Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/66538?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/66538?format=api", "purl": "pkg:composer/froxlor/froxlor@2.0.22", "type": "composer", "namespace": "froxlor", "name": "froxlor", "version": "2.0.22", "qualifiers": {}, "subpath": "", "is_vulnerable": false, "next_non_vulnerable_version": "2.1.0-dev1", "latest_non_vulnerable_version": "2.3.4", "affected_by_vulnerabilities": [], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/46195?format=api", "vulnerability_id": "VCID-c7wv-3ymw-57b3", "summary": "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')\nCross-site Scripting (XSS) - Stored in GitHub repository froxlor/froxlor prior to 2.0.22.", "references": [ { "reference_url": "https://github.com/froxlor/froxlor/commit/4711a414360782fe4fc94f7c25027077cbcdf73d", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/froxlor/froxlor/commit/4711a414360782fe4fc94f7c25027077cbcdf73d" }, { "reference_url": "https://huntr.dev/bounties/babd73ca-6c80-4145-8c7d-33a883fe606b", "reference_id": "", "reference_type": "", "scores": [], "url": "https://huntr.dev/bounties/babd73ca-6c80-4145-8c7d-33a883fe606b" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-4829", "reference_id": "CVE-2023-4829", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-4829" }, { "reference_url": "https://github.com/advisories/GHSA-cvwv-h85m-w37h", "reference_id": "GHSA-cvwv-h85m-w37h", "reference_type": "", "scores": [], "url": "https://github.com/advisories/GHSA-cvwv-h85m-w37h" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/66538?format=api", "purl": "pkg:composer/froxlor/froxlor@2.0.22", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/froxlor/froxlor@2.0.22" } ], "aliases": [ "CVE-2023-4829", "GHSA-cvwv-h85m-w37h" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-c7wv-3ymw-57b3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/45827?format=api", "vulnerability_id": "VCID-ebs6-j85u-s3eg", "summary": "Froxlor vulnerable to business logic errors\nBusiness Logic Errors in GitHub repository froxlor/froxlor prior to 2.0.22", "references": [ { "reference_url": "https://github.com/froxlor/froxlor/commit/ce9a5f97a3edb30c7d33878765d3c014a6583597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/froxlor/froxlor/commit/ce9a5f97a3edb30c7d33878765d3c014a6583597" }, { "reference_url": "https://huntr.dev/bounties/59fe5037-b253-4b0f-be69-1d2e4af8b4a9", "reference_id": "", "reference_type": "", "scores": [], "url": "https://huntr.dev/bounties/59fe5037-b253-4b0f-be69-1d2e4af8b4a9" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-4304", "reference_id": "CVE-2023-4304", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-4304" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/66538?format=api", "purl": "pkg:composer/froxlor/froxlor@2.0.22", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/froxlor/froxlor@2.0.22" } ], "aliases": [ "CVE-2023-4304" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ebs6-j85u-s3eg" } ], "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/froxlor/froxlor@2.0.22" }