| 0 |
| url |
VCID-1has-6rxa-x3ht |
| vulnerability_id |
VCID-1has-6rxa-x3ht |
| summary |
CKAN vulnerable to stored XSS in resource description
The `helpers.markdown_extract()` function did not perform sufficient sanitization of input data before wrapping in an HTML literal element. This helper is used to render user-provided data on dataset, resource, organization or group pages (plus any page provided by an extension that used that helper function), leading to a potential XSS vector. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2025-54384, GHSA-2r4h-8jxv-w2j8
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-1has-6rxa-x3ht |
|
| 1 |
|
| 2 |
| url |
VCID-6epn-ddfg-8fe9 |
| vulnerability_id |
VCID-6epn-ddfg-8fe9 |
| summary |
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in ckan. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ckan@2.9.9 |
| purl |
pkg:pypi/ckan@2.9.9 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1has-6rxa-x3ht |
|
| 1 |
| vulnerability |
VCID-5hj2-93n8-bubp |
|
| 2 |
| vulnerability |
VCID-8nsf-dyxr-9fdf |
|
| 3 |
| vulnerability |
VCID-bah9-eeve-zybg |
|
| 4 |
| vulnerability |
VCID-kapx-7jk6-gkdy |
|
| 5 |
| vulnerability |
VCID-q8zb-pgzr-rqgs |
|
| 6 |
| vulnerability |
VCID-t3gx-x14x-2bf9 |
|
| 7 |
| vulnerability |
VCID-ueuv-2ufc-e7dq |
|
| 8 |
| vulnerability |
VCID-uhha-sv43-ryb2 |
|
| 9 |
| vulnerability |
VCID-wc53-cp3f-2faa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ckan@2.9.9 |
|
| 1 |
| url |
pkg:pypi/ckan@2.10.1 |
| purl |
pkg:pypi/ckan@2.10.1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1has-6rxa-x3ht |
|
| 1 |
| vulnerability |
VCID-5hj2-93n8-bubp |
|
| 2 |
| vulnerability |
VCID-8nsf-dyxr-9fdf |
|
| 3 |
| vulnerability |
VCID-am2d-z4n4-93ff |
|
| 4 |
| vulnerability |
VCID-azkb-63qy-9ubj |
|
| 5 |
| vulnerability |
VCID-bah9-eeve-zybg |
|
| 6 |
| vulnerability |
VCID-kapx-7jk6-gkdy |
|
| 7 |
| vulnerability |
VCID-q8zb-pgzr-rqgs |
|
| 8 |
| vulnerability |
VCID-t3gx-x14x-2bf9 |
|
| 9 |
| vulnerability |
VCID-ueuv-2ufc-e7dq |
|
| 10 |
| vulnerability |
VCID-uhha-sv43-ryb2 |
|
| 11 |
| vulnerability |
VCID-wc53-cp3f-2faa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ckan@2.10.1 |
|
|
| aliases |
CVE-2023-32321, GHSA-446m-hmmm-hm8m
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-6epn-ddfg-8fe9 |
|
| 3 |
|
| 4 |
| url |
VCID-bah9-eeve-zybg |
| vulnerability_id |
VCID-bah9-eeve-zybg |
| summary |
Potential log injection in reset user endpoint in CKAN
A user endpoint didn't perform filtering on an incoming parameter, which was added directly to the application log. This could lead to an attacker injecting false log entries or corrupt the log file format.
### Patches
This has been fixed in the CKAN 2.9.11 and 2.10.4 versions
### Workarounds
Override the `/user/reset` endpoint to filter the `id` parameter in order to exclude newlines |
| references |
|
| fixed_packages |
| 0 |
|
| 1 |
| url |
pkg:pypi/ckan@2.10.4 |
| purl |
pkg:pypi/ckan@2.10.4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1has-6rxa-x3ht |
|
| 1 |
| vulnerability |
VCID-5hj2-93n8-bubp |
|
| 2 |
| vulnerability |
VCID-8nsf-dyxr-9fdf |
|
| 3 |
| vulnerability |
VCID-am2d-z4n4-93ff |
|
| 4 |
| vulnerability |
VCID-azkb-63qy-9ubj |
|
| 5 |
| vulnerability |
VCID-kapx-7jk6-gkdy |
|
| 6 |
| vulnerability |
VCID-q8zb-pgzr-rqgs |
|
| 7 |
| vulnerability |
VCID-ueuv-2ufc-e7dq |
|
| 8 |
| vulnerability |
VCID-uhha-sv43-ryb2 |
|
| 9 |
| vulnerability |
VCID-wc53-cp3f-2faa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ckan@2.10.4 |
|
|
| aliases |
CVE-2024-27097, GHSA-8g38-3m6v-232j
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-bah9-eeve-zybg |
|
| 5 |
| url |
VCID-fy4c-77tm-9kam |
| vulnerability_id |
VCID-fy4c-77tm-9kam |
| summary |
In CKAN, versions 2.9.0 to 2.9.3 are affected by a stored XSS vulnerability via SVG file upload of users’ profile picture. This allows low privileged application users to store malicious scripts in their profile picture. These scripts are executed in a victim’s browser when they open the malicious profile picture |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/advisories/GHSA-6w9p-88qg-p3g3 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.4 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N |
|
| 1 |
| value |
MODERATE |
| scoring_system |
cvssv3.1_qr |
| scoring_elements |
|
|
| 2 |
| value |
5.1 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N |
|
| 3 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/advisories/GHSA-6w9p-88qg-p3g3 |
|
| 2 |
| reference_url |
https://github.com/ckan/ckan |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.4 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N |
|
| 1 |
| value |
5.1 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/ckan/ckan |
|
| 3 |
|
| 4 |
| reference_url |
https://github.com/ckan/ckan/pull/6477 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.4 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N |
|
| 1 |
| value |
5.1 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/ckan/ckan/pull/6477 |
|
| 5 |
|
| 6 |
|
| 7 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ckan@2.9.4 |
| purl |
pkg:pypi/ckan@2.9.4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1has-6rxa-x3ht |
|
| 1 |
| vulnerability |
VCID-5hj2-93n8-bubp |
|
| 2 |
| vulnerability |
VCID-6epn-ddfg-8fe9 |
|
| 3 |
| vulnerability |
VCID-8nsf-dyxr-9fdf |
|
| 4 |
| vulnerability |
VCID-bah9-eeve-zybg |
|
| 5 |
| vulnerability |
VCID-fy4c-77tm-9kam |
|
| 6 |
| vulnerability |
VCID-kapx-7jk6-gkdy |
|
| 7 |
| vulnerability |
VCID-mfpa-jdxh-vfd3 |
|
| 8 |
| vulnerability |
VCID-q8zb-pgzr-rqgs |
|
| 9 |
| vulnerability |
VCID-t3gx-x14x-2bf9 |
|
| 10 |
| vulnerability |
VCID-ueuv-2ufc-e7dq |
|
| 11 |
| vulnerability |
VCID-uhha-sv43-ryb2 |
|
| 12 |
| vulnerability |
VCID-w6cg-ubux-qbfg |
|
| 13 |
| vulnerability |
VCID-wc53-cp3f-2faa |
|
| 14 |
| vulnerability |
VCID-zqyk-rq9a-eked |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ckan@2.9.4 |
|
| 1 |
| url |
pkg:pypi/ckan@2.10.0 |
| purl |
pkg:pypi/ckan@2.10.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1has-6rxa-x3ht |
|
| 1 |
| vulnerability |
VCID-5hj2-93n8-bubp |
|
| 2 |
| vulnerability |
VCID-6epn-ddfg-8fe9 |
|
| 3 |
| vulnerability |
VCID-8nsf-dyxr-9fdf |
|
| 4 |
| vulnerability |
VCID-am2d-z4n4-93ff |
|
| 5 |
| vulnerability |
VCID-azkb-63qy-9ubj |
|
| 6 |
| vulnerability |
VCID-bah9-eeve-zybg |
|
| 7 |
| vulnerability |
VCID-kapx-7jk6-gkdy |
|
| 8 |
| vulnerability |
VCID-mfpa-jdxh-vfd3 |
|
| 9 |
| vulnerability |
VCID-q8zb-pgzr-rqgs |
|
| 10 |
| vulnerability |
VCID-t3gx-x14x-2bf9 |
|
| 11 |
| vulnerability |
VCID-ueuv-2ufc-e7dq |
|
| 12 |
| vulnerability |
VCID-uhha-sv43-ryb2 |
|
| 13 |
| vulnerability |
VCID-wc53-cp3f-2faa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ckan@2.10.0 |
|
|
| aliases |
CVE-2021-25967, GHSA-6w9p-88qg-p3g3, PYSEC-2021-841
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-fy4c-77tm-9kam |
|
| 6 |
|
| 7 |
| url |
VCID-mfpa-jdxh-vfd3 |
| vulnerability_id |
VCID-mfpa-jdxh-vfd3 |
| summary |
Improper Privilege Management
CKAN is an open-source data management system for powering data hubs and data portals. Prior to versions 2.9.9 and 2.10.1, the `ckan` user (equivalent to www-data) owned code and configuration files in the docker container and the `ckan` user had the permissions to use sudo. These issues allowed for code execution or privilege escalation if an arbitrary file write bug was available. Versions 2.9.9, 2.9.9-dev, 2.10.1, and 2.10.1-dev contain a patch. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ckan@2.9.9 |
| purl |
pkg:pypi/ckan@2.9.9 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1has-6rxa-x3ht |
|
| 1 |
| vulnerability |
VCID-5hj2-93n8-bubp |
|
| 2 |
| vulnerability |
VCID-8nsf-dyxr-9fdf |
|
| 3 |
| vulnerability |
VCID-bah9-eeve-zybg |
|
| 4 |
| vulnerability |
VCID-kapx-7jk6-gkdy |
|
| 5 |
| vulnerability |
VCID-q8zb-pgzr-rqgs |
|
| 6 |
| vulnerability |
VCID-t3gx-x14x-2bf9 |
|
| 7 |
| vulnerability |
VCID-ueuv-2ufc-e7dq |
|
| 8 |
| vulnerability |
VCID-uhha-sv43-ryb2 |
|
| 9 |
| vulnerability |
VCID-wc53-cp3f-2faa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ckan@2.9.9 |
|
| 1 |
| url |
pkg:pypi/ckan@2.10.1 |
| purl |
pkg:pypi/ckan@2.10.1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1has-6rxa-x3ht |
|
| 1 |
| vulnerability |
VCID-5hj2-93n8-bubp |
|
| 2 |
| vulnerability |
VCID-8nsf-dyxr-9fdf |
|
| 3 |
| vulnerability |
VCID-am2d-z4n4-93ff |
|
| 4 |
| vulnerability |
VCID-azkb-63qy-9ubj |
|
| 5 |
| vulnerability |
VCID-bah9-eeve-zybg |
|
| 6 |
| vulnerability |
VCID-kapx-7jk6-gkdy |
|
| 7 |
| vulnerability |
VCID-q8zb-pgzr-rqgs |
|
| 8 |
| vulnerability |
VCID-t3gx-x14x-2bf9 |
|
| 9 |
| vulnerability |
VCID-ueuv-2ufc-e7dq |
|
| 10 |
| vulnerability |
VCID-uhha-sv43-ryb2 |
|
| 11 |
| vulnerability |
VCID-wc53-cp3f-2faa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ckan@2.10.1 |
|
|
| aliases |
CVE-2023-32696, GHSA-c74x-xfvr-x5wg
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-mfpa-jdxh-vfd3 |
|
| 8 |
|
| 9 |
| url |
VCID-t3gx-x14x-2bf9 |
| vulnerability_id |
VCID-t3gx-x14x-2bf9 |
| summary |
Improper Handling of Length Parameter Inconsistency
CKAN is an open-source data management system for powering data hubs and data portals. Starting in version 2.0.0 and prior to versions 2.9.10 and 2.10.3, when submitting a POST request to the `/dataset/new` endpoint (including either the auth cookie or the `Authorization` header) with a specially-crafted field, an attacker can create an out-of-memory error in the hosting server. To trigger this error, the attacker need to have permissions to create or edit datasets. This vulnerability has been patched in CKAN 2.10.3 and 2.9.10. |
| references |
|
| fixed_packages |
| 0 |
|
| 1 |
| url |
pkg:pypi/ckan@2.10.3 |
| purl |
pkg:pypi/ckan@2.10.3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1has-6rxa-x3ht |
|
| 1 |
| vulnerability |
VCID-5hj2-93n8-bubp |
|
| 2 |
| vulnerability |
VCID-8nsf-dyxr-9fdf |
|
| 3 |
| vulnerability |
VCID-am2d-z4n4-93ff |
|
| 4 |
| vulnerability |
VCID-azkb-63qy-9ubj |
|
| 5 |
| vulnerability |
VCID-bah9-eeve-zybg |
|
| 6 |
| vulnerability |
VCID-kapx-7jk6-gkdy |
|
| 7 |
| vulnerability |
VCID-q8zb-pgzr-rqgs |
|
| 8 |
| vulnerability |
VCID-ueuv-2ufc-e7dq |
|
| 9 |
| vulnerability |
VCID-uhha-sv43-ryb2 |
|
| 10 |
| vulnerability |
VCID-wc53-cp3f-2faa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ckan@2.10.3 |
|
|
| aliases |
CVE-2023-50248, GHSA-7fgc-89cx-w8j5
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-t3gx-x14x-2bf9 |
|
| 10 |
|
| 11 |
|
| 12 |
| url |
VCID-w6cg-ubux-qbfg |
| vulnerability_id |
VCID-w6cg-ubux-qbfg |
| summary |
CKAN through 2.9.6 account takeovers by unauthenticated users when an existing user id is sent via an HTTP POST request. This allows a user to take over an existing account including superuser accounts. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://ckan.org |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
8.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
8.7 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://ckan.org |
|
| 2 |
| reference_url |
https://ckan.org/ |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
8.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-29T04:13:30Z/ |
|
|
| url |
https://ckan.org/ |
|
| 3 |
|
| 4 |
| reference_url |
https://github.com/ckan/ckan |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
8.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
8.7 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/ckan/ckan |
|
| 5 |
|
| 6 |
|
| 7 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ckan@2.9.7 |
| purl |
pkg:pypi/ckan@2.9.7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1has-6rxa-x3ht |
|
| 1 |
| vulnerability |
VCID-5hj2-93n8-bubp |
|
| 2 |
| vulnerability |
VCID-6epn-ddfg-8fe9 |
|
| 3 |
| vulnerability |
VCID-8nsf-dyxr-9fdf |
|
| 4 |
| vulnerability |
VCID-bah9-eeve-zybg |
|
| 5 |
| vulnerability |
VCID-kapx-7jk6-gkdy |
|
| 6 |
| vulnerability |
VCID-mfpa-jdxh-vfd3 |
|
| 7 |
| vulnerability |
VCID-q8zb-pgzr-rqgs |
|
| 8 |
| vulnerability |
VCID-t3gx-x14x-2bf9 |
|
| 9 |
| vulnerability |
VCID-ueuv-2ufc-e7dq |
|
| 10 |
| vulnerability |
VCID-uhha-sv43-ryb2 |
|
| 11 |
| vulnerability |
VCID-wc53-cp3f-2faa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ckan@2.9.7 |
|
|
| aliases |
CVE-2022-43685, GHSA-m2xp-jxfg-qq6g, PYSEC-2022-42987
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-w6cg-ubux-qbfg |
|
| 13 |
|
| 14 |
| url |
VCID-zqyk-rq9a-eked |
| vulnerability_id |
VCID-zqyk-rq9a-eked |
| summary |
Use of Insufficiently Random Values
CKAN is an open-source DMS (data management system) for powering data hubs and data portals. When creating a new container based on one of the Docker images listed below, the same secret key was being used by default. If the users didn't set a custom value via environment variables in the `.env` file, that key was shared across different CKAN instances, making it easy to forge authentication requests. Users overriding the default secret key in their own `.env` file are not affected by this issue. Note that the legacy images (ckan/ckan) located in the main CKAN repo are not affected by this issue. The affected images are ckan/ckan-docker, (ckan/ckan-base images), okfn/docker-ckan (openknowledge/ckan-base and openknowledge/ckan-dev images) keitaroinc/docker-ckan (keitaro/ckan images). |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ckan@2.9.7 |
| purl |
pkg:pypi/ckan@2.9.7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1has-6rxa-x3ht |
|
| 1 |
| vulnerability |
VCID-5hj2-93n8-bubp |
|
| 2 |
| vulnerability |
VCID-6epn-ddfg-8fe9 |
|
| 3 |
| vulnerability |
VCID-8nsf-dyxr-9fdf |
|
| 4 |
| vulnerability |
VCID-bah9-eeve-zybg |
|
| 5 |
| vulnerability |
VCID-kapx-7jk6-gkdy |
|
| 6 |
| vulnerability |
VCID-mfpa-jdxh-vfd3 |
|
| 7 |
| vulnerability |
VCID-q8zb-pgzr-rqgs |
|
| 8 |
| vulnerability |
VCID-t3gx-x14x-2bf9 |
|
| 9 |
| vulnerability |
VCID-ueuv-2ufc-e7dq |
|
| 10 |
| vulnerability |
VCID-uhha-sv43-ryb2 |
|
| 11 |
| vulnerability |
VCID-wc53-cp3f-2faa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ckan@2.9.7 |
|
|
| aliases |
CVE-2023-22746, GHSA-pr8j-v4c8-h62x
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-zqyk-rq9a-eked |
|