Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:pypi/plone@3.3a1
Typepypi
Namespace
Nameplone
Version3.3a1
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version4.2a3
Latest_non_vulnerable_version6.0.7
Affected_by_vulnerabilities
0
url VCID-zy2g-gzmk-1qcz
vulnerability_id VCID-zy2g-gzmk-1qcz
summary Multiple cross-site scripting (XSS) vulnerabilities in the ZMI page in Zope2 in Plone CMS 5.x through 5.0.6, 4.x through 4.3.11, and 3.3.x through 3.3.6 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
references
0
reference_url http://packetstormsecurity.com/files/139110/Plone-CMS-4.3.11-5.0.6-XSS-Traversal-Open-Redirection.html
reference_id
reference_type
scores
url http://packetstormsecurity.com/files/139110/Plone-CMS-4.3.11-5.0.6-XSS-Traversal-Open-Redirection.html
1
reference_url http://seclists.org/fulldisclosure/2016/Oct/80
reference_id
reference_type
scores
url http://seclists.org/fulldisclosure/2016/Oct/80
2
reference_url https://github.com/plone/Plone
reference_id
reference_type
scores
url https://github.com/plone/Plone
3
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/plone/PYSEC-2017-63.yaml
reference_id
reference_type
scores
url https://github.com/pypa/advisory-database/tree/main/vulns/plone/PYSEC-2017-63.yaml
4
reference_url https://plone.org/security/hotfix/20160830/non-persistent-xss-in-zope2
reference_id
reference_type
scores
url https://plone.org/security/hotfix/20160830/non-persistent-xss-in-zope2
5
reference_url http://www.openwall.com/lists/oss-security/2016/09/05/4
reference_id
reference_type
scores
url http://www.openwall.com/lists/oss-security/2016/09/05/4
6
reference_url http://www.openwall.com/lists/oss-security/2016/09/05/5
reference_id
reference_type
scores
url http://www.openwall.com/lists/oss-security/2016/09/05/5
7
reference_url http://www.securityfocus.com/archive/1/539572/100/0/threaded
reference_id
reference_type
scores
url http://www.securityfocus.com/archive/1/539572/100/0/threaded
8
reference_url http://www.securityfocus.com/bid/92752
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/92752
9
reference_url https://nvd.nist.gov/vuln/detail/CVE-2016-7140
reference_id CVE-2016-7140
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2016-7140
10
reference_url https://github.com/advisories/GHSA-chvw-gjxf-f8mc
reference_id GHSA-chvw-gjxf-f8mc
reference_type
scores
url https://github.com/advisories/GHSA-chvw-gjxf-f8mc
fixed_packages
0
url pkg:pypi/plone@4.0a1
purl pkg:pypi/plone@4.0a1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2sk4-yc6h-17c4
1
vulnerability VCID-3buw-zes9-ukg4
2
vulnerability VCID-3shf-hh9a-rqdw
3
vulnerability VCID-4v5e-r5we-tffe
4
vulnerability VCID-5ry7-xy6b-5fag
5
vulnerability VCID-6568-4ert-1bau
6
vulnerability VCID-69ps-uetw-y3gf
7
vulnerability VCID-8rp3-p3qe-x7ej
8
vulnerability VCID-9a27-8egg-7uam
9
vulnerability VCID-9dr2-mexa-qfbn
10
vulnerability VCID-9kgy-2mwu-6yhd
11
vulnerability VCID-9u27-bf7b-x7er
12
vulnerability VCID-ax8a-2g7j-6ya2
13
vulnerability VCID-basq-jjsf-3fbd
14
vulnerability VCID-chqa-wbu7-eyak
15
vulnerability VCID-cpwq-sq8b-4yhf
16
vulnerability VCID-d42u-s7za-a3ad
17
vulnerability VCID-dg61-tw4u-dbcc
18
vulnerability VCID-dxqw-uf6r-vbbh
19
vulnerability VCID-edq7-7ncc-mbfx
20
vulnerability VCID-eg2r-ez9f-hkak
21
vulnerability VCID-eu4z-htaq-c3d6
22
vulnerability VCID-exan-4j3e-2qeh
23
vulnerability VCID-fdpc-runu-ekah
24
vulnerability VCID-g2ap-vh6r-yqds
25
vulnerability VCID-g6ky-pfur-7kfg
26
vulnerability VCID-gdtw-2d1s-2bbw
27
vulnerability VCID-h8ur-tnzd-afay
28
vulnerability VCID-hb93-ea78-8ygv
29
vulnerability VCID-hhux-xufk-ube2
30
vulnerability VCID-hygx-6n52-u7fz
31
vulnerability VCID-jhw6-wxz2-qbgd
32
vulnerability VCID-jvwn-yw13-gfe9
33
vulnerability VCID-khhr-m295-23gs
34
vulnerability VCID-khsn-43tn-37bx
35
vulnerability VCID-krfw-xa2b-vue5
36
vulnerability VCID-kz14-79we-xbfe
37
vulnerability VCID-mt5t-3gsw-7fde
38
vulnerability VCID-n4nh-4rq4-r7hx
39
vulnerability VCID-nrxp-p6rx-8kdd
40
vulnerability VCID-p71t-er3d-9fdn
41
vulnerability VCID-pb2y-jwn1-wbck
42
vulnerability VCID-pgrv-sncf-cqca
43
vulnerability VCID-pzke-4by2-w3hk
44
vulnerability VCID-q7nt-b3s9-9kf6
45
vulnerability VCID-r52t-hx1j-ufa1
46
vulnerability VCID-s84e-bb7w-5qht
47
vulnerability VCID-shjb-m9k6-uuf1
48
vulnerability VCID-svbc-dj3m-t7av
49
vulnerability VCID-tc7w-wttv-vfed
50
vulnerability VCID-ud5f-7gx8-83d6
51
vulnerability VCID-uqe7-n3uh-zfac
52
vulnerability VCID-uykg-p1e9-mfd8
53
vulnerability VCID-vr9k-9xch-4yc7
54
vulnerability VCID-w2mv-zekv-8fcv
55
vulnerability VCID-x2xm-hpc2-uubq
56
vulnerability VCID-x6y6-xx1a-7kfd
57
vulnerability VCID-x8n5-qj35-eqb1
58
vulnerability VCID-xpq8-npn5-kyb9
59
vulnerability VCID-yfkz-3xu3-vyc9
60
vulnerability VCID-yhzr-hb68-cfd6
61
vulnerability VCID-ykmg-jcfe-8qf4
62
vulnerability VCID-yuph-y2fa-3uaa
63
vulnerability VCID-zd73-fvwg-nbgx
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/plone@4.0a1
1
url pkg:pypi/plone@4.3.12
purl pkg:pypi/plone@4.3.12
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5ry7-xy6b-5fag
1
vulnerability VCID-69ps-uetw-y3gf
2
vulnerability VCID-8rp3-p3qe-x7ej
3
vulnerability VCID-8wkk-84ky-17ak
4
vulnerability VCID-9gu8-dgkr-sua3
5
vulnerability VCID-ax8a-2g7j-6ya2
6
vulnerability VCID-basq-jjsf-3fbd
7
vulnerability VCID-bmwk-nutp-r3fs
8
vulnerability VCID-cpwq-sq8b-4yhf
9
vulnerability VCID-d42u-s7za-a3ad
10
vulnerability VCID-dg61-tw4u-dbcc
11
vulnerability VCID-edq7-7ncc-mbfx
12
vulnerability VCID-eu4z-htaq-c3d6
13
vulnerability VCID-exan-4j3e-2qeh
14
vulnerability VCID-fdpc-runu-ekah
15
vulnerability VCID-j8fv-uhxw-jkcw
16
vulnerability VCID-p71t-er3d-9fdn
17
vulnerability VCID-pzke-4by2-w3hk
18
vulnerability VCID-q7nt-b3s9-9kf6
19
vulnerability VCID-r52t-hx1j-ufa1
20
vulnerability VCID-x2xm-hpc2-uubq
21
vulnerability VCID-z4jt-v88h-77er
22
vulnerability VCID-zwnj-revc-vbd6
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/plone@4.3.12
2
url pkg:pypi/plone@5.0.7
purl pkg:pypi/plone@5.0.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-29gf-82fr-k3h8
1
vulnerability VCID-5ry7-xy6b-5fag
2
vulnerability VCID-69ps-uetw-y3gf
3
vulnerability VCID-8rp3-p3qe-x7ej
4
vulnerability VCID-8wkk-84ky-17ak
5
vulnerability VCID-951j-w95x-83g8
6
vulnerability VCID-9gu8-dgkr-sua3
7
vulnerability VCID-ax8a-2g7j-6ya2
8
vulnerability VCID-basq-jjsf-3fbd
9
vulnerability VCID-bmwk-nutp-r3fs
10
vulnerability VCID-d42u-s7za-a3ad
11
vulnerability VCID-dg61-tw4u-dbcc
12
vulnerability VCID-edq7-7ncc-mbfx
13
vulnerability VCID-eu4z-htaq-c3d6
14
vulnerability VCID-exan-4j3e-2qeh
15
vulnerability VCID-fdpc-runu-ekah
16
vulnerability VCID-j8fv-uhxw-jkcw
17
vulnerability VCID-jvvz-bafs-t7gc
18
vulnerability VCID-p71t-er3d-9fdn
19
vulnerability VCID-pzke-4by2-w3hk
20
vulnerability VCID-q7nt-b3s9-9kf6
21
vulnerability VCID-r52t-hx1j-ufa1
22
vulnerability VCID-x2xm-hpc2-uubq
23
vulnerability VCID-z4jt-v88h-77er
24
vulnerability VCID-zwnj-revc-vbd6
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/plone@5.0.7
aliases CVE-2016-7140, GHSA-chvw-gjxf-f8mc, PYSEC-2017-63
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zy2g-gzmk-1qcz
Fixing_vulnerabilities
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:pypi/plone@3.3a1