Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:composer/squizlabs/php_codesniffer@1.0.0
Typecomposer
Namespacesquizlabs
Namephp_codesniffer
Version1.0.0
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version2.8.1
Latest_non_vulnerable_version3.0.1
Affected_by_vulnerabilities
0
url VCID-f7xv-brzk-57hm
vulnerability_id VCID-f7xv-brzk-57hm
summary Arbitrary shell execution
references
0
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/squizlabs/php_codesniffer/2017-03-01.yaml
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/squizlabs/php_codesniffer/2017-03-01.yaml
1
reference_url https://github.com/squizlabs/PHP_CodeSniffer
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/squizlabs/PHP_CodeSniffer
2
reference_url https://github.com/squizlabs/PHP_CodeSniffer/releases/tag/2.8.1
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/squizlabs/PHP_CodeSniffer/releases/tag/2.8.1
3
reference_url https://github.com/advisories/GHSA-mhfv-8rc9-w38c
reference_id GHSA-mhfv-8rc9-w38c
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-mhfv-8rc9-w38c
fixed_packages
0
url pkg:composer/squizlabs/php_codesniffer@2.8.1
purl pkg:composer/squizlabs/php_codesniffer@2.8.1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/squizlabs/php_codesniffer@2.8.1
aliases GHSA-mhfv-8rc9-w38c, GMS-2022-514
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-f7xv-brzk-57hm
1
url VCID-np7j-auay-17at
vulnerability_id VCID-np7j-auay-17at
summary 
Code Injection
Arbitrary shell execution in php_codesniffer.
references
0
reference_url https://github.com/squizlabs/PHP_CodeSniffer/releases/tag/2.8.1
reference_id
reference_type
scores
url https://github.com/squizlabs/PHP_CodeSniffer/releases/tag/2.8.1
fixed_packages
0
url pkg:composer/squizlabs/php_codesniffer@2.0.0
purl pkg:composer/squizlabs/php_codesniffer@2.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-cjfu-e1rn-1qdx
1
vulnerability VCID-f7xv-brzk-57hm
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/squizlabs/php_codesniffer@2.0.0
aliases GMS-2017-344
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-np7j-auay-17at
Fixing_vulnerabilities
Risk_score4.0
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:composer/squizlabs/php_codesniffer@1.0.0