Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-uqt2-tazg-tucp
SummaryTime-Based Information Disclosure Vulnerability in Flow
Aliases
0
alias GHSA-6pq8-67pw-j6hw
Fixed_packages
0
url pkg:composer/neos/flow@2.3.16
purl pkg:composer/neos/flow@2.3.16
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/neos/flow@2.3.16
1
url pkg:composer/neos/flow@3.0.10
purl pkg:composer/neos/flow@3.0.10
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/neos/flow@3.0.10
2
url pkg:composer/neos/flow@3.1.7
purl pkg:composer/neos/flow@3.1.7
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/neos/flow@3.1.7
3
url pkg:composer/neos/flow@3.2.7
purl pkg:composer/neos/flow@3.2.7
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/neos/flow@3.2.7
4
url pkg:composer/neos/flow@3.3.5
purl pkg:composer/neos/flow@3.3.5
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/neos/flow@3.3.5
Affected_packages
0
url pkg:composer/neos/flow@2.3.0
purl pkg:composer/neos/flow@2.3.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a5ed-3zde-1bh2
1
vulnerability VCID-uqt2-tazg-tucp
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/neos/flow@2.3.0
1
url pkg:composer/neos/flow@3.0.0
purl pkg:composer/neos/flow@3.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-6k9y-afpp-f3gv
1
vulnerability VCID-a5ed-3zde-1bh2
2
vulnerability VCID-uqt2-tazg-tucp
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/neos/flow@3.0.0
2
url pkg:composer/neos/flow@3.1.0
purl pkg:composer/neos/flow@3.1.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-6k9y-afpp-f3gv
1
vulnerability VCID-uqt2-tazg-tucp
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/neos/flow@3.1.0
3
url pkg:composer/neos/flow@3.2.0
purl pkg:composer/neos/flow@3.2.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-6k9y-afpp-f3gv
1
vulnerability VCID-uqt2-tazg-tucp
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/neos/flow@3.2.0
4
url pkg:composer/neos/flow@3.3.0
purl pkg:composer/neos/flow@3.3.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-6k9y-afpp-f3gv
1
vulnerability VCID-uqt2-tazg-tucp
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/neos/flow@3.3.0
References
0
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/neos/flow/2016-11-01.yaml
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/neos/flow/2016-11-01.yaml
1
reference_url https://github.com/neos/flow
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/neos/flow
2
reference_url https://www.neos.io/blog/flow-sa-2016-001.html
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.neos.io/blog/flow-sa-2016-001.html
3
reference_url https://github.com/advisories/GHSA-6pq8-67pw-j6hw
reference_id GHSA-6pq8-67pw-j6hw
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-6pq8-67pw-j6hw
Weaknesses
Exploits
Severity_range_score4.0 - 6.9
Exploitability0.5
Weighted_severity6.2
Risk_score3.1
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-uqt2-tazg-tucp