Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/108951?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/108951?format=api", "vulnerability_id": "VCID-x7su-wxws-a3gz", "summary": "Elixir Plug Plug version All contains a Header Injection vulnerability in Connection that can result in Given a cookie value, Headers can be added. This attack appear to be exploitable via Crafting a value to be sent as a cookie. This vulnerability appears to have been fixed in >= 1.3.5 or ~> 1.2.5 or ~> 1.1.9 or ~> 1.0.6.", "aliases": [ { "alias": "CVE-2018-1000883" }, { "alias": "GHSA-9h73-w7ch-rh73" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/145142?format=api", "purl": "pkg:hex/plug@1.0.6", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@1.0.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/145143?format=api", "purl": "pkg:hex/plug@1.1.9", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@1.1.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/145144?format=api", "purl": "pkg:hex/plug@1.2.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@1.2.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/145146?format=api", "purl": "pkg:hex/plug@1.3.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@1.3.5" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/506733?format=api", "purl": "pkg:hex/plug@0.4.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ryv-jjw4-b7gh" }, { "vulnerability": "VCID-dp5c-pz39-ckhp" }, { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@0.4.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/506734?format=api", "purl": "pkg:hex/plug@0.4.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ryv-jjw4-b7gh" }, { "vulnerability": "VCID-dp5c-pz39-ckhp" }, { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@0.4.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/506735?format=api", "purl": "pkg:hex/plug@0.4.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ryv-jjw4-b7gh" }, { "vulnerability": "VCID-dp5c-pz39-ckhp" }, { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@0.4.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/506736?format=api", "purl": "pkg:hex/plug@0.4.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ryv-jjw4-b7gh" }, { "vulnerability": "VCID-dp5c-pz39-ckhp" }, { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@0.4.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/506737?format=api", "purl": "pkg:hex/plug@0.5.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ryv-jjw4-b7gh" }, { "vulnerability": "VCID-dp5c-pz39-ckhp" }, { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@0.5.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/506738?format=api", "purl": "pkg:hex/plug@0.5.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ryv-jjw4-b7gh" }, { "vulnerability": "VCID-dp5c-pz39-ckhp" }, { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@0.5.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/506739?format=api", "purl": "pkg:hex/plug@0.5.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ryv-jjw4-b7gh" }, { "vulnerability": "VCID-dp5c-pz39-ckhp" }, { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@0.5.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/506740?format=api", "purl": "pkg:hex/plug@0.5.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ryv-jjw4-b7gh" }, { "vulnerability": "VCID-dp5c-pz39-ckhp" }, { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@0.5.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/506741?format=api", "purl": "pkg:hex/plug@0.6.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ryv-jjw4-b7gh" }, { "vulnerability": "VCID-dp5c-pz39-ckhp" }, { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@0.6.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/506742?format=api", "purl": "pkg:hex/plug@0.7.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ryv-jjw4-b7gh" }, { "vulnerability": "VCID-dp5c-pz39-ckhp" }, { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@0.7.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/506743?format=api", "purl": "pkg:hex/plug@0.8.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ryv-jjw4-b7gh" }, { "vulnerability": "VCID-dp5c-pz39-ckhp" }, { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@0.8.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/506744?format=api", "purl": "pkg:hex/plug@0.8.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ryv-jjw4-b7gh" }, { "vulnerability": "VCID-dp5c-pz39-ckhp" }, { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@0.8.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/506745?format=api", "purl": "pkg:hex/plug@0.8.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ryv-jjw4-b7gh" }, { "vulnerability": "VCID-dp5c-pz39-ckhp" }, { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@0.8.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/506746?format=api", "purl": "pkg:hex/plug@0.8.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ryv-jjw4-b7gh" }, { "vulnerability": "VCID-dp5c-pz39-ckhp" }, { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@0.8.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/506747?format=api", "purl": "pkg:hex/plug@0.8.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ryv-jjw4-b7gh" }, { "vulnerability": "VCID-dp5c-pz39-ckhp" }, { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@0.8.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/506748?format=api", "purl": "pkg:hex/plug@0.9.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ryv-jjw4-b7gh" }, { "vulnerability": "VCID-dp5c-pz39-ckhp" }, { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@0.9.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/506749?format=api", "purl": "pkg:hex/plug@0.10.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ryv-jjw4-b7gh" }, { "vulnerability": "VCID-dp5c-pz39-ckhp" }, { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@0.10.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/506750?format=api", "purl": "pkg:hex/plug@0.11.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ryv-jjw4-b7gh" }, { "vulnerability": "VCID-dp5c-pz39-ckhp" }, { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@0.11.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/506751?format=api", "purl": "pkg:hex/plug@0.11.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ryv-jjw4-b7gh" }, { "vulnerability": "VCID-dp5c-pz39-ckhp" }, { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@0.11.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/506752?format=api", "purl": "pkg:hex/plug@0.11.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ryv-jjw4-b7gh" }, { "vulnerability": "VCID-dp5c-pz39-ckhp" }, { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@0.11.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/506753?format=api", "purl": "pkg:hex/plug@0.11.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ryv-jjw4-b7gh" }, { "vulnerability": "VCID-dp5c-pz39-ckhp" }, { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@0.11.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/506754?format=api", "purl": "pkg:hex/plug@0.12.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ryv-jjw4-b7gh" }, { "vulnerability": "VCID-dp5c-pz39-ckhp" }, { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@0.12.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/506755?format=api", "purl": "pkg:hex/plug@0.12.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ryv-jjw4-b7gh" }, { "vulnerability": "VCID-dp5c-pz39-ckhp" }, { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@0.12.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/506756?format=api", "purl": "pkg:hex/plug@0.12.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ryv-jjw4-b7gh" }, { "vulnerability": "VCID-dp5c-pz39-ckhp" }, { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@0.12.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/506757?format=api", "purl": "pkg:hex/plug@0.13.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ryv-jjw4-b7gh" }, { "vulnerability": "VCID-dp5c-pz39-ckhp" }, { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@0.13.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/506758?format=api", "purl": "pkg:hex/plug@0.13.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ryv-jjw4-b7gh" }, { "vulnerability": "VCID-dp5c-pz39-ckhp" }, { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@0.13.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/506759?format=api", "purl": "pkg:hex/plug@0.14.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ryv-jjw4-b7gh" }, { "vulnerability": "VCID-dp5c-pz39-ckhp" }, { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@0.14.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/506760?format=api", "purl": "pkg:hex/plug@1.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ryv-jjw4-b7gh" }, { "vulnerability": "VCID-dp5c-pz39-ckhp" }, { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@1.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/506761?format=api", "purl": "pkg:hex/plug@1.0.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ryv-jjw4-b7gh" }, { "vulnerability": "VCID-dp5c-pz39-ckhp" }, { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@1.0.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/506762?format=api", "purl": "pkg:hex/plug@1.0.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ryv-jjw4-b7gh" }, { "vulnerability": "VCID-dp5c-pz39-ckhp" }, { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@1.0.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/506763?format=api", "purl": "pkg:hex/plug@1.0.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ryv-jjw4-b7gh" }, { "vulnerability": "VCID-dp5c-pz39-ckhp" }, { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@1.0.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/145288?format=api", "purl": "pkg:hex/plug@1.0.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@1.0.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/506831?format=api", "purl": "pkg:hex/plug@1.0.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@1.0.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/506764?format=api", "purl": "pkg:hex/plug@1.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ryv-jjw4-b7gh" }, { "vulnerability": "VCID-dp5c-pz39-ckhp" }, { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@1.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/506765?format=api", "purl": "pkg:hex/plug@1.1.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ryv-jjw4-b7gh" }, { "vulnerability": "VCID-dp5c-pz39-ckhp" }, { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@1.1.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/506766?format=api", "purl": "pkg:hex/plug@1.1.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ryv-jjw4-b7gh" }, { "vulnerability": "VCID-dp5c-pz39-ckhp" }, { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@1.1.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/506767?format=api", "purl": "pkg:hex/plug@1.1.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ryv-jjw4-b7gh" }, { "vulnerability": "VCID-dp5c-pz39-ckhp" }, { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@1.1.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/506768?format=api", "purl": "pkg:hex/plug@1.1.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ryv-jjw4-b7gh" }, { "vulnerability": "VCID-dp5c-pz39-ckhp" }, { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@1.1.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/506769?format=api", "purl": "pkg:hex/plug@1.1.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ryv-jjw4-b7gh" }, { "vulnerability": "VCID-dp5c-pz39-ckhp" }, { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@1.1.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/506770?format=api", "purl": "pkg:hex/plug@1.1.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ryv-jjw4-b7gh" }, { "vulnerability": "VCID-dp5c-pz39-ckhp" }, { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@1.1.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/145289?format=api", "purl": "pkg:hex/plug@1.1.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@1.1.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/506832?format=api", "purl": "pkg:hex/plug@1.1.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@1.1.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/506771?format=api", "purl": "pkg:hex/plug@1.2.0-rc.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ryv-jjw4-b7gh" }, { "vulnerability": "VCID-dp5c-pz39-ckhp" }, { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@1.2.0-rc.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/506772?format=api", "purl": "pkg:hex/plug@1.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ryv-jjw4-b7gh" }, { "vulnerability": "VCID-dp5c-pz39-ckhp" }, { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@1.2.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/506773?format=api", "purl": "pkg:hex/plug@1.2.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ryv-jjw4-b7gh" }, { "vulnerability": "VCID-dp5c-pz39-ckhp" }, { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@1.2.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/506774?format=api", "purl": "pkg:hex/plug@1.2.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ryv-jjw4-b7gh" }, { "vulnerability": "VCID-dp5c-pz39-ckhp" }, { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@1.2.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/145290?format=api", "purl": "pkg:hex/plug@1.2.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@1.2.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/506833?format=api", "purl": "pkg:hex/plug@1.2.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@1.2.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/506775?format=api", "purl": "pkg:hex/plug@1.3.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ryv-jjw4-b7gh" }, { "vulnerability": "VCID-dp5c-pz39-ckhp" }, { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@1.3.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/506776?format=api", "purl": "pkg:hex/plug@1.3.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7ryv-jjw4-b7gh" }, { "vulnerability": "VCID-dp5c-pz39-ckhp" }, { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@1.3.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/145291?format=api", "purl": "pkg:hex/plug@1.3.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@1.3.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/506834?format=api", "purl": "pkg:hex/plug@1.3.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@1.3.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/506835?format=api", "purl": "pkg:hex/plug@1.3.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-x7su-wxws-a3gz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:hex/plug@1.3.4" } ], "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-1000883", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0025", "scoring_system": "epss", "scoring_elements": "0.485", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.0025", "scoring_system": "epss", "scoring_elements": "0.48494", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.0025", "scoring_system": "epss", "scoring_elements": "0.48431", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-1000883" }, { "reference_url": "https://github.com/dependabot/elixir-security-advisories/blob/master/packages/plug/2017-04-17.yml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/dependabot/elixir-security-advisories/blob/master/packages/plug/2017-04-17.yml" }, { "reference_url": "https://github.com/elixir-plug/plug", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/elixir-plug/plug" }, { "reference_url": "https://github.com/elixir-plug/plug/commit/8857f8ab4acf9b9c22e80480dae2636692f5f573", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/elixir-plug/plug/commit/8857f8ab4acf9b9c22e80480dae2636692f5f573" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1000883", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1000883" } ], "weaknesses": [ { "cwe_id": 20, "name": "Improper Input Validation", "description": "The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly." } ], "exploits": [], "severity_range_score": "4.0 - 6.9", "exploitability": "0.5", "weighted_severity": "6.2", "risk_score": 3.1, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-x7su-wxws-a3gz" }