Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:pypi/plone.app.users@1.0a1
Typepypi
Namespace
Nameplone.app.users
Version1.0a1
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version1.0.5
Latest_non_vulnerable_version1.1.1
Affected_by_vulnerabilities
0
url VCID-jvwn-yw13-gfe9
vulnerability_id VCID-jvwn-yw13-gfe9
summary plone.app.users in Plone 4.0 and 4.1 allows remote authenticated users to modify the properties of arbitrary accounts via unspecified vectors, as exploited in the wild in June 2011.
references
0
reference_url http://osvdb.org/72729
reference_id
reference_type
scores
url http://osvdb.org/72729
1
reference_url http://plone.org/products/plone/security/advisories/CVE-2011-1950
reference_id
reference_type
scores
url http://plone.org/products/plone/security/advisories/CVE-2011-1950
2
reference_url http://secunia.com/advisories/44775
reference_id
reference_type
scores
url http://secunia.com/advisories/44775
3
reference_url http://securityreason.com/securityalert/8269
reference_id
reference_type
scores
url http://securityreason.com/securityalert/8269
4
reference_url https://exchange.xforce.ibmcloud.com/vulnerabilities/67695
reference_id
reference_type
scores
url https://exchange.xforce.ibmcloud.com/vulnerabilities/67695
5
reference_url https://github.com/advisories/GHSA-2qx8-589j-gcpx
reference_id
reference_type
scores
url https://github.com/advisories/GHSA-2qx8-589j-gcpx
6
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/plone/PYSEC-2011-16.yaml
reference_id
reference_type
scores
url https://github.com/pypa/advisory-database/tree/main/vulns/plone/PYSEC-2011-16.yaml
7
reference_url http://www.securityfocus.com/archive/1/518155/100/0/threaded
reference_id
reference_type
scores
url http://www.securityfocus.com/archive/1/518155/100/0/threaded
8
reference_url http://www.securityfocus.com/bid/48005
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/48005
9
reference_url https://nvd.nist.gov/vuln/detail/CVE-2011-1950
reference_id CVE-2011-1950
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2011-1950
fixed_packages
0
url pkg:pypi/plone.app.users@1.0.5
purl pkg:pypi/plone.app.users@1.0.5
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/plone.app.users@1.0.5
1
url pkg:pypi/plone.app.users@1.1.1
purl pkg:pypi/plone.app.users@1.1.1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/plone.app.users@1.1.1
aliases CVE-2011-1950, GHSA-2qx8-589j-gcpx, PYSEC-2011-16
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jvwn-yw13-gfe9
Fixing_vulnerabilities
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:pypi/plone.app.users@1.0a1