Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/39476?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/39476?format=api", "vulnerability_id": "VCID-vfr9-mu8k-rbg5", "summary": "XSS on authorization consent view\nStored XSS on the OAuth Client's name will cause users being prompted for consent via the `implicit` grant type to execute the XSS payload. The XSS attack could gain access to the user's active session, resulting in account compromise. Any user is susceptible if they click the authorization link for the malicious OAuth client. Because of how the links work, a user cannot tell if a link is malicious or not without first visiting the page with the XSS payload. In addition, there is stored XSS in the `native_redirect_uri` form element.", "aliases": [ { "alias": "CVE-2018-1000088" }, { "alias": "GHSA-hwhh-2fwm-cfgw" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/127335?format=api", "purl": "pkg:deb/debian/ruby-doorkeeper@4.3.1-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ruby-doorkeeper@4.3.1-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/127332?format=api", "purl": "pkg:deb/debian/ruby-doorkeeper@5.3.0-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ruby-doorkeeper@5.3.0-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/127330?format=api", "purl": "pkg:deb/debian/ruby-doorkeeper@5.5.0-2%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ruby-doorkeeper@5.5.0-2%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/127334?format=api", "purl": "pkg:deb/debian/ruby-doorkeeper@5.6.6-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ruby-doorkeeper@5.6.6-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/127333?format=api", "purl": "pkg:deb/debian/ruby-doorkeeper@5.9.0-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ruby-doorkeeper@5.9.0-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/55170?format=api", "purl": "pkg:gem/doorkeeper@4.2.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@4.2.6" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/159509?format=api", "purl": "pkg:gem/doorkeeper@0.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-pumw-cz31-tyg8" }, { "vulnerability": "VCID-unwy-fy1v-9qcr" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" }, { "vulnerability": "VCID-ypak-x4hq-6qgt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@0.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/159510?format=api", "purl": "pkg:gem/doorkeeper@0.1.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-pumw-cz31-tyg8" }, { "vulnerability": "VCID-unwy-fy1v-9qcr" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" }, { "vulnerability": "VCID-ypak-x4hq-6qgt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@0.1.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/159512?format=api", "purl": "pkg:gem/doorkeeper@0.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-pumw-cz31-tyg8" }, { "vulnerability": "VCID-unwy-fy1v-9qcr" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" }, { "vulnerability": "VCID-ypak-x4hq-6qgt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@0.2.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/159513?format=api", "purl": "pkg:gem/doorkeeper@0.3.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-pumw-cz31-tyg8" }, { "vulnerability": "VCID-unwy-fy1v-9qcr" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" }, { "vulnerability": "VCID-ypak-x4hq-6qgt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@0.3.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/159515?format=api", "purl": "pkg:gem/doorkeeper@0.3.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-pumw-cz31-tyg8" }, { "vulnerability": "VCID-unwy-fy1v-9qcr" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" }, { "vulnerability": "VCID-ypak-x4hq-6qgt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@0.3.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/159516?format=api", "purl": "pkg:gem/doorkeeper@0.3.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-pumw-cz31-tyg8" }, { "vulnerability": "VCID-unwy-fy1v-9qcr" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" }, { "vulnerability": "VCID-ypak-x4hq-6qgt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@0.3.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/159517?format=api", "purl": "pkg:gem/doorkeeper@0.3.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-pumw-cz31-tyg8" }, { "vulnerability": "VCID-unwy-fy1v-9qcr" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" }, { "vulnerability": "VCID-ypak-x4hq-6qgt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@0.3.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/159518?format=api", "purl": "pkg:gem/doorkeeper@0.3.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-pumw-cz31-tyg8" }, { "vulnerability": "VCID-unwy-fy1v-9qcr" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" }, { "vulnerability": "VCID-ypak-x4hq-6qgt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@0.3.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/159520?format=api", "purl": "pkg:gem/doorkeeper@0.4.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-pumw-cz31-tyg8" }, { "vulnerability": "VCID-unwy-fy1v-9qcr" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" }, { "vulnerability": "VCID-ypak-x4hq-6qgt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@0.4.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/159521?format=api", "purl": "pkg:gem/doorkeeper@0.4.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-pumw-cz31-tyg8" }, { "vulnerability": "VCID-unwy-fy1v-9qcr" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" }, { "vulnerability": "VCID-ypak-x4hq-6qgt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@0.4.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/159522?format=api", "purl": "pkg:gem/doorkeeper@0.4.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-pumw-cz31-tyg8" }, { "vulnerability": "VCID-unwy-fy1v-9qcr" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" }, { "vulnerability": "VCID-ypak-x4hq-6qgt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@0.4.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/159523?format=api", "purl": "pkg:gem/doorkeeper@0.5.0.rc1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-pumw-cz31-tyg8" }, { "vulnerability": "VCID-unwy-fy1v-9qcr" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" }, { "vulnerability": "VCID-ypak-x4hq-6qgt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@0.5.0.rc1" }, { "url": "http://public2.vulnerablecode.io/api/packages/159524?format=api", "purl": "pkg:gem/doorkeeper@0.5.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-pumw-cz31-tyg8" }, { "vulnerability": "VCID-unwy-fy1v-9qcr" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" }, { "vulnerability": "VCID-ypak-x4hq-6qgt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@0.5.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/159526?format=api", "purl": "pkg:gem/doorkeeper@0.6.0.rc1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-pumw-cz31-tyg8" }, { "vulnerability": "VCID-unwy-fy1v-9qcr" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" }, { "vulnerability": "VCID-ypak-x4hq-6qgt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@0.6.0.rc1" }, { "url": "http://public2.vulnerablecode.io/api/packages/159527?format=api", "purl": "pkg:gem/doorkeeper@0.6.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-pumw-cz31-tyg8" }, { "vulnerability": "VCID-unwy-fy1v-9qcr" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" }, { "vulnerability": "VCID-ypak-x4hq-6qgt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@0.6.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/159528?format=api", "purl": "pkg:gem/doorkeeper@0.6.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-pumw-cz31-tyg8" }, { "vulnerability": "VCID-unwy-fy1v-9qcr" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" }, { "vulnerability": "VCID-ypak-x4hq-6qgt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@0.6.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/159529?format=api", "purl": "pkg:gem/doorkeeper@0.6.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-pumw-cz31-tyg8" }, { "vulnerability": "VCID-unwy-fy1v-9qcr" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" }, { "vulnerability": "VCID-ypak-x4hq-6qgt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@0.6.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/159530?format=api", "purl": "pkg:gem/doorkeeper@0.6.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-pumw-cz31-tyg8" }, { "vulnerability": "VCID-unwy-fy1v-9qcr" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" }, { "vulnerability": "VCID-ypak-x4hq-6qgt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@0.6.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/159531?format=api", "purl": "pkg:gem/doorkeeper@0.6.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-pumw-cz31-tyg8" }, { "vulnerability": "VCID-unwy-fy1v-9qcr" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" }, { "vulnerability": "VCID-ypak-x4hq-6qgt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@0.6.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/159532?format=api", "purl": "pkg:gem/doorkeeper@0.6.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-unwy-fy1v-9qcr" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" }, { "vulnerability": "VCID-ypak-x4hq-6qgt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@0.6.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/159533?format=api", "purl": "pkg:gem/doorkeeper@0.6.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-unwy-fy1v-9qcr" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" }, { "vulnerability": "VCID-ypak-x4hq-6qgt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@0.6.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/159534?format=api", "purl": "pkg:gem/doorkeeper@0.6.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-unwy-fy1v-9qcr" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" }, { "vulnerability": "VCID-ypak-x4hq-6qgt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@0.6.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/159535?format=api", "purl": "pkg:gem/doorkeeper@0.7.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-unwy-fy1v-9qcr" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" }, { "vulnerability": "VCID-ypak-x4hq-6qgt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@0.7.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/159536?format=api", "purl": "pkg:gem/doorkeeper@0.7.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-unwy-fy1v-9qcr" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" }, { "vulnerability": "VCID-ypak-x4hq-6qgt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@0.7.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/159537?format=api", "purl": "pkg:gem/doorkeeper@0.7.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-unwy-fy1v-9qcr" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" }, { "vulnerability": "VCID-ypak-x4hq-6qgt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@0.7.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/159538?format=api", "purl": "pkg:gem/doorkeeper@0.7.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-unwy-fy1v-9qcr" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" }, { "vulnerability": "VCID-ypak-x4hq-6qgt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@0.7.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/159539?format=api", "purl": "pkg:gem/doorkeeper@0.7.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-unwy-fy1v-9qcr" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" }, { "vulnerability": "VCID-ypak-x4hq-6qgt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@0.7.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/159540?format=api", "purl": "pkg:gem/doorkeeper@1.0.0.rc1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-unwy-fy1v-9qcr" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" }, { "vulnerability": "VCID-ypak-x4hq-6qgt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@1.0.0.rc1" }, { "url": "http://public2.vulnerablecode.io/api/packages/159541?format=api", "purl": "pkg:gem/doorkeeper@1.0.0.rc2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-unwy-fy1v-9qcr" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" }, { "vulnerability": "VCID-ypak-x4hq-6qgt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@1.0.0.rc2" }, { "url": "http://public2.vulnerablecode.io/api/packages/159542?format=api", "purl": "pkg:gem/doorkeeper@1.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-unwy-fy1v-9qcr" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" }, { "vulnerability": "VCID-ypak-x4hq-6qgt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@1.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/159543?format=api", "purl": "pkg:gem/doorkeeper@1.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-unwy-fy1v-9qcr" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" }, { "vulnerability": "VCID-ypak-x4hq-6qgt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@1.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/75498?format=api", "purl": "pkg:gem/doorkeeper@1.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-unwy-fy1v-9qcr" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" }, { "vulnerability": "VCID-ypak-x4hq-6qgt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@1.2.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/159544?format=api", "purl": "pkg:gem/doorkeeper@1.3.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-unwy-fy1v-9qcr" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" }, { "vulnerability": "VCID-ypak-x4hq-6qgt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@1.3.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/159545?format=api", "purl": "pkg:gem/doorkeeper@1.3.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-unwy-fy1v-9qcr" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" }, { "vulnerability": "VCID-ypak-x4hq-6qgt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@1.3.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/159546?format=api", "purl": "pkg:gem/doorkeeper@1.4.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-unwy-fy1v-9qcr" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" }, { "vulnerability": "VCID-ypak-x4hq-6qgt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@1.4.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/51345?format=api", "purl": "pkg:gem/doorkeeper@1.4.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-unwy-fy1v-9qcr" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" }, { "vulnerability": "VCID-ypak-x4hq-6qgt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@1.4.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/52148?format=api", "purl": "pkg:gem/doorkeeper@1.4.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@1.4.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/159547?format=api", "purl": "pkg:gem/doorkeeper@2.0.0.alpha1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-unwy-fy1v-9qcr" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" }, { "vulnerability": "VCID-ypak-x4hq-6qgt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@2.0.0.alpha1" }, { "url": "http://public2.vulnerablecode.io/api/packages/159548?format=api", "purl": "pkg:gem/doorkeeper@2.0.0.rc2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-unwy-fy1v-9qcr" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" }, { "vulnerability": "VCID-ypak-x4hq-6qgt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@2.0.0.rc2" }, { "url": "http://public2.vulnerablecode.io/api/packages/51346?format=api", "purl": "pkg:gem/doorkeeper@2.0.0.rc3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-unwy-fy1v-9qcr" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" }, { "vulnerability": "VCID-ypak-x4hq-6qgt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@2.0.0.rc3" }, { "url": "http://public2.vulnerablecode.io/api/packages/159549?format=api", "purl": "pkg:gem/doorkeeper@2.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-unwy-fy1v-9qcr" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" }, { "vulnerability": "VCID-ypak-x4hq-6qgt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@2.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/159550?format=api", "purl": "pkg:gem/doorkeeper@2.0.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-unwy-fy1v-9qcr" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" }, { "vulnerability": "VCID-ypak-x4hq-6qgt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@2.0.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/55169?format=api", "purl": "pkg:gem/doorkeeper@2.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" }, { "vulnerability": "VCID-ypak-x4hq-6qgt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@2.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/162250?format=api", "purl": "pkg:gem/doorkeeper@2.1.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" }, { "vulnerability": "VCID-ypak-x4hq-6qgt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@2.1.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/52149?format=api", "purl": "pkg:gem/doorkeeper@2.1.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@2.1.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/162251?format=api", "purl": "pkg:gem/doorkeeper@2.1.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@2.1.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/162252?format=api", "purl": "pkg:gem/doorkeeper@2.1.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@2.1.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/162253?format=api", "purl": "pkg:gem/doorkeeper@2.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@2.2.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/162254?format=api", "purl": "pkg:gem/doorkeeper@2.2.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@2.2.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/162255?format=api", "purl": "pkg:gem/doorkeeper@2.2.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@2.2.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/162256?format=api", "purl": "pkg:gem/doorkeeper@3.0.0.rc1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@3.0.0.rc1" }, { "url": "http://public2.vulnerablecode.io/api/packages/162257?format=api", "purl": "pkg:gem/doorkeeper@3.0.0.rc2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@3.0.0.rc2" }, { "url": "http://public2.vulnerablecode.io/api/packages/162258?format=api", "purl": "pkg:gem/doorkeeper@3.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@3.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/162259?format=api", "purl": "pkg:gem/doorkeeper@3.0.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@3.0.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/162260?format=api", "purl": "pkg:gem/doorkeeper@3.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@3.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/162261?format=api", "purl": "pkg:gem/doorkeeper@4.0.0.rc1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@4.0.0.rc1" }, { "url": "http://public2.vulnerablecode.io/api/packages/162262?format=api", "purl": "pkg:gem/doorkeeper@4.0.0.rc2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@4.0.0.rc2" }, { "url": "http://public2.vulnerablecode.io/api/packages/162263?format=api", "purl": "pkg:gem/doorkeeper@4.0.0.rc3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@4.0.0.rc3" }, { "url": "http://public2.vulnerablecode.io/api/packages/162264?format=api", "purl": "pkg:gem/doorkeeper@4.0.0.rc4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@4.0.0.rc4" }, { "url": "http://public2.vulnerablecode.io/api/packages/162265?format=api", "purl": "pkg:gem/doorkeeper@4.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@4.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/162266?format=api", "purl": "pkg:gem/doorkeeper@4.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" }, { "vulnerability": "VCID-xa34-b97y-tye5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@4.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/53234?format=api", "purl": "pkg:gem/doorkeeper@4.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-jqsd-ye8h-hfd1" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@4.2.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/56116?format=api", "purl": "pkg:gem/doorkeeper@4.2.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@4.2.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/55170?format=api", "purl": "pkg:gem/doorkeeper@4.2.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bss3-b2mz-gyg6" }, { "vulnerability": "VCID-vfr9-mu8k-rbg5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@4.2.6" } ], "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-1000088", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00174", "scoring_system": "epss", "scoring_elements": "0.38497", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-1000088" }, { "reference_url": "https://blog.justinbull.ca/cve-2018-1000088-stored-xss-in-doorkeeper", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://blog.justinbull.ca/cve-2018-1000088-stored-xss-in-doorkeeper" }, { "reference_url": "https://github.com/doorkeeper-gem/doorkeeper", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/doorkeeper-gem/doorkeeper" }, { "reference_url": "https://github.com/doorkeeper-gem/doorkeeper/commit/7b1a8373ecd69768c896000c7971dbf48948c1b5", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/doorkeeper-gem/doorkeeper/commit/7b1a8373ecd69768c896000c7971dbf48948c1b5" }, { "reference_url": "https://github.com/doorkeeper-gem/doorkeeper/issues/969", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/doorkeeper-gem/doorkeeper/issues/969" }, { "reference_url": "https://github.com/doorkeeper-gem/doorkeeper/pull/970", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/doorkeeper-gem/doorkeeper/pull/970" }, { "reference_url": "https://github.com/doorkeeper-gem/doorkeeper/releases/tag/v4.3.0", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/doorkeeper-gem/doorkeeper/releases/tag/v4.3.0" }, { "reference_url": "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/doorkeeper/CVE-2018-1000088.yml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/doorkeeper/CVE-2018-1000088.yml" }, { "reference_url": "https://github.com/rubysec/ruby-advisory-db/pull/328/files", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/rubysec/ruby-advisory-db/pull/328/files" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1000088", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1000088" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=891069", "reference_id": "891069", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=891069" }, { "reference_url": "https://blog.justinbull.ca/cve-2018-1000088-stored-xss-in-doorkeeper/", "reference_id": "CVE-2018-1000088-STORED-XSS-IN-DOORKEEPER", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3", "scoring_elements": "" } ], "url": "https://blog.justinbull.ca/cve-2018-1000088-stored-xss-in-doorkeeper/" } ], "weaknesses": [ { "cwe_id": 1035, "name": "OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017." }, { "cwe_id": 79, "name": "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", "description": "The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users." }, { "cwe_id": 937, "name": "OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013." } ], "exploits": [], "severity_range_score": "4.0 - 7.6", "exploitability": "0.5", "weighted_severity": "6.2", "risk_score": 3.1, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vfr9-mu8k-rbg5" }