Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/62289?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/62289?format=api", "purl": "pkg:pypi/plone@4.2a3", "type": "pypi", "namespace": "", "name": "plone", "version": "4.2a3", "qualifiers": {}, "subpath": "", "is_vulnerable": false, "next_non_vulnerable_version": "5.2.5", "latest_non_vulnerable_version": "6.0.7", "affected_by_vulnerabilities": [], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7105?format=api", "vulnerability_id": "VCID-rv8k-q8hx-7yeb", "summary": "The CMFEditions component 2.x in Plone 4.0.x through 4.0.9, 4.1, and 4.2 through 4.2a2 does not prevent the KwAsAttributes classes from being publishable, which allows remote attackers to access sub-objects via unspecified vectors, a different vulnerability than CVE-2011-3587.", "references": [ { "reference_url": "http://plone.org/products/plone-hotfix/releases/20110928", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://plone.org/products/plone-hotfix/releases/20110928" }, { "reference_url": "http://plone.org/products/plone-hotfix/releases/20110928/PloneHotfix20110928-1.0.zip", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://plone.org/products/plone-hotfix/releases/20110928/PloneHotfix20110928-1.0.zip" }, { "reference_url": "http://pypi.python.org/pypi/Products.PloneHotfix20110928/1.0", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://pypi.python.org/pypi/Products.PloneHotfix20110928/1.0" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2011-4030", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01098", "scoring_system": "epss", "scoring_elements": "0.78318", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2011-4030" }, { "reference_url": "http://secunia.com/advisories/46323", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/46323" }, { "reference_url": "https://github.com/plone/Plone", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/plone/Plone" }, { "reference_url": "https://github.com/pypa/advisory-database/tree/main/vulns/products-plonehotfix20110928/PYSEC-2011-27.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/pypa/advisory-database/tree/main/vulns/products-plonehotfix20110928/PYSEC-2011-27.yaml" }, { "reference_url": "http://www.securityfocus.com/bid/50287", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/50287" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2011-4030", "reference_id": "CVE-2011-4030", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-4030" }, { "reference_url": "https://github.com/advisories/GHSA-pwgm-jvqv-6v8p", "reference_id": "GHSA-pwgm-jvqv-6v8p", "reference_type": "", "scores": [], "url": "https://github.com/advisories/GHSA-pwgm-jvqv-6v8p" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5912?format=api", "purl": "pkg:pypi/plone@4.0.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-311f-xecp-47fm" }, { "vulnerability": "VCID-31m2-mwzq-judc" }, { "vulnerability": "VCID-36xh-ua3s-gyfr" }, { "vulnerability": "VCID-3n34-5rm7-nbcj" }, { "vulnerability": "VCID-3uw2-j3r6-77ch" }, { "vulnerability": "VCID-3v6x-b2g3-fyhq" }, { "vulnerability": "VCID-43m1-jkv8-jygp" }, { "vulnerability": "VCID-46az-51p2-yfdf" }, { "vulnerability": "VCID-4bjr-mjug-gqd2" }, { "vulnerability": "VCID-4hzn-mj8g-37ew" }, { "vulnerability": "VCID-4xdg-1sku-17cd" }, { "vulnerability": "VCID-4ym2-39bg-dbga" }, { "vulnerability": "VCID-5bnw-ktd3-8qeb" }, { "vulnerability": "VCID-5e2c-6mkx-4udu" }, { "vulnerability": "VCID-5kaj-zugj-mbh1" }, { "vulnerability": "VCID-5tbn-qmuj-jya9" }, { "vulnerability": "VCID-5z33-3pqj-gygw" }, { "vulnerability": "VCID-6898-z4k5-h3b6" }, { "vulnerability": "VCID-6rsz-krhe-q3gz" }, { "vulnerability": "VCID-7mc8-x346-eyaq" }, { "vulnerability": "VCID-83xg-a5v4-4bcw" }, { "vulnerability": "VCID-8gk5-28z6-7bcf" }, { "vulnerability": "VCID-8j8e-z731-7fbz" }, { "vulnerability": "VCID-8md9-zymx-w7cn" }, { "vulnerability": "VCID-8r52-vc7e-f3bc" }, { "vulnerability": "VCID-99bf-ybqh-dfad" }, { "vulnerability": "VCID-9ze6-mfrw-ukdv" }, { "vulnerability": "VCID-a628-5uyk-w3ca" }, { "vulnerability": "VCID-a67e-svcb-ekhc" }, { "vulnerability": "VCID-bj9p-4wzt-47cf" }, { "vulnerability": "VCID-ch1t-qmtc-xqfx" }, { "vulnerability": "VCID-d68e-uehc-nudc" }, { "vulnerability": "VCID-fd6y-2fcd-jbck" }, { "vulnerability": "VCID-fga8-ymex-67fw" }, { "vulnerability": "VCID-gejv-h449-13e4" }, { "vulnerability": "VCID-gsnt-c1cd-d3bf" }, { "vulnerability": "VCID-hzgj-wca9-z3d1" }, { "vulnerability": "VCID-jhc2-yux7-vybj" }, { "vulnerability": "VCID-k34d-p9vb-g7by" }, { "vulnerability": "VCID-kak6-5sps-z3da" }, { "vulnerability": "VCID-kmd1-vu9u-d7g4" }, { "vulnerability": "VCID-kvvr-zc1s-akhn" }, { "vulnerability": "VCID-m91w-vguw-qkem" }, { "vulnerability": "VCID-mgpa-1taj-pycj" }, { "vulnerability": "VCID-njnv-5cwt-4ygy" }, { "vulnerability": "VCID-pncb-4m8u-hbaw" }, { "vulnerability": "VCID-pv2n-2y41-pbg5" }, { "vulnerability": "VCID-qkv2-qpe2-97cx" }, { "vulnerability": "VCID-qskf-bt81-5bbe" }, { "vulnerability": "VCID-r874-3h26-j3fp" }, { "vulnerability": "VCID-rn4s-px1y-7fbc" }, { "vulnerability": "VCID-s5ab-nud4-5qdg" }, { "vulnerability": "VCID-sa7x-wvn1-skh1" }, { "vulnerability": "VCID-scgs-bz44-ebfk" }, { "vulnerability": "VCID-swq8-17qu-vyfw" }, { "vulnerability": "VCID-tfmu-7tad-xbbe" }, { "vulnerability": "VCID-u1hz-5a2a-ybac" }, { "vulnerability": "VCID-uduq-ujbb-6qd2" }, { "vulnerability": "VCID-ugq4-1vzc-6uh5" }, { "vulnerability": "VCID-uv7n-awe5-2fav" }, { "vulnerability": "VCID-vc1v-xsbc-kff1" }, { "vulnerability": "VCID-w2u3-bnqq-mqfz" }, { "vulnerability": "VCID-wage-1bme-bkgb" }, { "vulnerability": "VCID-xa5e-bbcv-byg9" }, { "vulnerability": "VCID-xksv-mub7-dyck" }, { "vulnerability": "VCID-xpjk-k6tj-2uba" }, { "vulnerability": "VCID-y2bq-cb4v-mke6" }, { "vulnerability": "VCID-yaa8-vy4x-cqbq" }, { "vulnerability": "VCID-ykg2-qbyr-ayd5" }, { "vulnerability": "VCID-ymbd-m6tf-5bap" }, { "vulnerability": "VCID-z8kt-tf38-eqgc" }, { "vulnerability": "VCID-zf51-58kf-43bf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/plone@4.0.10" }, { "url": "http://public2.vulnerablecode.io/api/packages/5921?format=api", "purl": "pkg:pypi/plone@4.1.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-311f-xecp-47fm" }, { "vulnerability": "VCID-36xh-ua3s-gyfr" }, { "vulnerability": "VCID-3n34-5rm7-nbcj" }, { "vulnerability": "VCID-3uw2-j3r6-77ch" }, { "vulnerability": "VCID-3v6x-b2g3-fyhq" }, { "vulnerability": "VCID-43m1-jkv8-jygp" }, { "vulnerability": "VCID-46az-51p2-yfdf" }, { "vulnerability": "VCID-4bjr-mjug-gqd2" }, { "vulnerability": "VCID-4hzn-mj8g-37ew" }, { "vulnerability": "VCID-4ym2-39bg-dbga" }, { "vulnerability": "VCID-5bnw-ktd3-8qeb" }, { "vulnerability": "VCID-5e2c-6mkx-4udu" }, { "vulnerability": "VCID-5kaj-zugj-mbh1" }, { "vulnerability": "VCID-5tbn-qmuj-jya9" }, { "vulnerability": "VCID-5z33-3pqj-gygw" }, { "vulnerability": "VCID-6898-z4k5-h3b6" }, { "vulnerability": "VCID-6rsz-krhe-q3gz" }, { "vulnerability": "VCID-8gk5-28z6-7bcf" }, { "vulnerability": "VCID-8j8e-z731-7fbz" }, { "vulnerability": "VCID-8md9-zymx-w7cn" }, { "vulnerability": "VCID-99bf-ybqh-dfad" }, { "vulnerability": "VCID-9ze6-mfrw-ukdv" }, { "vulnerability": "VCID-a67e-svcb-ekhc" }, { "vulnerability": "VCID-ch1t-qmtc-xqfx" }, { "vulnerability": "VCID-d68e-uehc-nudc" }, { "vulnerability": "VCID-fga8-ymex-67fw" }, { "vulnerability": "VCID-gejv-h449-13e4" }, { "vulnerability": "VCID-gsnt-c1cd-d3bf" }, { "vulnerability": "VCID-hzgj-wca9-z3d1" }, { "vulnerability": "VCID-jhc2-yux7-vybj" }, { "vulnerability": "VCID-k34d-p9vb-g7by" }, { "vulnerability": "VCID-kak6-5sps-z3da" }, { "vulnerability": "VCID-kvvr-zc1s-akhn" }, { "vulnerability": "VCID-m91w-vguw-qkem" }, { "vulnerability": "VCID-mgpa-1taj-pycj" }, { "vulnerability": "VCID-njnv-5cwt-4ygy" }, { "vulnerability": "VCID-pn5z-xdcd-zqd5" }, { "vulnerability": "VCID-pncb-4m8u-hbaw" }, { "vulnerability": "VCID-pv2n-2y41-pbg5" }, { "vulnerability": "VCID-r874-3h26-j3fp" }, { "vulnerability": "VCID-s5ab-nud4-5qdg" }, { "vulnerability": "VCID-sa7x-wvn1-skh1" }, { "vulnerability": "VCID-scgs-bz44-ebfk" }, { "vulnerability": "VCID-tfmu-7tad-xbbe" }, { "vulnerability": "VCID-u1hz-5a2a-ybac" }, { "vulnerability": "VCID-uduq-ujbb-6qd2" }, { "vulnerability": "VCID-ugq4-1vzc-6uh5" }, { "vulnerability": "VCID-vc1v-xsbc-kff1" }, { "vulnerability": "VCID-w2u3-bnqq-mqfz" }, { "vulnerability": "VCID-wage-1bme-bkgb" }, { "vulnerability": "VCID-xa5e-bbcv-byg9" }, { "vulnerability": "VCID-xksv-mub7-dyck" }, { "vulnerability": "VCID-xpjk-k6tj-2uba" }, { "vulnerability": "VCID-y2bq-cb4v-mke6" }, { "vulnerability": "VCID-yaa8-vy4x-cqbq" }, { "vulnerability": "VCID-ymbd-m6tf-5bap" }, { "vulnerability": "VCID-z8kt-tf38-eqgc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/plone@4.1.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/62289?format=api", "purl": "pkg:pypi/plone@4.2a3", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/plone@4.2a3" } ], "aliases": [ "CVE-2011-4030", "GHSA-pwgm-jvqv-6v8p", "PYSEC-2011-27" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rv8k-q8hx-7yeb" } ], "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/plone@4.2a3" }