Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:pypi/saleor@3.8.0
Typepypi
Namespace
Namesaleor
Version3.8.0
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version3.8.30
Latest_non_vulnerable_version3.19.15
Affected_by_vulnerabilities
0
url VCID-4zmr-5jbx-z3ha
vulnerability_id VCID-4zmr-5jbx-z3ha
summary 
Saleor Unauthenticated Information Disclosure Vulnerability via Python Exceptions
Saleor is a headless, GraphQL commerce platform delivering personalized shopping experiences. Some internal Python exceptions are not handled properly and thus are returned in API as error messages. Some messages might contain sensitive information like infrastructure details in unauthenticated requests. This issue has been patched in versions 3.1.48, 3.7.59, 3.8.0, 3.9.27, 3.10.14 and 3.11.12.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-26052
reference_id
reference_type
scores
0
value 0.00179
scoring_system epss
scoring_elements 0.39159
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-26052
1
reference_url https://github.com/saleor/saleor
reference_id
reference_type
scores
0
value 3.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/saleor/saleor
2
reference_url https://github.com/saleor/saleor/releases/tag/3.10.14
reference_id
reference_type
scores
0
value 3.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/saleor/saleor/releases/tag/3.10.14
3
reference_url https://github.com/saleor/saleor/releases/tag/3.11.12
reference_id
reference_type
scores
0
value 3.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/saleor/saleor/releases/tag/3.11.12
4
reference_url https://github.com/saleor/saleor/releases/tag/3.1.48
reference_id
reference_type
scores
0
value 3.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/saleor/saleor/releases/tag/3.1.48
5
reference_url https://github.com/saleor/saleor/releases/tag/3.7.59
reference_id
reference_type
scores
0
value 3.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/saleor/saleor/releases/tag/3.7.59
6
reference_url https://github.com/saleor/saleor/releases/tag/3.8.30
reference_id
reference_type
scores
0
value 3.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/saleor/saleor/releases/tag/3.8.30
7
reference_url https://github.com/saleor/saleor/releases/tag/3.9.27
reference_id
reference_type
scores
0
value 3.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/saleor/saleor/releases/tag/3.9.27
8
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-26052
reference_id CVE-2023-26052
reference_type
scores
0
value 3.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value LOW
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-26052
9
reference_url https://github.com/advisories/GHSA-3hvj-3cg9-v242
reference_id GHSA-3hvj-3cg9-v242
reference_type
scores
url https://github.com/advisories/GHSA-3hvj-3cg9-v242
10
reference_url https://github.com/saleor/saleor/security/advisories/GHSA-3hvj-3cg9-v242
reference_id GHSA-3hvj-3cg9-v242
reference_type
scores
0
value 3.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/saleor/saleor/security/advisories/GHSA-3hvj-3cg9-v242
fixed_packages
0
url pkg:pypi/saleor@3.8.30
purl pkg:pypi/saleor@3.8.30
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/saleor@3.8.30
1
url pkg:pypi/saleor@3.9.27
purl pkg:pypi/saleor@3.9.27
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/saleor@3.9.27
2
url pkg:pypi/saleor@3.10.14
purl pkg:pypi/saleor@3.10.14
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/saleor@3.10.14
3
url pkg:pypi/saleor@3.11.12
purl pkg:pypi/saleor@3.11.12
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/saleor@3.11.12
aliases CVE-2023-26052, GHSA-3hvj-3cg9-v242
risk_score 1.6
exploitability 0.5
weighted_severity 3.3
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4zmr-5jbx-z3ha
1
url VCID-sxq3-egvv-1kdc
vulnerability_id VCID-sxq3-egvv-1kdc
summary 
Saleor has Staff-Authenticated Error Message Information Disclosure Vulnerability via Python Exceptions
Saleor is a headless, GraphQL commerce platform delivering personalized shopping experiences. Some internal Python exceptions are not handled properly and thus are returned in API as error messages. Some messages might contain sensitive information like user email address in staff-authenticated requests.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-26051
reference_id
reference_type
scores
0
value 0.00268
scoring_system epss
scoring_elements 0.50428
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-26051
1
reference_url https://github.com/saleor/saleor
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/saleor/saleor
2
reference_url https://github.com/saleor/saleor/commit/31bce881ccccf0d79a9b14ecb6ca3138d1edeec1
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/saleor/saleor/commit/31bce881ccccf0d79a9b14ecb6ca3138d1edeec1
3
reference_url https://github.com/saleor/saleor/releases/tag/3.10.14
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/saleor/saleor/releases/tag/3.10.14
4
reference_url https://github.com/saleor/saleor/releases/tag/3.11.12
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/saleor/saleor/releases/tag/3.11.12
5
reference_url https://github.com/saleor/saleor/releases/tag/3.1.48
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/saleor/saleor/releases/tag/3.1.48
6
reference_url https://github.com/saleor/saleor/releases/tag/3.7.59
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/saleor/saleor/releases/tag/3.7.59
7
reference_url https://github.com/saleor/saleor/releases/tag/3.8.30
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/saleor/saleor/releases/tag/3.8.30
8
reference_url https://github.com/saleor/saleor/releases/tag/3.9.27
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/saleor/saleor/releases/tag/3.9.27
9
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-26051
reference_id CVE-2023-26051
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-26051
10
reference_url https://github.com/advisories/GHSA-r8qr-wwg3-2r85
reference_id GHSA-r8qr-wwg3-2r85
reference_type
scores
url https://github.com/advisories/GHSA-r8qr-wwg3-2r85
11
reference_url https://github.com/saleor/saleor/security/advisories/GHSA-r8qr-wwg3-2r85
reference_id GHSA-r8qr-wwg3-2r85
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/saleor/saleor/security/advisories/GHSA-r8qr-wwg3-2r85
fixed_packages
0
url pkg:pypi/saleor@3.8.30
purl pkg:pypi/saleor@3.8.30
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/saleor@3.8.30
1
url pkg:pypi/saleor@3.9.27
purl pkg:pypi/saleor@3.9.27
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/saleor@3.9.27
2
url pkg:pypi/saleor@3.10.14
purl pkg:pypi/saleor@3.10.14
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/saleor@3.10.14
3
url pkg:pypi/saleor@3.11.12
purl pkg:pypi/saleor@3.11.12
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/saleor@3.11.12
aliases CVE-2023-26051, GHSA-r8qr-wwg3-2r85
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-sxq3-egvv-1kdc
Fixing_vulnerabilities
Risk_score3.1
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:pypi/saleor@3.8.0