VulnerableCode.io REST API

Lookup for vulnerabilities affecting packages.

GET /api/vulnerabilities/37859?format=api

HTTP 200 OK
Allow: GET, HEAD, OPTIONS
Content-Type: application/json
Vary: Accept

{
    "url": "http://public2.vulnerablecode.io/api/vulnerabilities/37859?format=api",
    "vulnerability_id": "VCID-puvt-j32v-77eh",
    "summary": "Improper Neutralization of HTTP Headers for Scripting Syntax\n`X-Forwarded-Host` request hostname injection.",
    "aliases": [
        {
            "alias": "SS-2015-013-1"
        }
    ],
    "fixed_packages": [
        {
            "url": "http://public2.vulnerablecode.io/api/packages/52280?format=api",
            "purl": "pkg:composer/silverstripe/framework@3.1.13",
            "is_vulnerable": true,
            "affected_by_vulnerabilities": [
                {
                    "vulnerability": "VCID-sfyd-qn7r-eqdg"
                }
            ],
            "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/silverstripe/framework@3.1.13"
        }
    ],
    "affected_packages": [
        {
            "url": "http://public2.vulnerablecode.io/api/packages/51941?format=api",
            "purl": "pkg:composer/silverstripe/framework@3.1.0",
            "is_vulnerable": true,
            "affected_by_vulnerabilities": [
                {
                    "vulnerability": "VCID-3snr-vtda-jqdj"
                },
                {
                    "vulnerability": "VCID-78b6-1v3w-qfc3"
                },
                {
                    "vulnerability": "VCID-8jxx-tgck-fuf1"
                },
                {
                    "vulnerability": "VCID-8wmb-64qq-7uh2"
                },
                {
                    "vulnerability": "VCID-8xwp-xd3k-fqaz"
                },
                {
                    "vulnerability": "VCID-hnhv-qx7p-wqcw"
                },
                {
                    "vulnerability": "VCID-kgf1-m5hq-1yay"
                },
                {
                    "vulnerability": "VCID-puvt-j32v-77eh"
                },
                {
                    "vulnerability": "VCID-rmsa-pfr6-zkg3"
                },
                {
                    "vulnerability": "VCID-rrmd-ud59-ffbp"
                },
                {
                    "vulnerability": "VCID-twrb-6j51-aqcy"
                },
                {
                    "vulnerability": "VCID-u6za-xw77-8kgx"
                },
                {
                    "vulnerability": "VCID-uyxp-7fh1-77cg"
                },
                {
                    "vulnerability": "VCID-vatm-1vbd-bfam"
                },
                {
                    "vulnerability": "VCID-wmfv-vtnz-bkad"
                },
                {
                    "vulnerability": "VCID-zckr-zxq4-jyev"
                }
            ],
            "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/silverstripe/framework@3.1.0"
        }
    ],
    "references": [
        {
            "reference_url": "https://www.silverstripe.org/software/download/security-releases/ss-2015-013/",
            "reference_id": "",
            "reference_type": "",
            "scores": [],
            "url": "https://www.silverstripe.org/software/download/security-releases/ss-2015-013/"
        }
    ],
    "weaknesses": [],
    "exploits": [],
    "severity_range_score": null,
    "exploitability": null,
    "weighted_severity": null,
    "risk_score": null,
    "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-puvt-j32v-77eh"
}

Vulnerability Instance