Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:npm/jquery.terminal@1.8.0
Typenpm
Namespace
Namejquery.terminal
Version1.8.0
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version1.21.0
Latest_non_vulnerable_version2.31.1
Affected_by_vulnerabilities
0
url VCID-24q8-vfny-2yfh
vulnerability_id VCID-24q8-vfny-2yfh
summary 
Reflected Cross-Site Scripting in jquery.terminal
Versions of `jquery.terminal` are vulnerable to Reflected Cross-Site Scripting. If the application has either of the options `anyLinks` or `invokeMethods` set to true, the application may execute arbitrary JavaScript through crafted malicious payloads due to insufficient sanitization.
references
0
reference_url https://github.com/jcubic/jquery.terminal/commit/c8b7727d21960031b62a4ef1ed52f3c634046211
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/jcubic/jquery.terminal/commit/c8b7727d21960031b62a4ef1ed52f3c634046211
1
reference_url https://www.npmjs.com/advisories/769
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.npmjs.com/advisories/769
2
reference_url https://github.com/advisories/GHSA-2hwp-g4g7-mwwj
reference_id GHSA-2hwp-g4g7-mwwj
reference_type
scores
url https://github.com/advisories/GHSA-2hwp-g4g7-mwwj
fixed_packages
0
url pkg:npm/jquery.terminal@1.21.0
purl pkg:npm/jquery.terminal@1.21.0
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/jquery.terminal@1.21.0
aliases GHSA-2hwp-g4g7-mwwj, GMS-2019-36
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-24q8-vfny-2yfh
Fixing_vulnerabilities
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:npm/jquery.terminal@1.8.0