Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/65959?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/65959?format=api", "purl": "pkg:npm/sweetalert2@11.22.4", "type": "npm", "namespace": "", "name": "sweetalert2", "version": "11.22.4", "qualifiers": {}, "subpath": "", "is_vulnerable": false, "next_non_vulnerable_version": "11.22.4", "latest_non_vulnerable_version": "11.22.4", "affected_by_vulnerabilities": [], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/45595?format=api", "vulnerability_id": "VCID-tzn4-zs4s-wua6", "summary": "sweetalert2 contains potentially undesirable behavior\n`sweetalert2` versions from 11.6.14 to before 11.22.4 have potentially undesirable behavior. The package outputs audio and/or video messages that do not pertain to the functionality of the package when run on specific tlds. This functionality is documented on the project's readme.", "references": [ { "reference_url": "https://github.com/sweetalert2/sweetalert2", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/sweetalert2/sweetalert2" }, { "reference_url": "https://github.com/sweetalert2/sweetalert2/commit/7de85db5c76ba3ef5f0cdbc335bbc4a7c559e012", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/sweetalert2/sweetalert2/commit/7de85db5c76ba3ef5f0cdbc335bbc4a7c559e012" }, { "reference_url": "https://github.com/sweetalert2/sweetalert2#important-notice-about-usage-of-this-software-for-ru-su-by-and-%D1%80%D1%84-domain-zones", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/sweetalert2/sweetalert2#important-notice-about-usage-of-this-software-for-ru-su-by-and-%D1%80%D1%84-domain-zones" }, { "reference_url": "https://github.com/sweetalert2/sweetalert2/pull/2847", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/sweetalert2/sweetalert2/pull/2847" }, { "reference_url": "https://github.com/sweetalert2/sweetalert2/releases/tag/v11.4.9", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/sweetalert2/sweetalert2/releases/tag/v11.4.9" }, { "reference_url": "https://github.com/sweetalert2/sweetalert2/tree/6d02e1095e5d9db1dfa7f0708df6fa13a1b32be3#important-notice-about-usage-of-this-software-for-ru-su-and-%D1%80%D1%84-domain-zones", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/sweetalert2/sweetalert2/tree/6d02e1095e5d9db1dfa7f0708df6fa13a1b32be3#important-notice-about-usage-of-this-software-for-ru-su-and-%D1%80%D1%84-domain-zones" }, { "reference_url": "https://www.npmjs.com/package/sweetalert2", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.npmjs.com/package/sweetalert2" }, { "reference_url": "https://github.com/advisories/GHSA-mrr8-v49w-3333", "reference_id": "GHSA-mrr8-v49w-3333", "reference_type": "", "scores": [], "url": "https://github.com/advisories/GHSA-mrr8-v49w-3333" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/65959?format=api", "purl": "pkg:npm/sweetalert2@11.22.4", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/sweetalert2@11.22.4" } ], "aliases": [ "GHSA-mrr8-v49w-3333", "GMS-2023-1887" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tzn4-zs4s-wua6" } ], "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/sweetalert2@11.22.4" }