Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:composer/silverstripe/framework@1.0.0
Typecomposer
Namespacesilverstripe
Nameframework
Version1.0.0
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version5.3.23
Latest_non_vulnerable_version6.0.0-alpha1
Affected_by_vulnerabilities
0
url VCID-tc2y-zrea-vyb2
vulnerability_id VCID-tc2y-zrea-vyb2
summary 
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
SilverStripe Framework suffers from a XSS vulnerablity.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-36150
reference_id
reference_type
scores
0
value 0.00372
scoring_system epss
scoring_elements 0.58932
published_at 2026-04-02T12:55:00Z
1
value 0.00372
scoring_system epss
scoring_elements 0.58977
published_at 2026-04-21T12:55:00Z
2
value 0.00372
scoring_system epss
scoring_elements 0.58998
published_at 2026-04-18T12:55:00Z
3
value 0.00372
scoring_system epss
scoring_elements 0.58994
published_at 2026-04-16T12:55:00Z
4
value 0.00372
scoring_system epss
scoring_elements 0.5896
published_at 2026-04-13T12:55:00Z
5
value 0.00372
scoring_system epss
scoring_elements 0.58979
published_at 2026-04-12T12:55:00Z
6
value 0.00372
scoring_system epss
scoring_elements 0.58997
published_at 2026-04-11T12:55:00Z
7
value 0.00372
scoring_system epss
scoring_elements 0.58978
published_at 2026-04-09T12:55:00Z
8
value 0.00372
scoring_system epss
scoring_elements 0.58972
published_at 2026-04-08T12:55:00Z
9
value 0.00372
scoring_system epss
scoring_elements 0.5892
published_at 2026-04-07T12:55:00Z
10
value 0.00372
scoring_system epss
scoring_elements 0.58857
published_at 2026-04-01T12:55:00Z
11
value 0.00372
scoring_system epss
scoring_elements 0.58954
published_at 2026-04-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-36150
1
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/silverstripe/admin/CVE-2021-36150.yaml
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/silverstripe/admin/CVE-2021-36150.yaml
2
reference_url https://github.com/silverstripe/silverstripe-framework
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/silverstripe/silverstripe-framework
3
reference_url https://github.com/silverstripe/silverstripe-framework/releases
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/silverstripe/silverstripe-framework/releases
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2021-36150
reference_id CVE-2021-36150
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2021-36150
5
reference_url https://www.silverstripe.org/download/security-releases/CVE-2021-36150
reference_id CVE-2021-36150
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.silverstripe.org/download/security-releases/CVE-2021-36150
6
reference_url https://github.com/advisories/GHSA-j66h-cc96-c32q
reference_id GHSA-j66h-cc96-c32q
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-j66h-cc96-c32q
fixed_packages
0
url pkg:composer/silverstripe/framework@4.9.0-alpha1
purl pkg:composer/silverstripe/framework@4.9.0-alpha1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2rbk-47h6-d7d8
1
vulnerability VCID-4f9c-aun4-wfep
2
vulnerability VCID-4x32-t75c-u3bj
3
vulnerability VCID-5pkg-j4wg-7fcn
4
vulnerability VCID-6epx-c68d-d7bv
5
vulnerability VCID-86yd-4mkt-hydr
6
vulnerability VCID-a3yc-fxa1-gfhy
7
vulnerability VCID-axxx-gpfn-mqc9
8
vulnerability VCID-cfgg-fgjt-z3hn
9
vulnerability VCID-d5q3-jrdb-euav
10
vulnerability VCID-ftdr-uzuh-8ybc
11
vulnerability VCID-kak1-btjp-kqgz
12
vulnerability VCID-kd3t-2gzd-q3hq
13
vulnerability VCID-kgm4-g26x-gken
14
vulnerability VCID-kvhv-9fj5-7kgk
15
vulnerability VCID-kw9p-5fbc-hudg
16
vulnerability VCID-kxa8-dmva-ayff
17
vulnerability VCID-qjgf-hxng-j3g9
18
vulnerability VCID-qm38-1cwk-b3hq
19
vulnerability VCID-ua49-snhx-dqa4
20
vulnerability VCID-w4fh-cpaq-nqat
21
vulnerability VCID-yuer-yn1w-q3gw
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/silverstripe/framework@4.9.0-alpha1
1
url pkg:composer/silverstripe/framework@4.9.0
purl pkg:composer/silverstripe/framework@4.9.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2rbk-47h6-d7d8
1
vulnerability VCID-4f9c-aun4-wfep
2
vulnerability VCID-4x32-t75c-u3bj
3
vulnerability VCID-5pkg-j4wg-7fcn
4
vulnerability VCID-6epx-c68d-d7bv
5
vulnerability VCID-86yd-4mkt-hydr
6
vulnerability VCID-a3yc-fxa1-gfhy
7
vulnerability VCID-axxx-gpfn-mqc9
8
vulnerability VCID-cfgg-fgjt-z3hn
9
vulnerability VCID-d5q3-jrdb-euav
10
vulnerability VCID-ftdr-uzuh-8ybc
11
vulnerability VCID-kak1-btjp-kqgz
12
vulnerability VCID-kd3t-2gzd-q3hq
13
vulnerability VCID-kgm4-g26x-gken
14
vulnerability VCID-kvhv-9fj5-7kgk
15
vulnerability VCID-kw9p-5fbc-hudg
16
vulnerability VCID-kxa8-dmva-ayff
17
vulnerability VCID-qjgf-hxng-j3g9
18
vulnerability VCID-qm38-1cwk-b3hq
19
vulnerability VCID-ua49-snhx-dqa4
20
vulnerability VCID-w4fh-cpaq-nqat
21
vulnerability VCID-yuer-yn1w-q3gw
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/silverstripe/framework@4.9.0
aliases CVE-2021-36150, GHSA-j66h-cc96-c32q
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tc2y-zrea-vyb2
Fixing_vulnerabilities
Risk_score3.1
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:composer/silverstripe/framework@1.0.0