Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:composer/typo3/cms@8.0.1
Typecomposer
Namespacetypo3
Namecms
Version8.0.1
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version8.1.1
Latest_non_vulnerable_version12.2.0
Affected_by_vulnerabilities
0
url VCID-h7cg-64er-uya9
vulnerability_id VCID-h7cg-64er-uya9
summary 
Unrestricted Upload of File with Dangerous Type
Unrestricted File Upload vulnerability in the `fileDenyPattern` in `sysext/core/Classes/Core/SystemEnvironmentBuilder`.
references
0
reference_url https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2017-007/
reference_id
reference_type
scores
url https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2017-007/
1
reference_url http://www.securityfocus.com/bid/100620
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/100620
2
reference_url http://www.securitytracker.com/id/1039295
reference_id
reference_type
scores
url http://www.securitytracker.com/id/1039295
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2017-14251
reference_id CVE-2017-14251
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2017-14251
fixed_packages
0
url pkg:composer/typo3/cms@8.7.5
purl pkg:composer/typo3/cms@8.7.5
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.5
aliases CVE-2017-14251
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-h7cg-64er-uya9
Fixing_vulnerabilities
0
url VCID-2r7u-mc45-8yhe
vulnerability_id VCID-2r7u-mc45-8yhe
summary 
Improper Authentication
Authentication Bypass in TYPO3 CMS.
references
0
reference_url https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-011/
reference_id
reference_type
scores
url https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-011/
fixed_packages
0
url pkg:composer/typo3/cms@6.2.20
purl pkg:composer/typo3/cms@6.2.20
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.20
1
url pkg:composer/typo3/cms@7.6.5
purl pkg:composer/typo3/cms@7.6.5
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.5
2
url pkg:composer/typo3/cms@8.0.1
purl pkg:composer/typo3/cms@8.0.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-h7cg-64er-uya9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.0.1
aliases GMS-2016-145
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2r7u-mc45-8yhe
1
url VCID-39jx-muqb-nkfq
vulnerability_id VCID-39jx-muqb-nkfq
summary 
Cross-site Scripting
Cross-Site Scripting in TYPO3 Backend.
references
0
reference_url https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-009/
reference_id
reference_type
scores
url https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-009/
fixed_packages
0
url pkg:composer/typo3/cms@6.2.20
purl pkg:composer/typo3/cms@6.2.20
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.20
1
url pkg:composer/typo3/cms@7.6.5
purl pkg:composer/typo3/cms@7.6.5
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.5
2
url pkg:composer/typo3/cms@8.0.1
purl pkg:composer/typo3/cms@8.0.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-h7cg-64er-uya9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.0.1
aliases GMS-2016-143
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-39jx-muqb-nkfq
2
url VCID-u4tq-8qnk-5fd7
vulnerability_id VCID-u4tq-8qnk-5fd7
summary 
Improper Privilege Management
Privilege Escalation in TYPO3 CMS.
references
0
reference_url https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-012/
reference_id
reference_type
scores
url https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-012/
fixed_packages
0
url pkg:composer/typo3/cms@6.2.20
purl pkg:composer/typo3/cms@6.2.20
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.20
1
url pkg:composer/typo3/cms@7.6.5
purl pkg:composer/typo3/cms@7.6.5
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.5
2
url pkg:composer/typo3/cms@8.0.1
purl pkg:composer/typo3/cms@8.0.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-h7cg-64er-uya9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.0.1
aliases GMS-2016-146
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-u4tq-8qnk-5fd7
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.0.1