Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-qf8a-r6sz-qqf7
SummaryGitPython is a python library used to interact with Git repositories. When resolving a program, Python/Windows look for the current working directory, and after that the PATH environment. GitPython defaults to use the `git` command, if a user runs GitPython from a repo has a `git.exe` or `git` executable, that program will be run instead of the one in the user's `PATH`. This is more of a problem on how Python interacts with Windows systems, Linux and any other OS aren't affected by this. But probably people using GitPython usually run it from the CWD of a repo. An attacker can trick a user to download a repository with a malicious `git` executable, if the user runs/imports GitPython from that directory, it allows the attacker to run any arbitrary commands. There is no fix currently available for windows users, however there are a few mitigations. 1: Default to an absolute path for the git program on Windows, like `C:\\Program Files\\Git\\cmd\\git.EXE` (default git path installation). 2: Require users to set the `GIT_PYTHON_GIT_EXECUTABLE` environment variable on Windows systems. 3: Make this problem prominent in the documentation and advise users to never run GitPython from an untrusted repo, or set the `GIT_PYTHON_GIT_EXECUTABLE` env var to an absolute path. 4: Resolve the executable manually by only looking into the `PATH` environment variable.
Aliases
0
alias CVE-2023-40590
1
alias GHSA-wfm5-v35h-vwf4
2
alias PYSEC-2023-161
Fixed_packages
0
url pkg:deb/debian/python-git@0?distro=trixie
purl pkg:deb/debian/python-git@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-git@0%3Fdistro=trixie
1
url pkg:deb/debian/python-git@3.1.14-1?distro=trixie
purl pkg:deb/debian/python-git@3.1.14-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-git@3.1.14-1%3Fdistro=trixie
2
url pkg:deb/debian/python-git@3.1.30-1%2Bdeb12u2?distro=trixie
purl pkg:deb/debian/python-git@3.1.30-1%2Bdeb12u2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-git@3.1.30-1%252Bdeb12u2%3Fdistro=trixie
3
url pkg:deb/debian/python-git@3.1.44-1?distro=trixie
purl pkg:deb/debian/python-git@3.1.44-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-git@3.1.44-1%3Fdistro=trixie
4
url pkg:deb/debian/python-git@3.1.46-1?distro=trixie
purl pkg:deb/debian/python-git@3.1.46-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-git@3.1.46-1%3Fdistro=trixie
5
url pkg:pypi/gitpython@3.1.33
purl pkg:pypi/gitpython@3.1.33
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-43fr-z5nf-cqax
1
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@3.1.33
Affected_packages
0
url pkg:pypi/gitpython@0.1.7
purl pkg:pypi/gitpython@0.1.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@0.1.7
1
url pkg:pypi/gitpython@0.2.0-beta1
purl pkg:pypi/gitpython@0.2.0-beta1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@0.2.0-beta1
2
url pkg:pypi/gitpython@0.2.0b1
purl pkg:pypi/gitpython@0.2.0b1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@0.2.0b1
3
url pkg:pypi/gitpython@0.3.0b1
purl pkg:pypi/gitpython@0.3.0b1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@0.3.0b1
4
url pkg:pypi/gitpython@0.3.0-beta1
purl pkg:pypi/gitpython@0.3.0-beta1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@0.3.0-beta1
5
url pkg:pypi/gitpython@0.3.0-beta2
purl pkg:pypi/gitpython@0.3.0-beta2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@0.3.0-beta2
6
url pkg:pypi/gitpython@0.3.0b2
purl pkg:pypi/gitpython@0.3.0b2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@0.3.0b2
7
url pkg:pypi/gitpython@0.3.1b2
purl pkg:pypi/gitpython@0.3.1b2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@0.3.1b2
8
url pkg:pypi/gitpython@0.3.1-beta2
purl pkg:pypi/gitpython@0.3.1-beta2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@0.3.1-beta2
9
url pkg:pypi/gitpython@0.3.2.RC1
purl pkg:pypi/gitpython@0.3.2.RC1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@0.3.2.RC1
10
url pkg:pypi/gitpython@0.3.2rc1
purl pkg:pypi/gitpython@0.3.2rc1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@0.3.2rc1
11
url pkg:pypi/gitpython@0.3.2
purl pkg:pypi/gitpython@0.3.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@0.3.2
12
url pkg:pypi/gitpython@0.3.2.1
purl pkg:pypi/gitpython@0.3.2.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@0.3.2.1
13
url pkg:pypi/gitpython@0.3.3
purl pkg:pypi/gitpython@0.3.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@0.3.3
14
url pkg:pypi/gitpython@0.3.4
purl pkg:pypi/gitpython@0.3.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@0.3.4
15
url pkg:pypi/gitpython@0.3.5
purl pkg:pypi/gitpython@0.3.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@0.3.5
16
url pkg:pypi/gitpython@0.3.6
purl pkg:pypi/gitpython@0.3.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@0.3.6
17
url pkg:pypi/gitpython@0.3.7
purl pkg:pypi/gitpython@0.3.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@0.3.7
18
url pkg:pypi/gitpython@1.0.0
purl pkg:pypi/gitpython@1.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@1.0.0
19
url pkg:pypi/gitpython@1.0.1
purl pkg:pypi/gitpython@1.0.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@1.0.1
20
url pkg:pypi/gitpython@1.0.2
purl pkg:pypi/gitpython@1.0.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@1.0.2
21
url pkg:pypi/gitpython@2.0.0
purl pkg:pypi/gitpython@2.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@2.0.0
22
url pkg:pypi/gitpython@2.0.1
purl pkg:pypi/gitpython@2.0.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@2.0.1
23
url pkg:pypi/gitpython@2.0.2
purl pkg:pypi/gitpython@2.0.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@2.0.2
24
url pkg:pypi/gitpython@2.0.3
purl pkg:pypi/gitpython@2.0.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@2.0.3
25
url pkg:pypi/gitpython@2.0.4
purl pkg:pypi/gitpython@2.0.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@2.0.4
26
url pkg:pypi/gitpython@2.0.5
purl pkg:pypi/gitpython@2.0.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@2.0.5
27
url pkg:pypi/gitpython@2.0.6
purl pkg:pypi/gitpython@2.0.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@2.0.6
28
url pkg:pypi/gitpython@2.0.7
purl pkg:pypi/gitpython@2.0.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@2.0.7
29
url pkg:pypi/gitpython@2.0.8
purl pkg:pypi/gitpython@2.0.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@2.0.8
30
url pkg:pypi/gitpython@2.0.9.dev0
purl pkg:pypi/gitpython@2.0.9.dev0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@2.0.9.dev0
31
url pkg:pypi/gitpython@2.0.9.dev1
purl pkg:pypi/gitpython@2.0.9.dev1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@2.0.9.dev1
32
url pkg:pypi/gitpython@2.0.9
purl pkg:pypi/gitpython@2.0.9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@2.0.9
33
url pkg:pypi/gitpython@2.1.0
purl pkg:pypi/gitpython@2.1.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@2.1.0
34
url pkg:pypi/gitpython@2.1.1
purl pkg:pypi/gitpython@2.1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@2.1.1
35
url pkg:pypi/gitpython@2.1.2
purl pkg:pypi/gitpython@2.1.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@2.1.2
36
url pkg:pypi/gitpython@2.1.3
purl pkg:pypi/gitpython@2.1.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@2.1.3
37
url pkg:pypi/gitpython@2.1.4
purl pkg:pypi/gitpython@2.1.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@2.1.4
38
url pkg:pypi/gitpython@2.1.5
purl pkg:pypi/gitpython@2.1.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@2.1.5
39
url pkg:pypi/gitpython@2.1.6
purl pkg:pypi/gitpython@2.1.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@2.1.6
40
url pkg:pypi/gitpython@2.1.7
purl pkg:pypi/gitpython@2.1.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@2.1.7
41
url pkg:pypi/gitpython@2.1.8
purl pkg:pypi/gitpython@2.1.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@2.1.8
42
url pkg:pypi/gitpython@2.1.9
purl pkg:pypi/gitpython@2.1.9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@2.1.9
43
url pkg:pypi/gitpython@2.1.10
purl pkg:pypi/gitpython@2.1.10
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@2.1.10
44
url pkg:pypi/gitpython@2.1.11
purl pkg:pypi/gitpython@2.1.11
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@2.1.11
45
url pkg:pypi/gitpython@2.1.12
purl pkg:pypi/gitpython@2.1.12
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@2.1.12
46
url pkg:pypi/gitpython@2.1.13
purl pkg:pypi/gitpython@2.1.13
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@2.1.13
47
url pkg:pypi/gitpython@2.1.14
purl pkg:pypi/gitpython@2.1.14
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@2.1.14
48
url pkg:pypi/gitpython@2.1.15
purl pkg:pypi/gitpython@2.1.15
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@2.1.15
49
url pkg:pypi/gitpython@3.0.0
purl pkg:pypi/gitpython@3.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@3.0.0
50
url pkg:pypi/gitpython@3.0.1
purl pkg:pypi/gitpython@3.0.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@3.0.1
51
url pkg:pypi/gitpython@3.0.2
purl pkg:pypi/gitpython@3.0.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@3.0.2
52
url pkg:pypi/gitpython@3.0.3
purl pkg:pypi/gitpython@3.0.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@3.0.3
53
url pkg:pypi/gitpython@3.0.4
purl pkg:pypi/gitpython@3.0.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@3.0.4
54
url pkg:pypi/gitpython@3.0.5
purl pkg:pypi/gitpython@3.0.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@3.0.5
55
url pkg:pypi/gitpython@3.0.6
purl pkg:pypi/gitpython@3.0.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@3.0.6
56
url pkg:pypi/gitpython@3.0.7
purl pkg:pypi/gitpython@3.0.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@3.0.7
57
url pkg:pypi/gitpython@3.0.8
purl pkg:pypi/gitpython@3.0.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@3.0.8
58
url pkg:pypi/gitpython@3.0.9
purl pkg:pypi/gitpython@3.0.9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@3.0.9
59
url pkg:pypi/gitpython@3.1.0
purl pkg:pypi/gitpython@3.1.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@3.1.0
60
url pkg:pypi/gitpython@3.1.1
purl pkg:pypi/gitpython@3.1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@3.1.1
61
url pkg:pypi/gitpython@3.1.2
purl pkg:pypi/gitpython@3.1.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@3.1.2
62
url pkg:pypi/gitpython@3.1.3
purl pkg:pypi/gitpython@3.1.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@3.1.3
63
url pkg:pypi/gitpython@3.1.4
purl pkg:pypi/gitpython@3.1.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@3.1.4
64
url pkg:pypi/gitpython@3.1.5
purl pkg:pypi/gitpython@3.1.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@3.1.5
65
url pkg:pypi/gitpython@3.1.6
purl pkg:pypi/gitpython@3.1.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@3.1.6
66
url pkg:pypi/gitpython@3.1.7
purl pkg:pypi/gitpython@3.1.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@3.1.7
67
url pkg:pypi/gitpython@3.1.8
purl pkg:pypi/gitpython@3.1.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@3.1.8
68
url pkg:pypi/gitpython@3.1.9
purl pkg:pypi/gitpython@3.1.9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@3.1.9
69
url pkg:pypi/gitpython@3.1.10
purl pkg:pypi/gitpython@3.1.10
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@3.1.10
70
url pkg:pypi/gitpython@3.1.11
purl pkg:pypi/gitpython@3.1.11
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@3.1.11
71
url pkg:pypi/gitpython@3.1.12
purl pkg:pypi/gitpython@3.1.12
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@3.1.12
72
url pkg:pypi/gitpython@3.1.13
purl pkg:pypi/gitpython@3.1.13
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@3.1.13
73
url pkg:pypi/gitpython@3.1.14
purl pkg:pypi/gitpython@3.1.14
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@3.1.14
74
url pkg:pypi/gitpython@3.1.15
purl pkg:pypi/gitpython@3.1.15
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@3.1.15
75
url pkg:pypi/gitpython@3.1.16
purl pkg:pypi/gitpython@3.1.16
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@3.1.16
76
url pkg:pypi/gitpython@3.1.17
purl pkg:pypi/gitpython@3.1.17
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@3.1.17
77
url pkg:pypi/gitpython@3.1.18
purl pkg:pypi/gitpython@3.1.18
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@3.1.18
78
url pkg:pypi/gitpython@3.1.19
purl pkg:pypi/gitpython@3.1.19
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@3.1.19
79
url pkg:pypi/gitpython@3.1.20
purl pkg:pypi/gitpython@3.1.20
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@3.1.20
80
url pkg:pypi/gitpython@3.1.22
purl pkg:pypi/gitpython@3.1.22
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@3.1.22
81
url pkg:pypi/gitpython@3.1.23
purl pkg:pypi/gitpython@3.1.23
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@3.1.23
82
url pkg:pypi/gitpython@3.1.24
purl pkg:pypi/gitpython@3.1.24
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@3.1.24
83
url pkg:pypi/gitpython@3.1.25
purl pkg:pypi/gitpython@3.1.25
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@3.1.25
84
url pkg:pypi/gitpython@3.1.26
purl pkg:pypi/gitpython@3.1.26
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@3.1.26
85
url pkg:pypi/gitpython@3.1.27
purl pkg:pypi/gitpython@3.1.27
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@3.1.27
86
url pkg:pypi/gitpython@3.1.28
purl pkg:pypi/gitpython@3.1.28
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@3.1.28
87
url pkg:pypi/gitpython@3.1.29
purl pkg:pypi/gitpython@3.1.29
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-dtjt-b2am-9fab
3
vulnerability VCID-qf8a-r6sz-qqf7
4
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@3.1.29
88
url pkg:pypi/gitpython@3.1.30
purl pkg:pypi/gitpython@3.1.30
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-qf8a-r6sz-qqf7
3
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@3.1.30
89
url pkg:pypi/gitpython@3.1.31
purl pkg:pypi/gitpython@3.1.31
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-16je-k2yd-jydf
1
vulnerability VCID-43fr-z5nf-cqax
2
vulnerability VCID-qf8a-r6sz-qqf7
3
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@3.1.31
90
url pkg:pypi/gitpython@3.1.32
purl pkg:pypi/gitpython@3.1.32
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-43fr-z5nf-cqax
1
vulnerability VCID-qf8a-r6sz-qqf7
2
vulnerability VCID-y786-mwkd-u7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/gitpython@3.1.32
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-40590.json
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-40590.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-40590
reference_id
reference_type
scores
0
value 0.00371
scoring_system epss
scoring_elements 0.58924
published_at 2026-04-16T12:55:00Z
1
value 0.00371
scoring_system epss
scoring_elements 0.58863
published_at 2026-04-02T12:55:00Z
2
value 0.00371
scoring_system epss
scoring_elements 0.58885
published_at 2026-04-04T12:55:00Z
3
value 0.00371
scoring_system epss
scoring_elements 0.58891
published_at 2026-04-13T12:55:00Z
4
value 0.00371
scoring_system epss
scoring_elements 0.58928
published_at 2026-04-11T12:55:00Z
5
value 0.00371
scoring_system epss
scoring_elements 0.58911
published_at 2026-04-12T12:55:00Z
6
value 0.00371
scoring_system epss
scoring_elements 0.58853
published_at 2026-04-07T12:55:00Z
7
value 0.00371
scoring_system epss
scoring_elements 0.58905
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-40590
2
reference_url https://docs.python.org/3/library/subprocess.html#popen-constructor
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value 8.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-10-02T14:04:30Z/
url https://docs.python.org/3/library/subprocess.html#popen-constructor
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://github.com/gitpython-developers/GitPython
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value 8.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/gitpython-developers/GitPython
5
reference_url https://github.com/gitpython-developers/GitPython/commit/8b75434e2c8a082cdeb4971cc6f0ee2bafec45bc
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value 8.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/gitpython-developers/GitPython/commit/8b75434e2c8a082cdeb4971cc6f0ee2bafec45bc
6
reference_url https://github.com/gitpython-developers/GitPython/issues/1635
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value 8.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/gitpython-developers/GitPython/issues/1635
7
reference_url https://github.com/gitpython-developers/GitPython/pull/1636
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value 8.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/gitpython-developers/GitPython/pull/1636
8
reference_url https://github.com/gitpython-developers/GitPython/releases/tag/3.1.33
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value 8.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/gitpython-developers/GitPython/releases/tag/3.1.33
9
reference_url https://github.com/gitpython-developers/GitPython/security/advisories/GHSA-wfm5-v35h-vwf4
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
2
value 8.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
3
value HIGH
scoring_system generic_textual
scoring_elements
4
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-10-02T14:04:30Z/
url https://github.com/gitpython-developers/GitPython/security/advisories/GHSA-wfm5-v35h-vwf4
10
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/gitpython/PYSEC-2023-161.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value 8.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/gitpython/PYSEC-2023-161.yaml
11
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2235871
reference_id 2235871
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2235871
12
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-40590
reference_id CVE-2023-40590
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value 8.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-40590
13
reference_url https://github.com/advisories/GHSA-wfm5-v35h-vwf4
reference_id GHSA-wfm5-v35h-vwf4
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-wfm5-v35h-vwf4
Weaknesses
0
cwe_id 426
name Untrusted Search Path
description The product searches for critical resources using an externally-supplied search path that can point to resources that are not under the product's direct control.
1
cwe_id 937
name OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.
2
cwe_id 1035
name OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.
Exploits
Severity_range_score7.0 - 8.9
Exploitability0.5
Weighted_severity8.0
Risk_score4.0
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-qf8a-r6sz-qqf7