Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-5jc4-962r-6kez

Summary

Information Exposure
REST API returns list of all site accesses.

Aliases

alias	GMS-2018-63

Fixed_packages

url	pkg:composer/ezsystems/ezpublish-kernel@5.0.0
purl	pkg:composer/ezsystems/ezpublish-kernel@5.0.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:composer/ezsystems/ezpublish-kernel@5.0.0

url	pkg:composer/ezsystems/ezpublish-kernel@6.7.9%2B1
purl	pkg:composer/ezsystems/ezpublish-kernel@6.7.9%2B1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:composer/ezsystems/ezpublish-kernel@6.7.9%252B1

url	pkg:composer/ezsystems/ezpublish-kernel@6.13.5%2B1
purl	pkg:composer/ezsystems/ezpublish-kernel@6.13.5%2B1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:composer/ezsystems/ezpublish-kernel@6.13.5%252B1

url	pkg:composer/ezsystems/ezpublish-kernel@7.2.4%2B1
purl	pkg:composer/ezsystems/ezpublish-kernel@7.2.4%2B1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:composer/ezsystems/ezpublish-kernel@7.2.4%252B1

url	pkg:composer/ezsystems/ezpublish-kernel@7.3.2%2B1
purl	pkg:composer/ezsystems/ezpublish-kernel@7.3.2%2B1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:composer/ezsystems/ezpublish-kernel@7.3.2%252B1

Affected_packages

url pkg:composer/ezsystems/ezpublish-kernel@5.3.0

purl pkg:composer/ezsystems/ezpublish-kernel@5.3.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5jc4-962r-6kez

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/ezsystems/ezpublish-kernel@5.3.0

url pkg:composer/ezsystems/ezpublish-kernel@5.4.0

purl pkg:composer/ezsystems/ezpublish-kernel@5.4.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5jc4-962r-6kez

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/ezsystems/ezpublish-kernel@5.4.0

url pkg:composer/ezsystems/ezpublish-kernel@6.0.0

purl pkg:composer/ezsystems/ezpublish-kernel@6.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5jc4-962r-6kez

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/ezsystems/ezpublish-kernel@6.0.0

url pkg:composer/ezsystems/ezpublish-kernel@6.8.0

purl pkg:composer/ezsystems/ezpublish-kernel@6.8.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5jc4-962r-6kez

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/ezsystems/ezpublish-kernel@6.8.0

url pkg:composer/ezsystems/ezpublish-kernel@7.0.0

purl pkg:composer/ezsystems/ezpublish-kernel@7.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5jc4-962r-6kez

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/ezsystems/ezpublish-kernel@7.0.0

url pkg:composer/ezsystems/ezpublish-kernel@7.3.0

purl pkg:composer/ezsystems/ezpublish-kernel@7.3.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5jc4-962r-6kez

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/ezsystems/ezpublish-kernel@7.3.0

References

reference_url	http://share.ez.no/community-project/security-advisories/ezsa-2018-008-rest-api-returns-list-of-all-siteaccesses
reference_id
reference_type
scores
url	http://share.ez.no/community-project/security-advisories/ezsa-2018-008-rest-api-returns-list-of-all-siteaccesses

Weaknesses

Exploits

Severity_range_score null

Exploitability null

Weighted_severity null

Risk_score null

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5jc4-962r-6kez

Vulnerability Instance