Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-e6ep-39wd-u3b4
Summary
Label Studio is an a popular open source data labeling tool. Versions prior to 1.9.2 have a cross-site scripting (XSS) vulnerability that could be exploited when an authenticated user uploads a crafted image file for their avatar that gets rendered as a HTML file on the website. Executing arbitrary JavaScript could result in an attacker performing malicious actions on Label Studio users if they visit the crafted avatar image. For an example, an attacker can craft a JavaScript payload that adds a new Django Super Administrator user if a Django administrator visits the image.

The file `users/functions.py` lines 18-49 show that the only verification check is that the file is an image by extracting the dimensions from the file. Label Studio serves avatar images using Django's built-in `serve` view, which is not secure for production use according to Django's documentation. The issue with the Django `serve` view is that it determines the `Content-Type` of the response by the file extension in the URL path. Therefore, an attacker can upload an image that contains malicious HTML code and name the file with a `.html` extension to be rendered as a HTML page. The only file extension validation is performed on the client-side, which can be easily bypassed.

Version 1.9.2 fixes this issue. Other remediation strategies include validating the file extension on the server side, not in client-side code; removing the use of Django's `serve` view and implement a secure controller for viewing uploaded avatar images; saving file content in the database rather than on the filesystem to mitigate against other file related vulnerabilities; and avoiding trusting user controlled inputs.
Aliases
0
alias CVE-2023-47115
1
alias GHSA-q68h-xwq5-mm7x
2
alias PYSEC-2024-126
Fixed_packages
0
url pkg:pypi/label-studio@1.9.2
purl pkg:pypi/label-studio@1.9.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-hr5p-dv32-y7ez
1
vulnerability VCID-n8np-tc3h-kkfd
2
vulnerability VCID-r633-m97m-sfap
3
vulnerability VCID-udga-7qeh-bufn
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@1.9.2
Affected_packages
0
url pkg:pypi/label-studio@0.4.1
purl pkg:pypi/label-studio@0.4.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@0.4.1
1
url pkg:pypi/label-studio@0.4.2
purl pkg:pypi/label-studio@0.4.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@0.4.2
2
url pkg:pypi/label-studio@0.4.3
purl pkg:pypi/label-studio@0.4.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@0.4.3
3
url pkg:pypi/label-studio@0.4.4
purl pkg:pypi/label-studio@0.4.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@0.4.4
4
url pkg:pypi/label-studio@0.4.4.post1
purl pkg:pypi/label-studio@0.4.4.post1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@0.4.4.post1
5
url pkg:pypi/label-studio@0.4.4.post2
purl pkg:pypi/label-studio@0.4.4.post2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@0.4.4.post2
6
url pkg:pypi/label-studio@0.4.5
purl pkg:pypi/label-studio@0.4.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@0.4.5
7
url pkg:pypi/label-studio@0.4.6
purl pkg:pypi/label-studio@0.4.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@0.4.6
8
url pkg:pypi/label-studio@0.4.6.post1
purl pkg:pypi/label-studio@0.4.6.post1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@0.4.6.post1
9
url pkg:pypi/label-studio@0.4.6.post2
purl pkg:pypi/label-studio@0.4.6.post2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@0.4.6.post2
10
url pkg:pypi/label-studio@0.4.7
purl pkg:pypi/label-studio@0.4.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@0.4.7
11
url pkg:pypi/label-studio@0.4.8
purl pkg:pypi/label-studio@0.4.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@0.4.8
12
url pkg:pypi/label-studio@0.5.0
purl pkg:pypi/label-studio@0.5.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@0.5.0
13
url pkg:pypi/label-studio@0.5.1
purl pkg:pypi/label-studio@0.5.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@0.5.1
14
url pkg:pypi/label-studio@0.6.0
purl pkg:pypi/label-studio@0.6.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@0.6.0
15
url pkg:pypi/label-studio@0.6.1
purl pkg:pypi/label-studio@0.6.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@0.6.1
16
url pkg:pypi/label-studio@0.7.0
purl pkg:pypi/label-studio@0.7.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@0.7.0
17
url pkg:pypi/label-studio@0.7.1
purl pkg:pypi/label-studio@0.7.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@0.7.1
18
url pkg:pypi/label-studio@0.7.2
purl pkg:pypi/label-studio@0.7.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@0.7.2
19
url pkg:pypi/label-studio@0.7.3
purl pkg:pypi/label-studio@0.7.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@0.7.3
20
url pkg:pypi/label-studio@0.7.4
purl pkg:pypi/label-studio@0.7.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@0.7.4
21
url pkg:pypi/label-studio@0.7.4.post0
purl pkg:pypi/label-studio@0.7.4.post0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@0.7.4.post0
22
url pkg:pypi/label-studio@0.7.4.post1
purl pkg:pypi/label-studio@0.7.4.post1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@0.7.4.post1
23
url pkg:pypi/label-studio@0.7.5.post1
purl pkg:pypi/label-studio@0.7.5.post1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@0.7.5.post1
24
url pkg:pypi/label-studio@0.7.5.post2
purl pkg:pypi/label-studio@0.7.5.post2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@0.7.5.post2
25
url pkg:pypi/label-studio@0.8.0
purl pkg:pypi/label-studio@0.8.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@0.8.0
26
url pkg:pypi/label-studio@0.8.0.post0
purl pkg:pypi/label-studio@0.8.0.post0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@0.8.0.post0
27
url pkg:pypi/label-studio@0.8.1
purl pkg:pypi/label-studio@0.8.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@0.8.1
28
url pkg:pypi/label-studio@0.8.1.post0
purl pkg:pypi/label-studio@0.8.1.post0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@0.8.1.post0
29
url pkg:pypi/label-studio@0.8.2
purl pkg:pypi/label-studio@0.8.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@0.8.2
30
url pkg:pypi/label-studio@0.8.2.post0
purl pkg:pypi/label-studio@0.8.2.post0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@0.8.2.post0
31
url pkg:pypi/label-studio@0.9.0
purl pkg:pypi/label-studio@0.9.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@0.9.0
32
url pkg:pypi/label-studio@0.9.0.post2
purl pkg:pypi/label-studio@0.9.0.post2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@0.9.0.post2
33
url pkg:pypi/label-studio@0.9.0.post3
purl pkg:pypi/label-studio@0.9.0.post3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@0.9.0.post3
34
url pkg:pypi/label-studio@0.9.0.post4
purl pkg:pypi/label-studio@0.9.0.post4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@0.9.0.post4
35
url pkg:pypi/label-studio@0.9.0.post5
purl pkg:pypi/label-studio@0.9.0.post5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@0.9.0.post5
36
url pkg:pypi/label-studio@0.9.1
purl pkg:pypi/label-studio@0.9.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@0.9.1
37
url pkg:pypi/label-studio@0.9.1.post0
purl pkg:pypi/label-studio@0.9.1.post0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@0.9.1.post0
38
url pkg:pypi/label-studio@0.9.1.post1
purl pkg:pypi/label-studio@0.9.1.post1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@0.9.1.post1
39
url pkg:pypi/label-studio@0.9.1.post2
purl pkg:pypi/label-studio@0.9.1.post2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@0.9.1.post2
40
url pkg:pypi/label-studio@1.0.0
purl pkg:pypi/label-studio@1.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@1.0.0
41
url pkg:pypi/label-studio@1.0.0.post0
purl pkg:pypi/label-studio@1.0.0.post0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@1.0.0.post0
42
url pkg:pypi/label-studio@1.0.0.post1
purl pkg:pypi/label-studio@1.0.0.post1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@1.0.0.post1
43
url pkg:pypi/label-studio@1.0.0.post2
purl pkg:pypi/label-studio@1.0.0.post2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@1.0.0.post2
44
url pkg:pypi/label-studio@1.0.0.post3
purl pkg:pypi/label-studio@1.0.0.post3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@1.0.0.post3
45
url pkg:pypi/label-studio@1.0.1
purl pkg:pypi/label-studio@1.0.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@1.0.1
46
url pkg:pypi/label-studio@1.0.2
purl pkg:pypi/label-studio@1.0.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@1.0.2
47
url pkg:pypi/label-studio@1.0.2.post0
purl pkg:pypi/label-studio@1.0.2.post0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@1.0.2.post0
48
url pkg:pypi/label-studio@1.1.0rc0
purl pkg:pypi/label-studio@1.1.0rc0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@1.1.0rc0
49
url pkg:pypi/label-studio@1.1.0
purl pkg:pypi/label-studio@1.1.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@1.1.0
50
url pkg:pypi/label-studio@1.1.1
purl pkg:pypi/label-studio@1.1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@1.1.1
51
url pkg:pypi/label-studio@1.2
purl pkg:pypi/label-studio@1.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@1.2
52
url pkg:pypi/label-studio@1.3
purl pkg:pypi/label-studio@1.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@1.3
53
url pkg:pypi/label-studio@1.3.post0
purl pkg:pypi/label-studio@1.3.post0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@1.3.post0
54
url pkg:pypi/label-studio@1.3.post1
purl pkg:pypi/label-studio@1.3.post1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@1.3.post1
55
url pkg:pypi/label-studio@1.4
purl pkg:pypi/label-studio@1.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@1.4
56
url pkg:pypi/label-studio@1.4.1
purl pkg:pypi/label-studio@1.4.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@1.4.1
57
url pkg:pypi/label-studio@1.4.1.post0
purl pkg:pypi/label-studio@1.4.1.post0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@1.4.1.post0
58
url pkg:pypi/label-studio@1.4.1.post1
purl pkg:pypi/label-studio@1.4.1.post1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@1.4.1.post1
59
url pkg:pypi/label-studio@1.5.0
purl pkg:pypi/label-studio@1.5.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
7
vulnerability VCID-zg6b-ay43-nqds
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@1.5.0
60
url pkg:pypi/label-studio@1.5.0.post0
purl pkg:pypi/label-studio@1.5.0.post0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@1.5.0.post0
61
url pkg:pypi/label-studio@1.6.0
purl pkg:pypi/label-studio@1.6.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@1.6.0
62
url pkg:pypi/label-studio@1.7.0
purl pkg:pypi/label-studio@1.7.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@1.7.0
63
url pkg:pypi/label-studio@1.7.1
purl pkg:pypi/label-studio@1.7.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-fuwa-y6pw-jfe6
4
vulnerability VCID-hr5p-dv32-y7ez
5
vulnerability VCID-n8np-tc3h-kkfd
6
vulnerability VCID-r633-m97m-sfap
7
vulnerability VCID-udga-7qeh-bufn
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@1.7.1
64
url pkg:pypi/label-studio@1.7.2
purl pkg:pypi/label-studio@1.7.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@1.7.2
65
url pkg:pypi/label-studio@1.7.3
purl pkg:pypi/label-studio@1.7.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@1.7.3
66
url pkg:pypi/label-studio@1.8.0
purl pkg:pypi/label-studio@1.8.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@1.8.0
67
url pkg:pypi/label-studio@1.8.1
purl pkg:pypi/label-studio@1.8.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kxg-q3f8-k3a7
1
vulnerability VCID-csqp-5jzx-e3hn
2
vulnerability VCID-e6ep-39wd-u3b4
3
vulnerability VCID-hr5p-dv32-y7ez
4
vulnerability VCID-n8np-tc3h-kkfd
5
vulnerability VCID-r633-m97m-sfap
6
vulnerability VCID-udga-7qeh-bufn
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@1.8.1
68
url pkg:pypi/label-studio@1.8.2
purl pkg:pypi/label-studio@1.8.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-csqp-5jzx-e3hn
1
vulnerability VCID-e6ep-39wd-u3b4
2
vulnerability VCID-hr5p-dv32-y7ez
3
vulnerability VCID-n8np-tc3h-kkfd
4
vulnerability VCID-r633-m97m-sfap
5
vulnerability VCID-udga-7qeh-bufn
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@1.8.2
69
url pkg:pypi/label-studio@1.8.2.post0
purl pkg:pypi/label-studio@1.8.2.post0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-csqp-5jzx-e3hn
1
vulnerability VCID-e6ep-39wd-u3b4
2
vulnerability VCID-hr5p-dv32-y7ez
3
vulnerability VCID-n8np-tc3h-kkfd
4
vulnerability VCID-r633-m97m-sfap
5
vulnerability VCID-udga-7qeh-bufn
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@1.8.2.post0
70
url pkg:pypi/label-studio@1.8.2.post1
purl pkg:pypi/label-studio@1.8.2.post1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-csqp-5jzx-e3hn
1
vulnerability VCID-e6ep-39wd-u3b4
2
vulnerability VCID-hr5p-dv32-y7ez
3
vulnerability VCID-n8np-tc3h-kkfd
4
vulnerability VCID-r633-m97m-sfap
5
vulnerability VCID-udga-7qeh-bufn
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@1.8.2.post1
71
url pkg:pypi/label-studio@1.9.0
purl pkg:pypi/label-studio@1.9.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-csqp-5jzx-e3hn
1
vulnerability VCID-e6ep-39wd-u3b4
2
vulnerability VCID-hr5p-dv32-y7ez
3
vulnerability VCID-n8np-tc3h-kkfd
4
vulnerability VCID-r633-m97m-sfap
5
vulnerability VCID-udga-7qeh-bufn
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@1.9.0
72
url pkg:pypi/label-studio@1.9.1
purl pkg:pypi/label-studio@1.9.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-csqp-5jzx-e3hn
1
vulnerability VCID-e6ep-39wd-u3b4
2
vulnerability VCID-hr5p-dv32-y7ez
3
vulnerability VCID-n8np-tc3h-kkfd
4
vulnerability VCID-r633-m97m-sfap
5
vulnerability VCID-udga-7qeh-bufn
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@1.9.1
73
url pkg:pypi/label-studio@1.9.1.post0
purl pkg:pypi/label-studio@1.9.1.post0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-csqp-5jzx-e3hn
1
vulnerability VCID-e6ep-39wd-u3b4
2
vulnerability VCID-hr5p-dv32-y7ez
3
vulnerability VCID-n8np-tc3h-kkfd
4
vulnerability VCID-r633-m97m-sfap
5
vulnerability VCID-udga-7qeh-bufn
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@1.9.1.post0
References
0
reference_url https://docs.djangoproject.com/en/4.2/ref/views/#serving-files-in-development
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
url https://docs.djangoproject.com/en/4.2/ref/views/#serving-files-in-development
1
reference_url https://github.com/HumanSignal/label-studio
reference_id
reference_type
scores
url https://github.com/HumanSignal/label-studio
2
reference_url https://github.com/HumanSignal/label-studio/blob/1.8.2/label_studio/users/functions.py#L18-L49
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
url https://github.com/HumanSignal/label-studio/blob/1.8.2/label_studio/users/functions.py#L18-L49
3
reference_url https://github.com/HumanSignal/label-studio/blob/1.8.2/label_studio/users/urls.py#L25-L26
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
url https://github.com/HumanSignal/label-studio/blob/1.8.2/label_studio/users/urls.py#L25-L26
4
reference_url https://github.com/HumanSignal/label-studio/commit/a7a71e594f32ec4af8f3f800d5ccb8662e275da3
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
url https://github.com/HumanSignal/label-studio/commit/a7a71e594f32ec4af8f3f800d5ccb8662e275da3
5
reference_url https://github.com/HumanSignal/label-studio/security/advisories/GHSA-q68h-xwq5-mm7x
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
url https://github.com/HumanSignal/label-studio/security/advisories/GHSA-q68h-xwq5-mm7x
6
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/label-studio/PYSEC-2024-126.yaml
reference_id
reference_type
scores
url https://github.com/pypa/advisory-database/tree/main/vulns/label-studio/PYSEC-2024-126.yaml
7
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-47115
reference_id CVE-2023-47115
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2023-47115
8
reference_url https://github.com/advisories/GHSA-q68h-xwq5-mm7x
reference_id GHSA-q68h-xwq5-mm7x
reference_type
scores
url https://github.com/advisories/GHSA-q68h-xwq5-mm7x
Weaknesses
0
cwe_id 79
name Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
description The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.
1
cwe_id 937
name OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.
2
cwe_id 1035
name OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.
Exploits
Severity_range_score5.4 - 5.4
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-e6ep-39wd-u3b4