Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:composer/amphp/artax@1.0.5
Typecomposer
Namespaceamphp
Nameartax
Version1.0.5
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version1.0.6
Latest_non_vulnerable_version2.0.6
Affected_by_vulnerabilities
0
url VCID-ksam-dbjr-8ugw
vulnerability_id VCID-ksam-dbjr-8ugw
summary 
Cookie leakage, non-restricted cookie acceptance
Cookies of `foo.bar.example.com` are leaked to foo.bar. Additionally, any site can set cookies for any other site.
references
0
reference_url https://github.com/amphp/artax/releases/tag/v2.0.6
reference_id
reference_type
scores
url https://github.com/amphp/artax/releases/tag/v2.0.6
fixed_packages
0
url pkg:composer/amphp/artax@2.0.6
purl pkg:composer/amphp/artax@2.0.6
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/amphp/artax@2.0.6
aliases GMS-2017-131
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ksam-dbjr-8ugw
1
url VCID-yb95-bbrp-n7da
vulnerability_id VCID-yb95-bbrp-n7da
summary Cookie leakage to wrong origins and non-restricted cookie acceptance
references
0
reference_url https://github.com/amphp/artax/releases/tag/v2.0.6
reference_id
reference_type
scores
url https://github.com/amphp/artax/releases/tag/v2.0.6
fixed_packages
0
url pkg:composer/amphp/artax@1.0.6
purl pkg:composer/amphp/artax@1.0.6
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/amphp/artax@1.0.6
1
url pkg:composer/amphp/artax@2.0.6
purl pkg:composer/amphp/artax@2.0.6
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/amphp/artax@2.0.6
aliases GMS-2017-335
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-yb95-bbrp-n7da
Fixing_vulnerabilities
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:composer/amphp/artax@1.0.5