Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:composer/yourls/yourls@1.8.2
Typecomposer
Namespaceyourls
Nameyourls
Version1.8.2
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_versionnull
Latest_non_vulnerable_versionnull
Affected_by_vulnerabilities
0
url VCID-9kre-mufw-xbez
vulnerability_id VCID-9kre-mufw-xbez
summary Cross-Site Request Forgery in YOURLS
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-0088
reference_id
reference_type
scores
0
value 0.00598
scoring_system epss
scoring_elements 0.6999
published_at 2026-06-12T12:55:00Z
1
value 0.00598
scoring_system epss
scoring_elements 0.69899
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-0088
1
reference_url https://github.com/yourls/yourls
reference_id
reference_type
scores
0
value 3.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N
1
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/yourls/yourls
2
reference_url https://github.com/yourls/yourls/commit/1de256d8694b0ec7d4df2ac1d5976d4055e09d59
reference_id
reference_type
scores
0
value 3.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N
1
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/yourls/yourls/commit/1de256d8694b0ec7d4df2ac1d5976d4055e09d59
3
reference_url https://github.com/YOURLS/YOURLS/issues/3170
reference_id
reference_type
scores
0
value 3.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N
1
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/YOURLS/YOURLS/issues/3170
4
reference_url https://github.com/YOURLS/YOURLS/pull/3264
reference_id
reference_type
scores
0
value 3.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N
1
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/YOURLS/YOURLS/pull/3264
5
reference_url https://huntr.dev/bounties/d01f0726-1a0f-4575-ae17-4b5319b11c29
reference_id
reference_type
scores
0
value 3.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N
1
value LOW
scoring_system generic_textual
scoring_elements
url https://huntr.dev/bounties/d01f0726-1a0f-4575-ae17-4b5319b11c29
6
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/webapps/52446.txt
reference_id CVE-2022-0088
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/webapps/52446.txt
7
reference_url https://nvd.nist.gov/vuln/detail/CVE-2022-0088
reference_id CVE-2022-0088
reference_type
scores
0
value 3.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N
1
value LOW
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2022-0088
8
reference_url https://github.com/MarkLee131/awesome-web-pocs/blob/main/CVE-2022-0088.md
reference_id CVE-2022-0088.MD
reference_type
scores
0
value 3.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N
1
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/MarkLee131/awesome-web-pocs/blob/main/CVE-2022-0088.md
9
reference_url https://github.com/advisories/GHSA-gx7g-wjxg-jwwj
reference_id GHSA-gx7g-wjxg-jwwj
reference_type
scores
0
value LOW
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-gx7g-wjxg-jwwj
fixed_packages
aliases CVE-2022-0088, GHSA-gx7g-wjxg-jwwj
risk_score 6.2
exploitability 2.0
weighted_severity 3.1
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9kre-mufw-xbez
1
url VCID-dzuq-p12p-4feb
vulnerability_id VCID-dzuq-p12p-4feb
summary YOURLS is vulnerable to XSS through JSONP and Callback request parameters
references
0
reference_url https://github.com/YOURLS/YOURLS
reference_id
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/YOURLS/YOURLS
1
reference_url https://github.com/YOURLS/YOURLS/commit/b1c6100e0aa6fef58c9c1a394ccc19352c3a480a
reference_id
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/YOURLS/YOURLS/commit/b1c6100e0aa6fef58c9c1a394ccc19352c3a480a
2
reference_url https://github.com/advisories/GHSA-6mp4-q625-mxjp
reference_id GHSA-6mp4-q625-mxjp
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-6mp4-q625-mxjp
3
reference_url https://github.com/YOURLS/YOURLS/security/advisories/GHSA-6mp4-q625-mxjp
reference_id GHSA-6mp4-q625-mxjp
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L
1
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/YOURLS/YOURLS/security/advisories/GHSA-6mp4-q625-mxjp
fixed_packages
aliases GHSA-6mp4-q625-mxjp
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dzuq-p12p-4feb
2
url VCID-zmu9-jquh-27dc
vulnerability_id VCID-zmu9-jquh-27dc
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-3783
reference_id
reference_type
scores
0
value 0.00355
scoring_system epss
scoring_elements 0.58189
published_at 2026-06-11T12:55:00Z
1
value 0.00355
scoring_system epss
scoring_elements 0.58302
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-3783
1
reference_url https://github.com/yourls/yourls
reference_id
reference_type
scores
0
value 6.6
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/yourls/yourls
2
reference_url https://github.com/yourls/yourls/commit/94f6bab91182142c96ff11f481585b445449efd4
reference_id
reference_type
scores
0
value 6.6
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/yourls/yourls/commit/94f6bab91182142c96ff11f481585b445449efd4
3
reference_url https://huntr.dev/bounties/b688e553-d0d9-4ddf-95a3-ff4b78004984
reference_id
reference_type
scores
0
value 6.6
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://huntr.dev/bounties/b688e553-d0d9-4ddf-95a3-ff4b78004984
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2021-3783
reference_id
reference_type
scores
0
value 6.6
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2021-3783
5
reference_url https://github.com/advisories/GHSA-cpq8-x35g-m439
reference_id GHSA-cpq8-x35g-m439
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-cpq8-x35g-m439
fixed_packages
aliases CVE-2021-3783, GHSA-cpq8-x35g-m439
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zmu9-jquh-27dc
Fixing_vulnerabilities
0
url VCID-gyzp-5sup-zud6
vulnerability_id VCID-gyzp-5sup-zud6
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-3785
reference_id
reference_type
scores
0
value 0.00318
scoring_system epss
scoring_elements 0.55294
published_at 2026-06-11T12:55:00Z
1
value 0.00318
scoring_system epss
scoring_elements 0.55415
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-3785
1
reference_url https://github.com/yourls/yourls
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/yourls/yourls
2
reference_url https://github.com/yourls/yourls/commit/1d8e224ebabb8a4c75b97f026950ed710faab0ff
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/yourls/yourls/commit/1d8e224ebabb8a4c75b97f026950ed710faab0ff
3
reference_url https://huntr.dev/bounties/b4085d13-54fa-4419-a2ce-1d780cc31638
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://huntr.dev/bounties/b4085d13-54fa-4419-a2ce-1d780cc31638
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2021-3785
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2021-3785
5
reference_url https://github.com/advisories/GHSA-m9fq-c9hp-59g7
reference_id GHSA-m9fq-c9hp-59g7
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-m9fq-c9hp-59g7
fixed_packages
0
url pkg:composer/yourls/yourls@1.8.2
purl pkg:composer/yourls/yourls@1.8.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-9kre-mufw-xbez
1
vulnerability VCID-dzuq-p12p-4feb
2
vulnerability VCID-zmu9-jquh-27dc
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/yourls/yourls@1.8.2
aliases CVE-2021-3785, GHSA-m9fq-c9hp-59g7
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-gyzp-5sup-zud6
Risk_score6.2
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:composer/yourls/yourls@1.8.2