Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/52148?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/52148?format=api", "purl": "pkg:gem/doorkeeper@1.4.2", "type": "gem", "namespace": "", "name": "doorkeeper", "version": "1.4.2", "qualifiers": {}, "subpath": "", "is_vulnerable": false, "next_non_vulnerable_version": "2.0.0.rc3", "latest_non_vulnerable_version": "5.6.6", "affected_by_vulnerabilities": [], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/37801?format=api", "vulnerability_id": "VCID-ypak-x4hq-6qgt", "summary": "Sensitive information in production logs\nThe program stores sensitive information in production logs. This may allow a local attacker to gain access to sensitive information.", "references": [ { "reference_url": "https://github.com/apsoto/doorkeeper/commit/ff434bb8fc49e132bff4d0f974ee0c1a8a69c143", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/apsoto/doorkeeper/commit/ff434bb8fc49e132bff4d0f974ee0c1a8a69c143" }, { "reference_url": "https://github.com/doorkeeper-gem/doorkeeper/commit/d6bca5f32b741b8cee83a4aeb818338b919181fe", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/doorkeeper-gem/doorkeeper/commit/d6bca5f32b741b8cee83a4aeb818338b919181fe" }, { "reference_url": "https://github.com/doorkeeper-gem/doorkeeper/issues/576", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/doorkeeper-gem/doorkeeper/issues/576" }, { "reference_url": "http://www.osvdb.com/show/osvdb/118830", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.osvdb.com/show/osvdb/118830" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/52148?format=api", "purl": "pkg:gem/doorkeeper@1.4.2", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@1.4.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/52149?format=api", "purl": "pkg:gem/doorkeeper@2.1.2", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@2.1.2" } ], "aliases": [ "OSVDB-118830" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ypak-x4hq-6qgt" } ], "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@1.4.2" }