Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/37949?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/37949?format=api", "vulnerability_id": "VCID-5cz1-j5rs-dub8", "summary": "Potential Information Disclosure and Insufficient Entropy in Zend\\Captcha\\Word\nZend generates a \"word\" for a CAPTCHA challenge by selecting a sequence of random letters from a character set. The selection is performed using PHP's internal `array_rand()` function. This function does not generate sufficient entropy due to its usage of `rand()` instead of more cryptographically secure methods such as `openssl_pseudo_random_bytes()`. This can potentially lead to information disclosure should an attacker be able to brute force the random number generation.", "aliases": [ { "alias": "GMS-2015-47" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/52409?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.4.9", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.4.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/52410?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.5.2", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.5.2" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/201993?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.0.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.0.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/201994?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.0.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.0.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/201995?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.0.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.0.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/201996?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.0.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.0.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/201997?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.0.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.0.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/201998?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.0.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.0.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/201999?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/202000?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.1.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.1.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/202001?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.1.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.1.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/202002?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.1.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.1.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/202003?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.1.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.1.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/202004?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.1.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.1.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/202005?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.1.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.1.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/202006?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.2.0rc1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.2.0rc1" }, { "url": "http://public2.vulnerablecode.io/api/packages/202007?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.2.0rc2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.2.0rc2" }, { "url": "http://public2.vulnerablecode.io/api/packages/202008?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.2.0rc3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.2.0rc3" }, { "url": "http://public2.vulnerablecode.io/api/packages/202009?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.2.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/202010?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.2.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.2.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/202011?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.2.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.2.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/202012?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.2.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.2.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/202013?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.2.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.2.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/202014?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.2.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.2.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/202015?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.2.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.2.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/202016?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.2.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.2.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/202017?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.2.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.2.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/202018?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.2.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.2.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/202019?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.2.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.2.10" }, { "url": "http://public2.vulnerablecode.io/api/packages/202020?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.3.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.3.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/202021?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.3.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.3.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/202022?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.3.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.3.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/202023?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.3.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.3.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/202024?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.3.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.3.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/202025?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.3.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.3.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/202026?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.3.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.3.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/202027?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.3.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.3.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/202028?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.3.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.3.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/202029?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.3.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.3.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/202030?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.4.0rc1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.4.0rc1" }, { "url": "http://public2.vulnerablecode.io/api/packages/202031?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.4.0rc2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.4.0rc2" }, { "url": "http://public2.vulnerablecode.io/api/packages/202032?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.4.0rc3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.4.0rc3" }, { "url": "http://public2.vulnerablecode.io/api/packages/202033?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.4.0rc4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.4.0rc4" }, { "url": "http://public2.vulnerablecode.io/api/packages/202034?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.4.0rc5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.4.0rc5" }, { "url": "http://public2.vulnerablecode.io/api/packages/202035?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.4.0rc6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.4.0rc6" }, { "url": "http://public2.vulnerablecode.io/api/packages/202036?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.4.0rc7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.4.0rc7" }, { "url": "http://public2.vulnerablecode.io/api/packages/202037?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.4.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.4.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/202038?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.4.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.4.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/202039?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.4.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.4.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/202040?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.4.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.4.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/202041?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.4.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.4.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/202042?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.4.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.4.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/202043?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.4.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.4.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/202044?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.4.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.4.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/202045?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.4.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.4.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/52408?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.5.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" }, { "vulnerability": "VCID-ud17-u8e3-8qaj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.5.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/202046?format=api", "purl": "pkg:composer/zendframework/zend-captcha@2.5.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5cz1-j5rs-dub8" }, { "vulnerability": "VCID-8atm-865q-mkf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/zendframework/zend-captcha@2.5.1" } ], "references": [ { "reference_url": "http://framework.zend.com/security/advisory/ZF2015-09", "reference_id": "", "reference_type": "", "scores": [], "url": "http://framework.zend.com/security/advisory/ZF2015-09" } ], "weaknesses": [ { "cwe_id": 1035, "name": "OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017." }, { "cwe_id": 937, "name": "OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013." } ], "exploits": [], "severity_range_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5cz1-j5rs-dub8" }