliases CVE-2021-22257
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ykmk-ymk1-b3a6
Fixing_vulnerabilities
Risk_score3.1
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/gitlab@14.2.1-1