Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:composer/hhxsv5/laravel-s@3.7.36

Type composer

Namespace hhxsv5

Name laravel-s

Version 3.7.36

Qualifiers

Subpath

Is_vulnerable false

Next_non_vulnerable_version 3.7.36

Latest_non_vulnerable_version 3.7.36

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-3gd7-9n82-hfh7

vulnerability_id VCID-3gd7-9n82-hfh7

summary

laravel-s vulnerable to Local File Inclusion
laravel-s 3.7.35 is vulnerable to Local File Inclusion via /src/Illuminate/Laravel.php.

references

reference_url	https://github.com/hhxsv5/laravel-s/commit/05aa615527725f0b696da78ae4c7d3a5065bac6d
reference_id
reference_type
scores
url	https://github.com/hhxsv5/laravel-s/commit/05aa615527725f0b696da78ae4c7d3a5065bac6d

reference_url	https://github.com/hhxsv5/laravel-s/issues/437
reference_id
reference_type
scores
url	https://github.com/hhxsv5/laravel-s/issues/437

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2023-29931
reference_id	CVE-2023-29931
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2023-29931

reference_url	https://github.com/advisories/GHSA-q2fp-jw87-86px
reference_id	GHSA-q2fp-jw87-86px
reference_type
scores
url	https://github.com/advisories/GHSA-q2fp-jw87-86px

fixed_packages

url	pkg:composer/hhxsv5/laravel-s@3.7.36
purl	pkg:composer/hhxsv5/laravel-s@3.7.36
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:composer/hhxsv5/laravel-s@3.7.36

aliases CVE-2023-29931, GHSA-q2fp-jw87-86px

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3gd7-9n82-hfh7

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:composer/hhxsv5/laravel-s@3.7.36

Package Instance