Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/38607?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/38607?format=api", "vulnerability_id": "VCID-un5f-u2uy-vuht", "summary": "Improper Input Validation\nA spoofing vulnerability exists when the ASP.NET Core fails to properly sanitize web requests.", "aliases": [ { "alias": "CVE-2017-0256" }, { "alias": "GHSA-j8f4-2w4p-mhjc" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/56658?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc@1.0.4", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc@1.0.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/56556?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc@1.1.3", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc@1.1.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/56618?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.Abstractions@1.0.4", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.Abstractions@1.0.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/56619?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.Abstractions@1.1.3", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.Abstractions@1.1.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/56641?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.ApiExplorer@1.0.4", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.ApiExplorer@1.0.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/56642?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.ApiExplorer@1.1.3", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.ApiExplorer@1.1.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/17?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.Core@1.0.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ju3g-r5sj-4ueq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.Core@1.0.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/23?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.Core@1.1.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ju3g-r5sj-4ueq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.Core@1.1.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/30?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.Cors@1.0.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ju3g-r5sj-4ueq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.Cors@1.0.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/36?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.Cors@1.1.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ju3g-r5sj-4ueq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.Cors@1.1.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/56550?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.DataAnnotations@1.0.4", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.DataAnnotations@1.0.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/56551?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.DataAnnotations@1.1.3", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.DataAnnotations@1.1.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/56554?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.Formatters.Json@1.0.4", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.Formatters.Json@1.0.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/56555?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.Formatters.Json@1.1.3", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.Formatters.Json@1.1.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/56645?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.Formatters.Xml@1.0.4", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.Formatters.Xml@1.0.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/56646?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.Formatters.Xml@1.1.3", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.Formatters.Xml@1.1.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/56561?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.Localization@1.0.4", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.Localization@1.0.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/56562?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.Localization@1.1.3", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.Localization@1.1.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/56653?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.Razor@1.0.4", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.Razor@1.0.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/56654?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.Razor@1.1.3", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.Razor@1.1.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/56568?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.Razor.Host@1.0.4", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.Razor.Host@1.0.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/56569?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.Razor.Host@1.1.3", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.Razor.Host@1.1.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/56603?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.TagHelpers@1.0.4", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.TagHelpers@1.0.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/56604?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.TagHelpers@1.1.3", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.TagHelpers@1.1.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/56591?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.ViewFeatures@1.0.4", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.ViewFeatures@1.0.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/56592?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.ViewFeatures@1.1.3", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.ViewFeatures@1.1.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/56596?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.WebApiCompatShim@1.0.4", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.WebApiCompatShim@1.0.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/56597?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.WebApiCompatShim@1.1.3", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.WebApiCompatShim@1.1.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/53552?format=api", "purl": "pkg:nuget/Microsoft.AspNet.Mvc@3.0.20105.1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNet.Mvc@3.0.20105.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/287?format=api", "purl": "pkg:nuget/System.Net.Http@4.1.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dw22-bazh-4qa9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/System.Net.Http@4.1.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/290?format=api", "purl": "pkg:nuget/System.Net.Http@4.3.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dw22-bazh-4qa9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/System.Net.Http@4.3.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/56623?format=api", "purl": "pkg:nuget/System.Net.Http.WinHttpHandler@4.0.1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/System.Net.Http.WinHttpHandler@4.0.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/56624?format=api", "purl": "pkg:nuget/System.Net.Http.WinHttpHandler@4.3.1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/System.Net.Http.WinHttpHandler@4.3.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/56632?format=api", "purl": "pkg:nuget/System.Net.Security@4.0.1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/System.Net.Security@4.0.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/56633?format=api", "purl": "pkg:nuget/System.Net.Security@4.3.1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/System.Net.Security@4.3.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/56584?format=api", "purl": "pkg:nuget/System.Net.WebSockets.Client@4.0.1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/System.Net.WebSockets.Client@4.0.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/56585?format=api", "purl": "pkg:nuget/System.Net.WebSockets.Client@4.3.1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/System.Net.WebSockets.Client@4.3.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/56580?format=api", "purl": "pkg:nuget/System.Text.Encodings.Web@4.0.1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/System.Text.Encodings.Web@4.0.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/56581?format=api", "purl": "pkg:nuget/System.Text.Encodings.Web@4.3.1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/System.Text.Encodings.Web@4.3.1" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/56656?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc@1.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7u5q-whe4-qyhu" }, { "vulnerability": "VCID-un5f-u2uy-vuht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc@1.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/56657?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc@1.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7u5q-whe4-qyhu" }, { "vulnerability": "VCID-un5f-u2uy-vuht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc@1.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/56616?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.Abstractions@1.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7u5q-whe4-qyhu" }, { "vulnerability": "VCID-8vja-gk61-dfbg" }, { "vulnerability": "VCID-bvaa-3y8n-4ugc" }, { "vulnerability": "VCID-un5f-u2uy-vuht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.Abstractions@1.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/56617?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.Abstractions@1.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7u5q-whe4-qyhu" }, { "vulnerability": "VCID-8vja-gk61-dfbg" }, { "vulnerability": "VCID-bvaa-3y8n-4ugc" }, { "vulnerability": "VCID-un5f-u2uy-vuht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.Abstractions@1.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/56639?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.ApiExplorer@1.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7u5q-whe4-qyhu" }, { "vulnerability": "VCID-8vja-gk61-dfbg" }, { "vulnerability": "VCID-bvaa-3y8n-4ugc" }, { "vulnerability": "VCID-un5f-u2uy-vuht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.ApiExplorer@1.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/56640?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.ApiExplorer@1.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7u5q-whe4-qyhu" }, { "vulnerability": "VCID-8vja-gk61-dfbg" }, { "vulnerability": "VCID-bvaa-3y8n-4ugc" }, { "vulnerability": "VCID-un5f-u2uy-vuht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.ApiExplorer@1.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/12?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.Core@1.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7u5q-whe4-qyhu" }, { "vulnerability": "VCID-8vja-gk61-dfbg" }, { "vulnerability": "VCID-bvaa-3y8n-4ugc" }, { "vulnerability": "VCID-ju3g-r5sj-4ueq" }, { "vulnerability": "VCID-un5f-u2uy-vuht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.Core@1.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/19?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.Core@1.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7u5q-whe4-qyhu" }, { "vulnerability": "VCID-8vja-gk61-dfbg" }, { "vulnerability": "VCID-bvaa-3y8n-4ugc" }, { "vulnerability": "VCID-ju3g-r5sj-4ueq" }, { "vulnerability": "VCID-un5f-u2uy-vuht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.Core@1.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/25?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.Cors@1.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7u5q-whe4-qyhu" }, { "vulnerability": "VCID-8vja-gk61-dfbg" }, { "vulnerability": "VCID-bvaa-3y8n-4ugc" }, { "vulnerability": "VCID-ju3g-r5sj-4ueq" }, { "vulnerability": "VCID-un5f-u2uy-vuht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.Cors@1.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/32?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.Cors@1.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7u5q-whe4-qyhu" }, { "vulnerability": "VCID-8vja-gk61-dfbg" }, { "vulnerability": "VCID-bvaa-3y8n-4ugc" }, { "vulnerability": "VCID-ju3g-r5sj-4ueq" }, { "vulnerability": "VCID-un5f-u2uy-vuht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.Cors@1.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/56548?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.DataAnnotations@1.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7u5q-whe4-qyhu" }, { "vulnerability": "VCID-8vja-gk61-dfbg" }, { "vulnerability": "VCID-bvaa-3y8n-4ugc" }, { "vulnerability": "VCID-un5f-u2uy-vuht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.DataAnnotations@1.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/56549?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.DataAnnotations@1.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7u5q-whe4-qyhu" }, { "vulnerability": "VCID-8vja-gk61-dfbg" }, { "vulnerability": "VCID-bvaa-3y8n-4ugc" }, { "vulnerability": "VCID-un5f-u2uy-vuht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.DataAnnotations@1.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/56552?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.Formatters.Json@1.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7u5q-whe4-qyhu" }, { "vulnerability": "VCID-8vja-gk61-dfbg" }, { "vulnerability": "VCID-bvaa-3y8n-4ugc" }, { "vulnerability": "VCID-un5f-u2uy-vuht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.Formatters.Json@1.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/56553?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.Formatters.Json@1.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7u5q-whe4-qyhu" }, { "vulnerability": "VCID-8vja-gk61-dfbg" }, { "vulnerability": "VCID-bvaa-3y8n-4ugc" }, { "vulnerability": "VCID-un5f-u2uy-vuht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.Formatters.Json@1.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/56643?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.Formatters.Xml@1.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7u5q-whe4-qyhu" }, { "vulnerability": "VCID-8vja-gk61-dfbg" }, { "vulnerability": "VCID-bvaa-3y8n-4ugc" }, { "vulnerability": "VCID-un5f-u2uy-vuht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.Formatters.Xml@1.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/56644?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.Formatters.Xml@1.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7u5q-whe4-qyhu" }, { "vulnerability": "VCID-8vja-gk61-dfbg" }, { "vulnerability": "VCID-bvaa-3y8n-4ugc" }, { "vulnerability": "VCID-un5f-u2uy-vuht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.Formatters.Xml@1.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/56559?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.Localization@1.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7u5q-whe4-qyhu" }, { "vulnerability": "VCID-8vja-gk61-dfbg" }, { "vulnerability": "VCID-bvaa-3y8n-4ugc" }, { "vulnerability": "VCID-un5f-u2uy-vuht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.Localization@1.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/56560?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.Localization@1.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7u5q-whe4-qyhu" }, { "vulnerability": "VCID-8vja-gk61-dfbg" }, { "vulnerability": "VCID-bvaa-3y8n-4ugc" }, { "vulnerability": "VCID-un5f-u2uy-vuht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.Localization@1.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/56651?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.Razor@1.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7u5q-whe4-qyhu" }, { "vulnerability": "VCID-8vja-gk61-dfbg" }, { "vulnerability": "VCID-bvaa-3y8n-4ugc" }, { "vulnerability": "VCID-un5f-u2uy-vuht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.Razor@1.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/56652?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.Razor@1.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7u5q-whe4-qyhu" }, { "vulnerability": "VCID-8vja-gk61-dfbg" }, { "vulnerability": "VCID-bvaa-3y8n-4ugc" }, { "vulnerability": "VCID-un5f-u2uy-vuht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.Razor@1.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/56566?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.Razor.Host@1.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7u5q-whe4-qyhu" }, { "vulnerability": "VCID-8vja-gk61-dfbg" }, { "vulnerability": "VCID-bvaa-3y8n-4ugc" }, { "vulnerability": "VCID-un5f-u2uy-vuht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.Razor.Host@1.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/56567?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.Razor.Host@1.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7u5q-whe4-qyhu" }, { "vulnerability": "VCID-8vja-gk61-dfbg" }, { "vulnerability": "VCID-bvaa-3y8n-4ugc" }, { "vulnerability": "VCID-un5f-u2uy-vuht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.Razor.Host@1.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/56601?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.TagHelpers@1.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7u5q-whe4-qyhu" }, { "vulnerability": "VCID-8vja-gk61-dfbg" }, { "vulnerability": "VCID-bvaa-3y8n-4ugc" }, { "vulnerability": "VCID-un5f-u2uy-vuht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.TagHelpers@1.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/56602?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.TagHelpers@1.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7u5q-whe4-qyhu" }, { "vulnerability": "VCID-8vja-gk61-dfbg" }, { "vulnerability": "VCID-bvaa-3y8n-4ugc" }, { "vulnerability": "VCID-un5f-u2uy-vuht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.TagHelpers@1.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/56589?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.ViewFeatures@1.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7u5q-whe4-qyhu" }, { "vulnerability": "VCID-8vja-gk61-dfbg" }, { "vulnerability": "VCID-bvaa-3y8n-4ugc" }, { "vulnerability": "VCID-un5f-u2uy-vuht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.ViewFeatures@1.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/56590?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.ViewFeatures@1.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7u5q-whe4-qyhu" }, { "vulnerability": "VCID-8vja-gk61-dfbg" }, { "vulnerability": "VCID-bvaa-3y8n-4ugc" }, { "vulnerability": "VCID-un5f-u2uy-vuht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.ViewFeatures@1.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/56594?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.WebApiCompatShim@1.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7u5q-whe4-qyhu" }, { "vulnerability": "VCID-8vja-gk61-dfbg" }, { "vulnerability": "VCID-bvaa-3y8n-4ugc" }, { "vulnerability": "VCID-un5f-u2uy-vuht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.WebApiCompatShim@1.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/56595?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.Mvc.WebApiCompatShim@1.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7u5q-whe4-qyhu" }, { "vulnerability": "VCID-8vja-gk61-dfbg" }, { "vulnerability": "VCID-bvaa-3y8n-4ugc" }, { "vulnerability": "VCID-un5f-u2uy-vuht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.WebApiCompatShim@1.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/53550?format=api", "purl": "pkg:nuget/Microsoft.AspNet.Mvc@1.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8vja-gk61-dfbg" }, { "vulnerability": "VCID-bvaa-3y8n-4ugc" }, { "vulnerability": "VCID-un5f-u2uy-vuht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNet.Mvc@1.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/53551?format=api", "purl": "pkg:nuget/Microsoft.AspNet.Mvc@1.1.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8vja-gk61-dfbg" }, { "vulnerability": "VCID-un5f-u2uy-vuht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNet.Mvc@1.1.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/286?format=api", "purl": "pkg:nuget/System.Net.Http@4.1.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7u5q-whe4-qyhu" }, { "vulnerability": "VCID-8vja-gk61-dfbg" }, { "vulnerability": "VCID-bvaa-3y8n-4ugc" }, { "vulnerability": "VCID-dw22-bazh-4qa9" }, { "vulnerability": "VCID-un5f-u2uy-vuht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/System.Net.Http@4.1.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/289?format=api", "purl": "pkg:nuget/System.Net.Http@4.3.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7u5q-whe4-qyhu" }, { "vulnerability": "VCID-8vja-gk61-dfbg" }, { "vulnerability": "VCID-bvaa-3y8n-4ugc" }, { "vulnerability": "VCID-dw22-bazh-4qa9" }, { "vulnerability": "VCID-un5f-u2uy-vuht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/System.Net.Http@4.3.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/56621?format=api", "purl": "pkg:nuget/System.Net.Http.WinHttpHandler@4.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7u5q-whe4-qyhu" }, { "vulnerability": "VCID-8vja-gk61-dfbg" }, { "vulnerability": "VCID-bvaa-3y8n-4ugc" }, { "vulnerability": "VCID-un5f-u2uy-vuht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/System.Net.Http.WinHttpHandler@4.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/56622?format=api", "purl": "pkg:nuget/System.Net.Http.WinHttpHandler@4.3.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7u5q-whe4-qyhu" }, { "vulnerability": "VCID-8vja-gk61-dfbg" }, { "vulnerability": "VCID-bvaa-3y8n-4ugc" }, { "vulnerability": "VCID-un5f-u2uy-vuht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/System.Net.Http.WinHttpHandler@4.3.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/56630?format=api", "purl": "pkg:nuget/System.Net.Security@4.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7u5q-whe4-qyhu" }, { "vulnerability": "VCID-8vja-gk61-dfbg" }, { "vulnerability": "VCID-bvaa-3y8n-4ugc" }, { "vulnerability": "VCID-un5f-u2uy-vuht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/System.Net.Security@4.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/56631?format=api", "purl": "pkg:nuget/System.Net.Security@4.3.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7u5q-whe4-qyhu" }, { "vulnerability": "VCID-8vja-gk61-dfbg" }, { "vulnerability": "VCID-bvaa-3y8n-4ugc" }, { "vulnerability": "VCID-un5f-u2uy-vuht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/System.Net.Security@4.3.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/56582?format=api", "purl": "pkg:nuget/System.Net.WebSockets.Client@4.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7u5q-whe4-qyhu" }, { "vulnerability": "VCID-8vja-gk61-dfbg" }, { "vulnerability": "VCID-bvaa-3y8n-4ugc" }, { "vulnerability": "VCID-un5f-u2uy-vuht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/System.Net.WebSockets.Client@4.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/56583?format=api", "purl": "pkg:nuget/System.Net.WebSockets.Client@4.3.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7u5q-whe4-qyhu" }, { "vulnerability": "VCID-8vja-gk61-dfbg" }, { "vulnerability": "VCID-bvaa-3y8n-4ugc" }, { "vulnerability": "VCID-un5f-u2uy-vuht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/System.Net.WebSockets.Client@4.3.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/56578?format=api", "purl": "pkg:nuget/System.Text.Encodings.Web@4.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7u5q-whe4-qyhu" }, { "vulnerability": "VCID-8vja-gk61-dfbg" }, { "vulnerability": "VCID-bvaa-3y8n-4ugc" }, { "vulnerability": "VCID-un5f-u2uy-vuht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/System.Text.Encodings.Web@4.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/56579?format=api", "purl": "pkg:nuget/System.Text.Encodings.Web@4.3.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7u5q-whe4-qyhu" }, { "vulnerability": "VCID-8vja-gk61-dfbg" }, { "vulnerability": "VCID-bvaa-3y8n-4ugc" }, { "vulnerability": "VCID-un5f-u2uy-vuht" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/System.Text.Encodings.Web@4.3.0" } ], "references": [ { "reference_url": "https://github.com/aspnet/Announcements/issues/239", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/aspnet/Announcements/issues/239" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-0256", "reference_id": "CVE-2017-0256", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-0256" }, { "reference_url": "https://github.com/advisories/GHSA-j8f4-2w4p-mhjc", "reference_id": "GHSA-j8f4-2w4p-mhjc", "reference_type": "", "scores": [], "url": "https://github.com/advisories/GHSA-j8f4-2w4p-mhjc" } ], "weaknesses": [ { "cwe_id": 1035, "name": "OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017." }, { "cwe_id": 20, "name": "Improper Input Validation", "description": "The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly." }, { "cwe_id": 937, "name": "OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013." } ], "exploits": [], "severity_range_score": null, "exploitability": null, "weighted_severity": null, "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-un5f-u2uy-vuht" }