{"url":"http://public2.vulnerablecode.io/api/packages/2389?format=json","purl":"pkg:alpm/archlinux/python-flask-security-too@3.3.3-3","type":"alpm","namespace":"archlinux","name":"python-flask-security-too","version":"3.3.3-3","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"4.0.1-1","latest_non_vulnerable_version":"4.0.1-1","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/5500?format=json","vulnerability_id":"VCID-ktqv-ggxh-skf6","summary":"cross-site request forgery","references":[{"reference_url":"https://github.com/Flask-Middleware/flask-security/commit/61d313150b5f620d0b800896c4f2199005e84b1f","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/Flask-Middleware/flask-security/commit/61d313150b5f620d0b800896c4f2199005e84b1f"},{"reference_url":"https://github.com/Flask-Middleware/flask-security/commit/6d50ee9169acf813257c37b75babe9c28e83542a","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/Flask-Middleware/flask-security/commit/6d50ee9169acf813257c37b75babe9c28e83542a"},{"reference_url":"https://github.com/Flask-Middleware/flask-security/pull/422","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/Flask-Middleware/flask-security/pull/422"},{"reference_url":"https://github.com/Flask-Middleware/flask-security/releases/tag/3.4.5","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/Flask-Middleware/flask-security/releases/tag/3.4.5"},{"reference_url":"https://github.com/Flask-Middleware/flask-security/security/advisories/GHSA-hh7m-rx4f-4vpv","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/Flask-Middleware/flask-security/security/advisories/GHSA-hh7m-rx4f-4vpv"},{"reference_url":"https://pypi.org/project/Flask-Security-Too","reference_id":"","reference_type":"","scores":[],"url":"https://pypi.org/project/Flask-Security-Too"},{"reference_url":"https://security.archlinux.org/ASA-202105-2","reference_id":"ASA-202105-2","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202105-2"},{"reference_url":"https://security.archlinux.org/AVG-1434","reference_id":"AVG-1434","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1434"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/2390?format=json","purl":"pkg:alpm/archlinux/python-flask-security-too@4.0.1-1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/python-flask-security-too@4.0.1-1"}],"aliases":["CVE-2021-21241","GHSA-hh7m-rx4f-4vpv","PYSEC-2021-91"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ktqv-ggxh-skf6"}],"fixing_vulnerabilities":[],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/python-flask-security-too@3.3.3-3"}