{"url":"http://public2.vulnerablecode.io/api/packages/201263?format=json","purl":"pkg:composer/codeigniter/framework@3.0rc3","type":"composer","namespace":"codeigniter","name":"framework","version":"3.0rc3","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"3.1.0","latest_non_vulnerable_version":"3.1.10","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/37886?format=json","vulnerability_id":"VCID-3kby-g5ka-cff3","summary":"SQL Injection\nCritical SQL injection bug in the ODBC database driver.","references":[{"reference_url":"https://forum.codeigniter.com/thread-65803.html","reference_id":"","reference_type":"","scores":[],"url":"https://forum.codeigniter.com/thread-65803.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/52330?format=json","purl":"pkg:composer/codeigniter/framework@3.1.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/codeigniter/framework@3.1.0"}],"aliases":["GMS-2016-130"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3kby-g5ka-cff3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/37934?format=json","vulnerability_id":"VCID-8wbz-we3g-x3ep","summary":"Cross-site Scripting\nXSS attack vector in Security Library method `xss_clean()`.","references":[{"reference_url":"https://www.codeigniter.com/user_guide/changelog.html#version-3-0-3","reference_id":"","reference_type":"","scores":[],"url":"https://www.codeigniter.com/user_guide/changelog.html#version-3-0-3"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/52389?format=json","purl":"pkg:composer/codeigniter/framework@3.0.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a6px-3qen-euct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/codeigniter/framework@3.0.3"}],"aliases":["GMS-2015-65"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8wbz-we3g-x3ep"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/38182?format=json","vulnerability_id":"VCID-a6px-3qen-euct","summary":"Critical SQL injection bug in the ODBC database driver\nThere's a critical SQL injection bug in the ODBC database driver.","references":[{"reference_url":"http://forum.codeigniter.com/thread-65803.html","reference_id":"","reference_type":"","scores":[],"url":"http://forum.codeigniter.com/thread-65803.html"},{"reference_url":"http://www.codeigniter.com/user_guide/changelog.html#version-3-1-0","reference_id":"","reference_type":"","scores":[],"url":"http://www.codeigniter.com/user_guide/changelog.html#version-3-1-0"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/52330?format=json","purl":"pkg:composer/codeigniter/framework@3.1.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/codeigniter/framework@3.1.0"}],"aliases":["GMS-2016-55"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-a6px-3qen-euct"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/37935?format=json","vulnerability_id":"VCID-gubk-qp7e-h7f4","summary":"XSS vulnerability\nThere's an XSS attack vector in Security Library method `xss_clean()`.","references":[{"reference_url":"https://github.com/bcit-ci/CodeIgniter/commit/249580e711d42fe966e52d7bcc0f349ba99a94a3","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/bcit-ci/CodeIgniter/commit/249580e711d42fe966e52d7bcc0f349ba99a94a3"},{"reference_url":"https://github.com/bcit-ci/CodeIgniter/commit/4fbf2d1a8e2b6d33e92f3f353b05388fd3229bd7","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/bcit-ci/CodeIgniter/commit/4fbf2d1a8e2b6d33e92f3f353b05388fd3229bd7"},{"reference_url":"https://github.com/bcit-ci/CodeIgniter/commit/71b1b3f5b2dcc0f4b652e9494e9853b82541ac8c","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/bcit-ci/CodeIgniter/commit/71b1b3f5b2dcc0f4b652e9494e9853b82541ac8c"},{"reference_url":"https://github.com/bcit-ci/CodeIgniter/commit/f0f47da9ae4227968ccc9ee6511bcab526498b4c","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/bcit-ci/CodeIgniter/commit/f0f47da9ae4227968ccc9ee6511bcab526498b4c"},{"reference_url":"http://www.codeigniter.com/user_guide/changelog.html#version-3-0-3","reference_id":"","reference_type":"","scores":[],"url":"http://www.codeigniter.com/user_guide/changelog.html#version-3-0-3"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/52389?format=json","purl":"pkg:composer/codeigniter/framework@3.0.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a6px-3qen-euct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/codeigniter/framework@3.0.3"}],"aliases":["GMS-2015-40"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-gubk-qp7e-h7f4"}],"fixing_vulnerabilities":[],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/codeigniter/framework@3.0rc3"}