Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/2163?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/2163?format=api", "vulnerability_id": "VCID-ardj-zyxg-9ued", "summary": "arbitrary code execution", "aliases": [ { "alias": "CVE-2018-7600" }, { "alias": "GHSA-7fh9-933g-885p" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1063?format=api", "purl": "pkg:alpm/archlinux/drupal@8.5.1-1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/drupal@8.5.1-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/389953?format=api", "purl": "pkg:apk/alpine/drupal7@7.58-r0?arch=aarch64&distroversion=v3.14&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/drupal7@7.58-r0%3Farch=aarch64&distroversion=v3.14&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/405651?format=api", "purl": "pkg:apk/alpine/drupal7@7.58-r0?arch=aarch64&distroversion=v3.18&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/drupal7@7.58-r0%3Farch=aarch64&distroversion=v3.18&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/406828?format=api", "purl": "pkg:apk/alpine/drupal7@7.58-r0?arch=aarch64&distroversion=v3.19&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/drupal7@7.58-r0%3Farch=aarch64&distroversion=v3.19&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/389954?format=api", "purl": "pkg:apk/alpine/drupal7@7.58-r0?arch=armhf&distroversion=v3.14&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/drupal7@7.58-r0%3Farch=armhf&distroversion=v3.14&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/405652?format=api", "purl": "pkg:apk/alpine/drupal7@7.58-r0?arch=armhf&distroversion=v3.18&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/drupal7@7.58-r0%3Farch=armhf&distroversion=v3.18&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/406829?format=api", "purl": "pkg:apk/alpine/drupal7@7.58-r0?arch=armhf&distroversion=v3.19&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/drupal7@7.58-r0%3Farch=armhf&distroversion=v3.19&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/389955?format=api", "purl": "pkg:apk/alpine/drupal7@7.58-r0?arch=armv7&distroversion=v3.14&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/drupal7@7.58-r0%3Farch=armv7&distroversion=v3.14&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/405653?format=api", "purl": "pkg:apk/alpine/drupal7@7.58-r0?arch=armv7&distroversion=v3.18&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/drupal7@7.58-r0%3Farch=armv7&distroversion=v3.18&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/406830?format=api", "purl": "pkg:apk/alpine/drupal7@7.58-r0?arch=armv7&distroversion=v3.19&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/drupal7@7.58-r0%3Farch=armv7&distroversion=v3.19&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/389956?format=api", "purl": "pkg:apk/alpine/drupal7@7.58-r0?arch=ppc64le&distroversion=v3.14&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/drupal7@7.58-r0%3Farch=ppc64le&distroversion=v3.14&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/405654?format=api", "purl": "pkg:apk/alpine/drupal7@7.58-r0?arch=ppc64le&distroversion=v3.18&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/drupal7@7.58-r0%3Farch=ppc64le&distroversion=v3.18&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/406831?format=api", "purl": "pkg:apk/alpine/drupal7@7.58-r0?arch=ppc64le&distroversion=v3.19&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/drupal7@7.58-r0%3Farch=ppc64le&distroversion=v3.19&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/389957?format=api", "purl": "pkg:apk/alpine/drupal7@7.58-r0?arch=s390x&distroversion=v3.14&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/drupal7@7.58-r0%3Farch=s390x&distroversion=v3.14&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/405655?format=api", "purl": "pkg:apk/alpine/drupal7@7.58-r0?arch=s390x&distroversion=v3.18&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/drupal7@7.58-r0%3Farch=s390x&distroversion=v3.18&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/406832?format=api", "purl": "pkg:apk/alpine/drupal7@7.58-r0?arch=s390x&distroversion=v3.19&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/drupal7@7.58-r0%3Farch=s390x&distroversion=v3.19&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/389959?format=api", "purl": "pkg:apk/alpine/drupal7@7.58-r0?arch=x86_64&distroversion=v3.14&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/drupal7@7.58-r0%3Farch=x86_64&distroversion=v3.14&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/405657?format=api", "purl": "pkg:apk/alpine/drupal7@7.58-r0?arch=x86_64&distroversion=v3.18&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/drupal7@7.58-r0%3Farch=x86_64&distroversion=v3.18&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/406834?format=api", "purl": "pkg:apk/alpine/drupal7@7.58-r0?arch=x86_64&distroversion=v3.19&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/drupal7@7.58-r0%3Farch=x86_64&distroversion=v3.19&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/389958?format=api", "purl": "pkg:apk/alpine/drupal7@7.58-r0?arch=x86&distroversion=v3.14&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/drupal7@7.58-r0%3Farch=x86&distroversion=v3.14&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/405656?format=api", "purl": "pkg:apk/alpine/drupal7@7.58-r0?arch=x86&distroversion=v3.18&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/drupal7@7.58-r0%3Farch=x86&distroversion=v3.18&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/406833?format=api", "purl": "pkg:apk/alpine/drupal7@7.58-r0?arch=x86&distroversion=v3.19&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/drupal7@7.58-r0%3Farch=x86&distroversion=v3.19&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/282121?format=api", "purl": "pkg:apk/alpine/drupal7@7.58-r0?arch=aarch64&distroversion=v3.6&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/drupal7@7.58-r0%3Farch=aarch64&distroversion=v3.6&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/248925?format=api", "purl": "pkg:apk/alpine/drupal7@7.58-r0?arch=aarch64&distroversion=v3.7&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/drupal7@7.58-r0%3Farch=aarch64&distroversion=v3.7&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/279401?format=api", "purl": "pkg:apk/alpine/drupal7@7.58-r0?arch=aarch64&distroversion=v3.8&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/drupal7@7.58-r0%3Farch=aarch64&distroversion=v3.8&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/282122?format=api", "purl": "pkg:apk/alpine/drupal7@7.58-r0?arch=armhf&distroversion=v3.6&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/drupal7@7.58-r0%3Farch=armhf&distroversion=v3.6&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/248926?format=api", "purl": "pkg:apk/alpine/drupal7@7.58-r0?arch=armhf&distroversion=v3.7&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/drupal7@7.58-r0%3Farch=armhf&distroversion=v3.7&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/279402?format=api", "purl": "pkg:apk/alpine/drupal7@7.58-r0?arch=armhf&distroversion=v3.8&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/drupal7@7.58-r0%3Farch=armhf&distroversion=v3.8&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/282123?format=api", "purl": "pkg:apk/alpine/drupal7@7.58-r0?arch=ppc64le&distroversion=v3.6&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/drupal7@7.58-r0%3Farch=ppc64le&distroversion=v3.6&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/248927?format=api", "purl": "pkg:apk/alpine/drupal7@7.58-r0?arch=ppc64le&distroversion=v3.7&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/drupal7@7.58-r0%3Farch=ppc64le&distroversion=v3.7&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/279403?format=api", "purl": "pkg:apk/alpine/drupal7@7.58-r0?arch=ppc64le&distroversion=v3.8&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/drupal7@7.58-r0%3Farch=ppc64le&distroversion=v3.8&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/282124?format=api", "purl": "pkg:apk/alpine/drupal7@7.58-r0?arch=s390x&distroversion=v3.6&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/drupal7@7.58-r0%3Farch=s390x&distroversion=v3.6&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/248928?format=api", "purl": "pkg:apk/alpine/drupal7@7.58-r0?arch=s390x&distroversion=v3.7&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/drupal7@7.58-r0%3Farch=s390x&distroversion=v3.7&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/279404?format=api", "purl": "pkg:apk/alpine/drupal7@7.58-r0?arch=s390x&distroversion=v3.8&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/drupal7@7.58-r0%3Farch=s390x&distroversion=v3.8&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/282126?format=api", "purl": "pkg:apk/alpine/drupal7@7.58-r0?arch=x86_64&distroversion=v3.6&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/drupal7@7.58-r0%3Farch=x86_64&distroversion=v3.6&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/248930?format=api", "purl": "pkg:apk/alpine/drupal7@7.58-r0?arch=x86_64&distroversion=v3.7&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/drupal7@7.58-r0%3Farch=x86_64&distroversion=v3.7&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/279406?format=api", "purl": "pkg:apk/alpine/drupal7@7.58-r0?arch=x86_64&distroversion=v3.8&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/drupal7@7.58-r0%3Farch=x86_64&distroversion=v3.8&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/282125?format=api", "purl": "pkg:apk/alpine/drupal7@7.58-r0?arch=x86&distroversion=v3.6&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/drupal7@7.58-r0%3Farch=x86&distroversion=v3.6&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/248929?format=api", "purl": "pkg:apk/alpine/drupal7@7.58-r0?arch=x86&distroversion=v3.7&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/drupal7@7.58-r0%3Farch=x86&distroversion=v3.7&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/279405?format=api", "purl": "pkg:apk/alpine/drupal7@7.58-r0?arch=x86&distroversion=v3.8&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/drupal7@7.58-r0%3Farch=x86&distroversion=v3.8&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/61931?format=api", "purl": "pkg:composer/drupal/core@8.3.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-163u-tpj9-skc5" }, { "vulnerability": "VCID-1jfe-j1fz-juec" }, { "vulnerability": "VCID-5txj-xsnq-ducf" }, { "vulnerability": "VCID-757r-nv73-gfhg" }, { "vulnerability": "VCID-7qhc-n6hc-ukbu" }, { "vulnerability": "VCID-9ux4-434v-jbb9" }, { "vulnerability": "VCID-j545-f44v-w3cn" }, { "vulnerability": "VCID-nfzm-eyht-kkb1" }, { "vulnerability": "VCID-re2h-u5bk-wqbw" }, { "vulnerability": "VCID-svhr-wt5d-xbbq" }, { "vulnerability": "VCID-vby4-6r8z-6qgy" }, { "vulnerability": "VCID-yy7m-f66v-fbhz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/drupal/core@8.3.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/61932?format=api", "purl": "pkg:composer/drupal/core@8.4.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-163u-tpj9-skc5" }, { "vulnerability": "VCID-1jfe-j1fz-juec" }, { "vulnerability": "VCID-5txj-xsnq-ducf" }, { "vulnerability": "VCID-757r-nv73-gfhg" }, { "vulnerability": "VCID-7qhc-n6hc-ukbu" }, { "vulnerability": "VCID-9ux4-434v-jbb9" }, { "vulnerability": "VCID-j545-f44v-w3cn" }, { "vulnerability": "VCID-nfzm-eyht-kkb1" }, { "vulnerability": "VCID-re2h-u5bk-wqbw" }, { "vulnerability": "VCID-svhr-wt5d-xbbq" }, { "vulnerability": "VCID-vby4-6r8z-6qgy" }, { "vulnerability": "VCID-yy7m-f66v-fbhz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/drupal/core@8.4.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/61933?format=api", "purl": "pkg:composer/drupal/core@8.5.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-163u-tpj9-skc5" }, { "vulnerability": "VCID-1jfe-j1fz-juec" }, { "vulnerability": "VCID-5txj-xsnq-ducf" }, { "vulnerability": "VCID-757r-nv73-gfhg" }, { "vulnerability": "VCID-795n-caf2-fbcq" }, { "vulnerability": "VCID-7qhc-n6hc-ukbu" }, { "vulnerability": "VCID-9ux4-434v-jbb9" }, { "vulnerability": "VCID-h6c2-e5qv-myg8" }, { "vulnerability": "VCID-j545-f44v-w3cn" }, { "vulnerability": "VCID-nfzm-eyht-kkb1" }, { "vulnerability": "VCID-re2h-u5bk-wqbw" }, { "vulnerability": "VCID-svhr-wt5d-xbbq" }, { "vulnerability": "VCID-vby4-6r8z-6qgy" }, { "vulnerability": "VCID-yy7m-f66v-fbhz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/drupal/core@8.5.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/61782?format=api", "purl": "pkg:composer/drupal/drupal@8.3.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2yyq-kyeu-uufc" }, { "vulnerability": "VCID-5txj-xsnq-ducf" }, { "vulnerability": "VCID-7qhc-n6hc-ukbu" }, { "vulnerability": "VCID-bhyk-vjnk-e3af" }, { "vulnerability": "VCID-crny-qmhc-tqfm" }, { "vulnerability": "VCID-j545-f44v-w3cn" }, { "vulnerability": "VCID-p6q6-apzp-pbbh" }, { "vulnerability": "VCID-qdwc-2mrq-6qgk" }, { "vulnerability": "VCID-svhr-wt5d-xbbq" }, { "vulnerability": "VCID-ukc1-s92n-yydh" }, { "vulnerability": "VCID-yy7m-f66v-fbhz" }, { "vulnerability": "VCID-zd4q-kddb-t3ha" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/drupal/drupal@8.3.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/61783?format=api", "purl": "pkg:composer/drupal/drupal@8.4.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2yyq-kyeu-uufc" }, { "vulnerability": "VCID-5txj-xsnq-ducf" }, { "vulnerability": "VCID-7qhc-n6hc-ukbu" }, { "vulnerability": "VCID-bhyk-vjnk-e3af" }, { "vulnerability": "VCID-crny-qmhc-tqfm" }, { "vulnerability": "VCID-j545-f44v-w3cn" }, { "vulnerability": "VCID-p6q6-apzp-pbbh" }, { "vulnerability": "VCID-qdwc-2mrq-6qgk" }, { "vulnerability": "VCID-svhr-wt5d-xbbq" }, { "vulnerability": "VCID-ukc1-s92n-yydh" }, { "vulnerability": "VCID-yy7m-f66v-fbhz" }, { "vulnerability": "VCID-zd4q-kddb-t3ha" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/drupal/drupal@8.4.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/61784?format=api", "purl": "pkg:composer/drupal/drupal@8.5.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2yyq-kyeu-uufc" }, { "vulnerability": "VCID-5txj-xsnq-ducf" }, { "vulnerability": "VCID-7qhc-n6hc-ukbu" }, { "vulnerability": "VCID-bhyk-vjnk-e3af" }, { "vulnerability": "VCID-crny-qmhc-tqfm" }, { "vulnerability": "VCID-h6c2-e5qv-myg8" }, { "vulnerability": "VCID-j545-f44v-w3cn" }, { "vulnerability": "VCID-p6q6-apzp-pbbh" }, { "vulnerability": "VCID-qdwc-2mrq-6qgk" }, { "vulnerability": "VCID-svhr-wt5d-xbbq" }, { "vulnerability": "VCID-ukc1-s92n-yydh" }, { "vulnerability": "VCID-yy7m-f66v-fbhz" }, { "vulnerability": "VCID-zd4q-kddb-t3ha" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/drupal/drupal@8.5.1" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1062?format=api", "purl": "pkg:alpm/archlinux/drupal@8.5.0-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ardj-zyxg-9ued" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/drupal@8.5.0-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/51564?format=api", "purl": "pkg:composer/drupal/core@7.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-163u-tpj9-skc5" }, { "vulnerability": "VCID-1xsh-7f63-v3df" }, { "vulnerability": "VCID-3x3y-uf5e-m7hw" }, { "vulnerability": "VCID-4zg8-2vm9-ubch" }, { "vulnerability": "VCID-55x9-nh66-1qh5" }, { "vulnerability": "VCID-5821-1xss-8fdu" }, { "vulnerability": "VCID-6v3q-vxwh-wyd3" }, { "vulnerability": "VCID-73wt-yx56-tqd4" }, { "vulnerability": "VCID-757r-nv73-gfhg" }, { "vulnerability": "VCID-795n-caf2-fbcq" }, { "vulnerability": "VCID-7qhc-n6hc-ukbu" }, { "vulnerability": "VCID-9bsd-gqyd-cuh5" }, { "vulnerability": "VCID-ardj-zyxg-9ued" }, { "vulnerability": "VCID-bxh1-7fvj-zybm" }, { "vulnerability": "VCID-c6xh-peyj-7baj" }, { "vulnerability": "VCID-ddmy-kcmb-s7g7" }, { "vulnerability": "VCID-ezsv-96h9-x3ah" }, { "vulnerability": "VCID-fbqa-6fpw-kyg9" }, { "vulnerability": "VCID-g6px-rqtp-vqev" }, { "vulnerability": "VCID-gaay-gs4k-5fba" }, { "vulnerability": "VCID-gt4j-am1s-ckan" }, { "vulnerability": "VCID-gvey-a924-8qhf" }, { "vulnerability": "VCID-h6c2-e5qv-myg8" }, { "vulnerability": "VCID-j1yc-pqhw-pbh1" }, { "vulnerability": "VCID-j545-f44v-w3cn" }, { "vulnerability": "VCID-jgec-wuca-bbf1" }, { "vulnerability": "VCID-ksza-1wkb-hug6" }, { "vulnerability": "VCID-n2z8-yesj-9bea" }, { "vulnerability": "VCID-nqz7-ej49-ckay" }, { "vulnerability": "VCID-pyjy-13mt-cyck" }, { "vulnerability": "VCID-re2h-u5bk-wqbw" }, { "vulnerability": "VCID-swh1-rvuw-jqfx" }, { "vulnerability": "VCID-vbkh-vghp-qqht" }, { "vulnerability": "VCID-yy7m-f66v-fbhz" }, { "vulnerability": "VCID-ze3s-89wm-2kg2" }, { "vulnerability": "VCID-zw77-b3nt-gbag" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/drupal/core@7.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/51568?format=api", "purl": "pkg:composer/drupal/core@8.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13ef-6vth-nugg" }, { "vulnerability": "VCID-163u-tpj9-skc5" }, { "vulnerability": "VCID-1jfe-j1fz-juec" }, { "vulnerability": "VCID-1jvt-6dac-7qc5" }, { "vulnerability": "VCID-1unn-dn56-vufe" }, { "vulnerability": "VCID-1xsh-7f63-v3df" }, { "vulnerability": "VCID-2bnn-1wmq-ckdd" }, { "vulnerability": "VCID-3k2a-rajw-87cb" }, { "vulnerability": "VCID-3x3y-uf5e-m7hw" }, { "vulnerability": "VCID-49e1-axzk-3bdq" }, { "vulnerability": "VCID-4p5n-ujzt-qfdx" }, { "vulnerability": "VCID-4un9-k6n8-nffu" }, { "vulnerability": "VCID-51ze-a1zm-ukey" }, { "vulnerability": "VCID-55x9-nh66-1qh5" }, { "vulnerability": "VCID-5821-1xss-8fdu" }, { "vulnerability": "VCID-5txj-xsnq-ducf" }, { "vulnerability": "VCID-757r-nv73-gfhg" }, { "vulnerability": "VCID-7kzf-7csh-wkds" }, { "vulnerability": "VCID-7qhc-n6hc-ukbu" }, { "vulnerability": "VCID-8fxw-fw46-yuar" }, { "vulnerability": "VCID-9bsd-gqyd-cuh5" }, { "vulnerability": "VCID-9ju9-nhf2-wfbe" }, { "vulnerability": "VCID-9ux4-434v-jbb9" }, { "vulnerability": "VCID-ardj-zyxg-9ued" }, { "vulnerability": "VCID-az1b-uzab-jqdh" }, { "vulnerability": "VCID-b2x6-54c3-jqa2" }, { "vulnerability": "VCID-bnw7-px2h-ubha" }, { "vulnerability": "VCID-cfty-fvf7-3kcx" }, { "vulnerability": "VCID-d173-npte-yqdt" }, { "vulnerability": "VCID-dhzk-3ek4-2uf8" }, { "vulnerability": "VCID-e8mp-5awh-eybz" }, { "vulnerability": "VCID-ejt8-umuh-g7e7" }, { "vulnerability": "VCID-ezsv-96h9-x3ah" }, { "vulnerability": "VCID-f687-ubdn-37en" }, { "vulnerability": "VCID-fmc9-t9a1-5fcx" }, { "vulnerability": "VCID-fmyh-mnq6-uyb9" }, { "vulnerability": "VCID-fx6n-du84-yya2" }, { "vulnerability": "VCID-fy43-ubmr-pfhu" }, { "vulnerability": "VCID-g3u3-6dza-gkg7" }, { "vulnerability": "VCID-g6px-rqtp-vqev" }, { "vulnerability": "VCID-gr7c-tbh9-ayh6" }, { "vulnerability": "VCID-h93x-dbpr-q7cz" }, { "vulnerability": "VCID-hz2k-at38-wbeb" }, { "vulnerability": "VCID-j1yc-pqhw-pbh1" }, { "vulnerability": "VCID-j2g3-u36y-nqdv" }, { "vulnerability": "VCID-j4r9-8g22-vydm" }, { "vulnerability": "VCID-j545-f44v-w3cn" }, { "vulnerability": "VCID-j59x-5swn-fuga" }, { "vulnerability": "VCID-j7zf-w99n-nfcf" }, { "vulnerability": "VCID-jgec-wuca-bbf1" }, { "vulnerability": "VCID-jyzy-3fjs-b3fs" }, { "vulnerability": "VCID-kd54-616n-wbcw" }, { "vulnerability": "VCID-ksza-1wkb-hug6" }, { "vulnerability": "VCID-ktfj-va32-2kbe" }, { "vulnerability": "VCID-mhcb-rdtq-sufx" }, { "vulnerability": "VCID-n6tq-72g7-afdg" }, { "vulnerability": "VCID-nf7d-x5nj-d3dc" }, { "vulnerability": "VCID-nfzm-eyht-kkb1" }, { "vulnerability": "VCID-ngmk-qxmz-gkdz" }, { "vulnerability": "VCID-nqz7-ej49-ckay" }, { "vulnerability": "VCID-nszv-9z68-bqeu" }, { "vulnerability": "VCID-pbqh-x6zw-duhn" }, { "vulnerability": "VCID-phkw-q4nd-m7hh" }, { "vulnerability": "VCID-pyjy-13mt-cyck" }, { "vulnerability": "VCID-pyqg-gfn8-vqag" }, { "vulnerability": "VCID-qf91-4h5f-fuhv" }, { "vulnerability": "VCID-qwwz-5n8j-9ben" }, { "vulnerability": "VCID-re2h-u5bk-wqbw" }, { "vulnerability": "VCID-s6ek-bjnx-9fc1" }, { "vulnerability": "VCID-s8d1-k9q4-nkds" }, { "vulnerability": "VCID-sbnt-qndd-xubz" }, { "vulnerability": "VCID-svhr-wt5d-xbbq" }, { "vulnerability": "VCID-swh1-rvuw-jqfx" }, { "vulnerability": "VCID-ta2u-bd9e-nfc7" }, { "vulnerability": "VCID-tv1h-9yxp-ryap" }, { "vulnerability": "VCID-txkf-hpah-r3hu" }, { "vulnerability": "VCID-ty8g-qrbm-cuf3" }, { "vulnerability": "VCID-unh6-xwtu-mkbt" }, { "vulnerability": "VCID-v2h1-1cfd-muft" }, { "vulnerability": "VCID-vbkh-vghp-qqht" }, { "vulnerability": "VCID-vby4-6r8z-6qgy" }, { "vulnerability": "VCID-vtwk-c1zr-jue5" }, { "vulnerability": "VCID-vzwv-ueuz-myar" }, { "vulnerability": "VCID-w85b-dws8-uyf1" }, { "vulnerability": "VCID-w9xe-83yw-mbhy" }, { "vulnerability": "VCID-yb9a-1mp4-1kcz" }, { "vulnerability": "VCID-yy7m-f66v-fbhz" }, { "vulnerability": "VCID-z833-upr5-4ug5" }, { "vulnerability": "VCID-zhxf-bmyy-wff6" }, { "vulnerability": "VCID-zw77-b3nt-gbag" }, { "vulnerability": "VCID-zye6-b5h4-kqch" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/drupal/core@8.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/61929?format=api", "purl": "pkg:composer/drupal/core@8.4.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-163u-tpj9-skc5" }, { "vulnerability": "VCID-1jfe-j1fz-juec" }, { "vulnerability": "VCID-51ze-a1zm-ukey" }, { "vulnerability": "VCID-5txj-xsnq-ducf" }, { "vulnerability": "VCID-757r-nv73-gfhg" }, { "vulnerability": "VCID-7qhc-n6hc-ukbu" }, { "vulnerability": "VCID-9ux4-434v-jbb9" }, { "vulnerability": "VCID-ardj-zyxg-9ued" }, { "vulnerability": "VCID-fx6n-du84-yya2" }, { "vulnerability": "VCID-j545-f44v-w3cn" }, { "vulnerability": "VCID-j7zf-w99n-nfcf" }, { "vulnerability": "VCID-kd54-616n-wbcw" }, { "vulnerability": "VCID-nfzm-eyht-kkb1" }, { "vulnerability": "VCID-re2h-u5bk-wqbw" }, { "vulnerability": "VCID-svhr-wt5d-xbbq" }, { "vulnerability": "VCID-ty8g-qrbm-cuf3" }, { "vulnerability": "VCID-unh6-xwtu-mkbt" }, { "vulnerability": "VCID-v2h1-1cfd-muft" }, { "vulnerability": "VCID-vby4-6r8z-6qgy" }, { "vulnerability": "VCID-yy7m-f66v-fbhz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/drupal/core@8.4.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/54354?format=api", "purl": "pkg:composer/drupal/core@8.5.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-163u-tpj9-skc5" }, { "vulnerability": "VCID-1jfe-j1fz-juec" }, { "vulnerability": "VCID-51ze-a1zm-ukey" }, { "vulnerability": "VCID-5txj-xsnq-ducf" }, { "vulnerability": "VCID-757r-nv73-gfhg" }, { "vulnerability": "VCID-795n-caf2-fbcq" }, { "vulnerability": "VCID-7qhc-n6hc-ukbu" }, { "vulnerability": "VCID-9ux4-434v-jbb9" }, { "vulnerability": "VCID-ardj-zyxg-9ued" }, { "vulnerability": "VCID-h6c2-e5qv-myg8" }, { "vulnerability": "VCID-j545-f44v-w3cn" }, { "vulnerability": "VCID-nfzm-eyht-kkb1" }, { "vulnerability": "VCID-nqz7-ej49-ckay" }, { "vulnerability": "VCID-re2h-u5bk-wqbw" }, { "vulnerability": "VCID-svhr-wt5d-xbbq" }, { "vulnerability": "VCID-vby4-6r8z-6qgy" }, { "vulnerability": "VCID-yy7m-f66v-fbhz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/drupal/core@8.5.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/55775?format=api", "purl": "pkg:composer/drupal/drupal@7.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1xsh-7f63-v3df" }, { "vulnerability": "VCID-4yqy-eqn7-wkcf" }, { "vulnerability": "VCID-5821-1xss-8fdu" }, { "vulnerability": "VCID-7qhc-n6hc-ukbu" }, { "vulnerability": "VCID-99sr-urzq-8few" }, { "vulnerability": "VCID-ardj-zyxg-9ued" }, { "vulnerability": "VCID-bxh1-7fvj-zybm" }, { "vulnerability": "VCID-c6xh-peyj-7baj" }, { "vulnerability": "VCID-ddmy-kcmb-s7g7" }, { "vulnerability": "VCID-ecke-bvya-aud5" }, { "vulnerability": "VCID-ey3a-eeqb-7fdq" }, { "vulnerability": "VCID-gaay-gs4k-5fba" }, { "vulnerability": "VCID-gt4j-am1s-ckan" }, { "vulnerability": "VCID-gvey-a924-8qhf" }, { "vulnerability": "VCID-h6c2-e5qv-myg8" }, { "vulnerability": "VCID-hp2b-trqy-ubfx" }, { "vulnerability": "VCID-hqyt-nhb4-4ycr" }, { "vulnerability": "VCID-j1yc-pqhw-pbh1" }, { "vulnerability": "VCID-j545-f44v-w3cn" }, { "vulnerability": "VCID-janh-95vp-bqfh" }, { "vulnerability": "VCID-jgec-wuca-bbf1" }, { "vulnerability": "VCID-ksza-1wkb-hug6" }, { "vulnerability": "VCID-mq6q-svzv-9fd1" }, { "vulnerability": "VCID-n2z8-yesj-9bea" }, { "vulnerability": "VCID-nqz7-ej49-ckay" }, { "vulnerability": "VCID-pyjy-13mt-cyck" }, { "vulnerability": "VCID-qdwc-2mrq-6qgk" }, { "vulnerability": "VCID-swh1-rvuw-jqfx" }, { "vulnerability": "VCID-tj7d-ydqk-6kga" }, { "vulnerability": "VCID-ukc1-s92n-yydh" }, { "vulnerability": "VCID-vbkh-vghp-qqht" }, { "vulnerability": "VCID-yy7m-f66v-fbhz" }, { "vulnerability": "VCID-zd4q-kddb-t3ha" }, { "vulnerability": "VCID-ze3s-89wm-2kg2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/drupal/drupal@7.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/51570?format=api", "purl": "pkg:composer/drupal/drupal@8.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1unn-dn56-vufe" }, { "vulnerability": "VCID-1xsh-7f63-v3df" }, { "vulnerability": "VCID-2bnn-1wmq-ckdd" }, { "vulnerability": "VCID-2yyq-kyeu-uufc" }, { "vulnerability": "VCID-3k2a-rajw-87cb" }, { "vulnerability": "VCID-4p5n-ujzt-qfdx" }, { "vulnerability": "VCID-4un9-k6n8-nffu" }, { "vulnerability": "VCID-4yqy-eqn7-wkcf" }, { "vulnerability": "VCID-4zg8-2vm9-ubch" }, { "vulnerability": "VCID-51ze-a1zm-ukey" }, { "vulnerability": "VCID-55x9-nh66-1qh5" }, { "vulnerability": "VCID-5821-1xss-8fdu" }, { "vulnerability": "VCID-5txj-xsnq-ducf" }, { "vulnerability": "VCID-7kzf-7csh-wkds" }, { "vulnerability": "VCID-7qhc-n6hc-ukbu" }, { "vulnerability": "VCID-8fxw-fw46-yuar" }, { "vulnerability": "VCID-99sr-urzq-8few" }, { "vulnerability": "VCID-aknt-8ey4-m7hr" }, { "vulnerability": "VCID-ardj-zyxg-9ued" }, { "vulnerability": "VCID-az1b-uzab-jqdh" }, { "vulnerability": "VCID-b2x6-54c3-jqa2" }, { "vulnerability": "VCID-bavm-v6d9-sqd9" }, { "vulnerability": "VCID-bhyk-vjnk-e3af" }, { "vulnerability": "VCID-cfty-fvf7-3kcx" }, { "vulnerability": "VCID-crny-qmhc-tqfm" }, { "vulnerability": "VCID-d173-npte-yqdt" }, { "vulnerability": "VCID-dhzk-3ek4-2uf8" }, { "vulnerability": "VCID-e8mp-5awh-eybz" }, { "vulnerability": "VCID-e9pt-c5az-ebe2" }, { "vulnerability": "VCID-ejt8-umuh-g7e7" }, { "vulnerability": "VCID-f687-ubdn-37en" }, { "vulnerability": "VCID-f81c-sjqn-wbc3" }, { "vulnerability": "VCID-fbqa-6fpw-kyg9" }, { "vulnerability": "VCID-fmyh-mnq6-uyb9" }, { "vulnerability": "VCID-fx6n-du84-yya2" }, { "vulnerability": "VCID-g3u3-6dza-gkg7" }, { "vulnerability": "VCID-h93x-dbpr-q7cz" }, { "vulnerability": "VCID-hqyt-nhb4-4ycr" }, { "vulnerability": "VCID-hz2k-at38-wbeb" }, { "vulnerability": "VCID-j1yc-pqhw-pbh1" }, { "vulnerability": "VCID-j2g3-u36y-nqdv" }, { "vulnerability": "VCID-j545-f44v-w3cn" }, { "vulnerability": "VCID-j7zf-w99n-nfcf" }, { "vulnerability": "VCID-jecz-bm88-9uf1" }, { "vulnerability": "VCID-jgec-wuca-bbf1" }, { "vulnerability": "VCID-kd54-616n-wbcw" }, { "vulnerability": "VCID-kymb-9kr6-fkd7" }, { "vulnerability": "VCID-n5ur-2ytr-qbh5" }, { "vulnerability": "VCID-n6tq-72g7-afdg" }, { "vulnerability": "VCID-nqz7-ej49-ckay" }, { "vulnerability": "VCID-nszv-9z68-bqeu" }, { "vulnerability": "VCID-p6q6-apzp-pbbh" }, { "vulnerability": "VCID-pbqh-x6zw-duhn" }, { "vulnerability": "VCID-phkw-q4nd-m7hh" }, { "vulnerability": "VCID-pyjy-13mt-cyck" }, { "vulnerability": "VCID-qdwc-2mrq-6qgk" }, { "vulnerability": "VCID-qf91-4h5f-fuhv" }, { "vulnerability": "VCID-s8d1-k9q4-nkds" }, { "vulnerability": "VCID-sbnt-qndd-xubz" }, { "vulnerability": "VCID-svhr-wt5d-xbbq" }, { "vulnerability": "VCID-ta2u-bd9e-nfc7" }, { "vulnerability": "VCID-tj7d-ydqk-6kga" }, { "vulnerability": "VCID-ukc1-s92n-yydh" }, { "vulnerability": "VCID-unh6-xwtu-mkbt" }, { "vulnerability": "VCID-v2h1-1cfd-muft" }, { "vulnerability": "VCID-vbkh-vghp-qqht" }, { "vulnerability": "VCID-vtwk-c1zr-jue5" }, { "vulnerability": "VCID-vzwv-ueuz-myar" }, { "vulnerability": "VCID-w85b-dws8-uyf1" }, { "vulnerability": "VCID-w9xe-83yw-mbhy" }, { "vulnerability": "VCID-waz7-ejwd-d3eh" }, { "vulnerability": "VCID-x5b9-68nh-rucd" }, { "vulnerability": "VCID-yy7m-f66v-fbhz" }, { "vulnerability": "VCID-zd4q-kddb-t3ha" }, { "vulnerability": "VCID-zhxf-bmyy-wff6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/drupal/drupal@8.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/54071?format=api", "purl": "pkg:composer/drupal/drupal@8.4.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2yyq-kyeu-uufc" }, { "vulnerability": "VCID-4zg8-2vm9-ubch" }, { "vulnerability": "VCID-51ze-a1zm-ukey" }, { "vulnerability": "VCID-5txj-xsnq-ducf" }, { "vulnerability": "VCID-7qhc-n6hc-ukbu" }, { "vulnerability": "VCID-ardj-zyxg-9ued" }, { "vulnerability": "VCID-bhyk-vjnk-e3af" }, { "vulnerability": "VCID-crny-qmhc-tqfm" }, { "vulnerability": "VCID-fx6n-du84-yya2" }, { "vulnerability": "VCID-j545-f44v-w3cn" }, { "vulnerability": "VCID-j7zf-w99n-nfcf" }, { "vulnerability": "VCID-kd54-616n-wbcw" }, { "vulnerability": "VCID-p6q6-apzp-pbbh" }, { "vulnerability": "VCID-qdwc-2mrq-6qgk" }, { "vulnerability": "VCID-svhr-wt5d-xbbq" }, { "vulnerability": "VCID-ty8g-qrbm-cuf3" }, { "vulnerability": "VCID-ukc1-s92n-yydh" }, { "vulnerability": "VCID-unh6-xwtu-mkbt" }, { "vulnerability": "VCID-v2h1-1cfd-muft" }, { "vulnerability": "VCID-yy7m-f66v-fbhz" }, { "vulnerability": "VCID-zd4q-kddb-t3ha" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/drupal/drupal@8.4.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/54345?format=api", "purl": "pkg:composer/drupal/drupal@8.5.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2yyq-kyeu-uufc" }, { "vulnerability": "VCID-51ze-a1zm-ukey" }, { "vulnerability": "VCID-5txj-xsnq-ducf" }, { "vulnerability": "VCID-7qhc-n6hc-ukbu" }, { "vulnerability": "VCID-ardj-zyxg-9ued" }, { "vulnerability": "VCID-bhyk-vjnk-e3af" }, { "vulnerability": "VCID-crny-qmhc-tqfm" }, { "vulnerability": "VCID-h6c2-e5qv-myg8" }, { "vulnerability": "VCID-j545-f44v-w3cn" }, { "vulnerability": "VCID-nqz7-ej49-ckay" }, { "vulnerability": "VCID-p6q6-apzp-pbbh" }, { "vulnerability": "VCID-qdwc-2mrq-6qgk" }, { "vulnerability": "VCID-svhr-wt5d-xbbq" }, { "vulnerability": "VCID-ukc1-s92n-yydh" }, { "vulnerability": "VCID-yy7m-f66v-fbhz" }, { "vulnerability": "VCID-zd4q-kddb-t3ha" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/drupal/drupal@8.5.0" } ], "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-7600", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.94489", "scoring_system": "epss", "scoring_elements": "1.0", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-7600" }, { "reference_url": "https://badpackets.net/over-100000-drupal-websites-vulnerable-to-drupalgeddon-2-cve-2018-7600", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://badpackets.net/over-100000-drupal-websites-vulnerable-to-drupalgeddon-2-cve-2018-7600" }, { "reference_url": "https://blog.appsecco.com/remote-code-execution-with-drupal-core-sa-core-2018-002-95e6ecc0c714", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H" }, { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Act", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-07T12:40:15Z/" } ], "url": "https://blog.appsecco.com/remote-code-execution-with-drupal-core-sa-core-2018-002-95e6ecc0c714" }, { "reference_url": "https://github.com/drupal/core", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/drupal/core" }, { "reference_url": "https://greysec.net/showthread.php?tid=2912&pid=10561", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Act", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-07T12:40:15Z/" } ], "url": "https://greysec.net/showthread.php?tid=2912&pid=10561" }, { "reference_url": "https://groups.drupal.org/security/faq-2018-002", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H" }, { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Act", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-07T12:40:15Z/" } ], "url": "https://groups.drupal.org/security/faq-2018-002" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2018/03/msg00028.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Act", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-07T12:40:15Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2018/03/msg00028.html" }, { "reference_url": "https://research.checkpoint.com/uncovering-drupalgeddon-2", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://research.checkpoint.com/uncovering-drupalgeddon-2" }, { "reference_url": "https://twitter.com/arancaytar/status/979090719003627521", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Act", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-07T12:40:15Z/" } ], "url": "https://twitter.com/arancaytar/status/979090719003627521" }, { "reference_url": "https://twitter.com/RicterZ/status/979567469726613504", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Act", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-07T12:40:15Z/" } ], "url": "https://twitter.com/RicterZ/status/979567469726613504" }, { "reference_url": "https://twitter.com/RicterZ/status/984495201354854401", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Act", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-07T12:40:15Z/" } ], "url": "https://twitter.com/RicterZ/status/984495201354854401" }, { "reference_url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2018-7600", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2018-7600" }, { "reference_url": "https://www.debian.org/security/2018/dsa-4156", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H" }, { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Act", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-07T12:40:15Z/" } ], "url": "https://www.debian.org/security/2018/dsa-4156" }, { "reference_url": "https://www.drupal.org/sa-core-2018-002", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Act", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-07T12:40:15Z/" } ], "url": "https://www.drupal.org/sa-core-2018-002" }, { "reference_url": "https://www.exploit-db.com/exploits/44448", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.exploit-db.com/exploits/44448" }, { "reference_url": "https://www.exploit-db.com/exploits/44449", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.exploit-db.com/exploits/44449" }, { "reference_url": "https://www.exploit-db.com/exploits/44482", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.exploit-db.com/exploits/44482" }, { "reference_url": "https://www.synology.com/support/security/Synology_SA_18_17", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H" }, { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Act", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-07T12:40:15Z/" } ], "url": "https://www.synology.com/support/security/Synology_SA_18_17" }, { "reference_url": "https://www.tenable.com/blog/critical-drupal-core-vulnerability-what-you-need-to-know", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Act", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-07T12:40:15Z/" } ], "url": "https://www.tenable.com/blog/critical-drupal-core-vulnerability-what-you-need-to-know" }, { "reference_url": "http://www.securityfocus.com/bid/103534", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Act", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-07T12:40:15Z/" } ], "url": "http://www.securityfocus.com/bid/103534" }, { "reference_url": "http://www.securitytracker.com/id/1040598", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Act", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-07T12:40:15Z/" } ], "url": "http://www.securitytracker.com/id/1040598" }, { "reference_url": "https://www.exploit-db.com/exploits/44448/", "reference_id": "44448", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Act", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-07T12:40:15Z/" } ], "url": "https://www.exploit-db.com/exploits/44448/" }, { "reference_url": "https://www.exploit-db.com/exploits/44449/", "reference_id": "44449", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Act", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-07T12:40:15Z/" } ], "url": "https://www.exploit-db.com/exploits/44449/" }, { "reference_url": "https://www.exploit-db.com/exploits/44482/", "reference_id": "44482", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Act", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-07T12:40:15Z/" } ], "url": "https://www.exploit-db.com/exploits/44482/" }, { "reference_url": "https://security.archlinux.org/ASA-201804-1", "reference_id": "ASA-201804-1", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201804-1" }, { "reference_url": "https://security.archlinux.org/AVG-665", "reference_id": "AVG-665", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-665" }, { "reference_url": "https://github.com/a2u/CVE-2018-7600", "reference_id": "CVE-2018-7600", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Act", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-07T12:40:15Z/" } ], "url": "https://github.com/a2u/CVE-2018-7600" }, { "reference_url": "https://github.com/a2u/CVE-2018-7600/blob/2c623a6a9ea641119cf7ee75cd344fb32047169b/exploit.py", "reference_id": "CVE-2018-7600", "reference_type": "exploit", "scores": [], "url": "https://github.com/a2u/CVE-2018-7600/blob/2c623a6a9ea641119cf7ee75cd344fb32047169b/exploit.py" }, { "reference_url": "https://github.com/dreadlocked/Drupalgeddon2/blob/16cac1b2336d38642f75eb7b7e2c833b2c3f49b1/drupalgeddon2.rb", "reference_id": "CVE-2018-7600", "reference_type": "exploit", "scores": [], "url": "https://github.com/dreadlocked/Drupalgeddon2/blob/16cac1b2336d38642f75eb7b7e2c833b2c3f49b1/drupalgeddon2.rb" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/remote/44482.rb", "reference_id": "CVE-2018-7600", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/remote/44482.rb" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/44448.py", "reference_id": "CVE-2018-7600", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/44448.py" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/44449.rb", "reference_id": "CVE-2018-7600", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/44449.rb" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7600", "reference_id": "CVE-2018-7600", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7600" }, { "reference_url": "https://github.com/g0rx/CVE-2018-7600-Drupal-RCE", "reference_id": "CVE-2018-7600-DRUPAL-RCE", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H" }, { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Act", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-07T12:40:15Z/" } ], "url": "https://github.com/g0rx/CVE-2018-7600-Drupal-RCE" }, { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/drupal/core/CVE-2018-7600.yaml", "reference_id": "CVE-2018-7600.YAML", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/drupal/core/CVE-2018-7600.yaml" }, { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/drupal/drupal/CVE-2018-7600.yaml", "reference_id": "CVE-2018-7600.YAML", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/drupal/drupal/CVE-2018-7600.yaml" }, { "reference_url": "https://github.com/advisories/GHSA-7fh9-933g-885p", "reference_id": "GHSA-7fh9-933g-885p", "reference_type": "", "scores": [], "url": "https://github.com/advisories/GHSA-7fh9-933g-885p" }, { "reference_url": "https://badpackets.net/over-100000-drupal-websites-vulnerable-to-drupalgeddon-2-cve-2018-7600/", "reference_id": "over-100000-drupal-websites-vulnerable-to-drupalgeddon-2-cve-2018-7600", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Act", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-07T12:40:15Z/" } ], "url": "https://badpackets.net/over-100000-drupal-websites-vulnerable-to-drupalgeddon-2-cve-2018-7600/" }, { "reference_url": "https://research.checkpoint.com/uncovering-drupalgeddon-2/", "reference_id": "uncovering-drupalgeddon-2", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Act", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-07T12:40:15Z/" } ], "url": "https://research.checkpoint.com/uncovering-drupalgeddon-2/" }, { "reference_url": "https://usn.ubuntu.com/USN-4773-1/", "reference_id": "USN-USN-4773-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/USN-4773-1/" } ], "weaknesses": [ { "cwe_id": 20, "name": "Improper Input Validation", "description": "The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly." }, { "cwe_id": 937, "name": "OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013." }, { "cwe_id": 1035, "name": "OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017." } ], "exploits": [ { "date_added": "2021-11-03", "description": "Drupal Core contains a remote code execution vulnerability that could allow an attacker to exploit multiple attack vectors on a Drupal site, resulting in complete site compromise.", "required_action": "Apply updates per vendor instructions.", "due_date": "2022-05-03", "notes": "https://nvd.nist.gov/vuln/detail/CVE-2018-7600", "known_ransomware_campaign_use": true, "source_date_published": null, "exploit_type": null, "platform": null, "source_date_updated": null, "data_source": "KEV", "source_url": null }, { "date_added": null, "description": "This module exploits a Drupal property injection in the Forms API.\n\n Drupal 6.x, < 7.58, 8.2.x, < 8.3.9, < 8.4.6, and < 8.5.1 are vulnerable.", "required_action": null, "due_date": null, "notes": "Stability:\n - crash-safe\nSideEffects: []\nReliability: []\nAKA:\n - SA-CORE-2018-002\n - Drupalgeddon 2\n", "known_ransomware_campaign_use": false, "source_date_published": "2018-03-28", "exploit_type": null, "platform": "Linux,PHP,Unix", "source_date_updated": null, "data_source": "Metasploit", "source_url": "https://github.com/rapid7/metasploit-framework/tree/master/modules/exploits/unix/webapp/drupal_drupalgeddon2.rb" }, { "date_added": "2018-04-13", "description": "Drupal < 8.3.9 / < 8.4.6 / < 8.5.1 - 'Drupalgeddon2' Remote Code Execution (PoC)", "required_action": null, "due_date": null, "notes": null, "known_ransomware_campaign_use": true, "source_date_published": "2018-04-13", "exploit_type": "webapps", "platform": "php", "source_date_updated": "2018-08-28", "data_source": "Exploit-DB", "source_url": "https://github.com/a2u/CVE-2018-7600/blob/2c623a6a9ea641119cf7ee75cd344fb32047169b/exploit.py" } ], "severity_range_score": "9.0 - 10.0", "exploitability": "2.0", "weighted_severity": "9.0", "risk_score": 10.0, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ardj-zyxg-9ued" }