{"url":"http://public2.vulnerablecode.io/api/packages/382266?format=json","purl":"pkg:composer/showdoc/showdoc@2.8.5","type":"composer","namespace":"showdoc","name":"showdoc","version":"2.8.5","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"3.8.1","latest_non_vulnerable_version":"3.8.1","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/206990?format=json","vulnerability_id":"VCID-158e-gra4-pke9","summary":"Open Redirect in showdoc","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-4000","reference_id":"","reference_type":"","scores":[{"value":"0.00196","scoring_system":"epss","scoring_elements":"0.41466","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-4000"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/c7f10033eba5f2b5a537f9af9ba2379138e67138","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/c7f10033eba5f2b5a537f9af9ba2379138e67138"},{"reference_url":"https://huntr.dev/bounties/e4d803e0-3104-432c-80b3-34bc453c8962","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/e4d803e0-3104-432c-80b3-34bc453c8962"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-4000","reference_id":"CVE-2021-4000","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-4000"},{"reference_url":"https://github.com/advisories/GHSA-8c9x-wfgj-v78w","reference_id":"GHSA-8c9x-wfgj-v78w","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-8c9x-wfgj-v78w"}],"fixed_packages":[],"aliases":["CVE-2021-4000","GHSA-8c9x-wfgj-v78w"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-158e-gra4-pke9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/208429?format=json","vulnerability_id":"VCID-3ez4-xzmr-qbd6","summary":"Cross-site Scripting in ShowDoc","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0880","reference_id":"","reference_type":"","scores":[{"value":"0.00304","scoring_system":"epss","scoring_elements":"0.54064","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0880"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/818d7fe731f452acccacf731ce47ec27ad68049c","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/818d7fe731f452acccacf731ce47ec27ad68049c"},{"reference_url":"https://huntr.dev/bounties/df347aa9-ed9b-4f75-af99-c83b8aad3bcf","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/df347aa9-ed9b-4f75-af99-c83b8aad3bcf"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0880","reference_id":"CVE-2022-0880","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0880"},{"reference_url":"https://github.com/advisories/GHSA-gq77-3r6x-383w","reference_id":"GHSA-gq77-3r6x-383w","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-gq77-3r6x-383w"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/18825?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3n97-92yn-ckck"},{"vulnerability":"VCID-93sj-gsh9-5bb1"},{"vulnerability":"VCID-auh1-nb9b-zfg3"},{"vulnerability":"VCID-deg7-4ma6-tyd2"},{"vulnerability":"VCID-ewjx-puts-f7h4"},{"vulnerability":"VCID-fk3v-vaj6-dka4"},{"vulnerability":"VCID-kjsp-v37r-yue1"},{"vulnerability":"VCID-kwse-tbqn-tqfr"},{"vulnerability":"VCID-m3mp-m3pq-fbd9"},{"vulnerability":"VCID-mybn-n9zu-ukfm"},{"vulnerability":"VCID-ny73-vkpe-mye4"},{"vulnerability":"VCID-pupy-jprc-17f4"},{"vulnerability":"VCID-s5vu-x24p-4uga"},{"vulnerability":"VCID-u4xp-xb3z-r7dm"},{"vulnerability":"VCID-ubse-tfbr-audj"},{"vulnerability":"VCID-urvq-g1g1-8bgy"},{"vulnerability":"VCID-vjve-v4fx-hffb"},{"vulnerability":"VCID-x5zj-4exs-t7em"},{"vulnerability":"VCID-zsvd-ysfj-gkad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.2"},{"url":"http://public2.vulnerablecode.io/api/packages/19684?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ubse-tfbr-audj"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.4"}],"aliases":["CVE-2022-0880","GHSA-gq77-3r6x-383w"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3ez4-xzmr-qbd6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/208490?format=json","vulnerability_id":"VCID-3n97-92yn-ckck","summary":"File Upload Restriction Bypass leading to Cross-site Scripting in ShowDoc","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0951","reference_id":"","reference_type":"","scores":[{"value":"0.00343","scoring_system":"epss","scoring_elements":"0.57297","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0951"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/237ac6d43bf3728bf3587c486a23b4a48ea7acb3","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/237ac6d43bf3728bf3587c486a23b4a48ea7acb3"},{"reference_url":"https://huntr.dev/bounties/b3a983a3-17f9-4aa8-92d7-8a0c92a93932","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/b3a983a3-17f9-4aa8-92d7-8a0c92a93932"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0951","reference_id":"CVE-2022-0951","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0951"},{"reference_url":"https://github.com/advisories/GHSA-j6jg-w79c-7p8v","reference_id":"GHSA-j6jg-w79c-7p8v","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-j6jg-w79c-7p8v"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/19684?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ubse-tfbr-audj"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.4"}],"aliases":["CVE-2022-0951","GHSA-j6jg-w79c-7p8v"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3n97-92yn-ckck"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/206765?format=json","vulnerability_id":"VCID-5a8d-7jh7-tfev","summary":"showdoc is vulnerable to URL Redirection to Untrusted Site","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3989","reference_id":"","reference_type":"","scores":[{"value":"0.00207","scoring_system":"epss","scoring_elements":"0.43172","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3989"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/335afc7ed6d6627c3d0434aa9acc168c77117614","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/335afc7ed6d6627c3d0434aa9acc168c77117614"},{"reference_url":"https://huntr.dev/bounties/ffc61eff-efea-42c5-92c2-e043fdf904d5","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/ffc61eff-efea-42c5-92c2-e043fdf904d5"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-3989","reference_id":"CVE-2021-3989","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-3989"},{"reference_url":"https://github.com/advisories/GHSA-f545-vpwp-r9j7","reference_id":"GHSA-f545-vpwp-r9j7","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-f545-vpwp-r9j7"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/18014?format=json","purl":"pkg:composer/showdoc/showdoc@2.9.13","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-158e-gra4-pke9"},{"vulnerability":"VCID-3ez4-xzmr-qbd6"},{"vulnerability":"VCID-3n97-92yn-ckck"},{"vulnerability":"VCID-93sj-gsh9-5bb1"},{"vulnerability":"VCID-auh1-nb9b-zfg3"},{"vulnerability":"VCID-deg7-4ma6-tyd2"},{"vulnerability":"VCID-ewjx-puts-f7h4"},{"vulnerability":"VCID-fk3v-vaj6-dka4"},{"vulnerability":"VCID-fyk4-u9vt-pfgj"},{"vulnerability":"VCID-kjsp-v37r-yue1"},{"vulnerability":"VCID-kwse-tbqn-tqfr"},{"vulnerability":"VCID-m3mp-m3pq-fbd9"},{"vulnerability":"VCID-mybn-n9zu-ukfm"},{"vulnerability":"VCID-ny73-vkpe-mye4"},{"vulnerability":"VCID-pe2f-4yes-cyew"},{"vulnerability":"VCID-pupy-jprc-17f4"},{"vulnerability":"VCID-s5vu-x24p-4uga"},{"vulnerability":"VCID-u4xp-xb3z-r7dm"},{"vulnerability":"VCID-ubse-tfbr-audj"},{"vulnerability":"VCID-urvq-g1g1-8bgy"},{"vulnerability":"VCID-uwjs-9kjy-jqcp"},{"vulnerability":"VCID-vjve-v4fx-hffb"},{"vulnerability":"VCID-w3qg-kqjv-r7dk"},{"vulnerability":"VCID-x5zj-4exs-t7em"},{"vulnerability":"VCID-zsvd-ysfj-gkad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.9.13"}],"aliases":["CVE-2021-3989","GHSA-f545-vpwp-r9j7"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-5a8d-7jh7-tfev"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/206759?format=json","vulnerability_id":"VCID-7ugv-9fct-fbgh","summary":"showdoc is vulnerable to Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3990","reference_id":"","reference_type":"","scores":[{"value":"0.00301","scoring_system":"epss","scoring_elements":"0.53855","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3990"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/a9886f26c08225e0adca75c67dfca3f7c42b87d0","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/a9886f26c08225e0adca75c67dfca3f7c42b87d0"},{"reference_url":"https://huntr.dev/bounties/0680067d-56a7-4412-b06e-a267e850ae9f","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/0680067d-56a7-4412-b06e-a267e850ae9f"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-3990","reference_id":"CVE-2021-3990","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-3990"},{"reference_url":"https://github.com/advisories/GHSA-vrgh-5w3c-ggf8","reference_id":"GHSA-vrgh-5w3c-ggf8","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-vrgh-5w3c-ggf8"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/18014?format=json","purl":"pkg:composer/showdoc/showdoc@2.9.13","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-158e-gra4-pke9"},{"vulnerability":"VCID-3ez4-xzmr-qbd6"},{"vulnerability":"VCID-3n97-92yn-ckck"},{"vulnerability":"VCID-93sj-gsh9-5bb1"},{"vulnerability":"VCID-auh1-nb9b-zfg3"},{"vulnerability":"VCID-deg7-4ma6-tyd2"},{"vulnerability":"VCID-ewjx-puts-f7h4"},{"vulnerability":"VCID-fk3v-vaj6-dka4"},{"vulnerability":"VCID-fyk4-u9vt-pfgj"},{"vulnerability":"VCID-kjsp-v37r-yue1"},{"vulnerability":"VCID-kwse-tbqn-tqfr"},{"vulnerability":"VCID-m3mp-m3pq-fbd9"},{"vulnerability":"VCID-mybn-n9zu-ukfm"},{"vulnerability":"VCID-ny73-vkpe-mye4"},{"vulnerability":"VCID-pe2f-4yes-cyew"},{"vulnerability":"VCID-pupy-jprc-17f4"},{"vulnerability":"VCID-s5vu-x24p-4uga"},{"vulnerability":"VCID-u4xp-xb3z-r7dm"},{"vulnerability":"VCID-ubse-tfbr-audj"},{"vulnerability":"VCID-urvq-g1g1-8bgy"},{"vulnerability":"VCID-uwjs-9kjy-jqcp"},{"vulnerability":"VCID-vjve-v4fx-hffb"},{"vulnerability":"VCID-w3qg-kqjv-r7dk"},{"vulnerability":"VCID-x5zj-4exs-t7em"},{"vulnerability":"VCID-zsvd-ysfj-gkad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.9.13"}],"aliases":["CVE-2021-3990","GHSA-vrgh-5w3c-ggf8"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7ugv-9fct-fbgh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/208444?format=json","vulnerability_id":"VCID-93sj-gsh9-5bb1","summary":"Cross-site Scripting in ShowDoc","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0941","reference_id":"","reference_type":"","scores":[{"value":"0.00196","scoring_system":"epss","scoring_elements":"0.41431","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0941"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/4b6e6603c714aab1de346c5f5cb0bbb4c871be1f","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/4b6e6603c714aab1de346c5f5cb0bbb4c871be1f"},{"reference_url":"https://huntr.dev/bounties/040a910e-e689-4fcb-9e4f-95206515d1bc","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/040a910e-e689-4fcb-9e4f-95206515d1bc"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0941","reference_id":"CVE-2022-0941","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0941"},{"reference_url":"https://github.com/advisories/GHSA-wg4r-q74r-p7c8","reference_id":"GHSA-wg4r-q74r-p7c8","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-wg4r-q74r-p7c8"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/19684?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ubse-tfbr-audj"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.4"}],"aliases":["CVE-2022-0941","GHSA-wg4r-q74r-p7c8"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-93sj-gsh9-5bb1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/206770?format=json","vulnerability_id":"VCID-am4w-8by3-aygq","summary":"showdoc is vulnerable to Cross-Site Request Forgery (CSRF)","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3993","reference_id":"","reference_type":"","scores":[{"value":"0.00117","scoring_system":"epss","scoring_elements":"0.30104","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3993"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/654e871a3923e79076818a9a03533fe88222c871","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/654e871a3923e79076818a9a03533fe88222c871"},{"reference_url":"https://huntr.dev/bounties/0aa84736-139b-4ae7-becf-604f7f60b1c9","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/0aa84736-139b-4ae7-becf-604f7f60b1c9"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-3993","reference_id":"CVE-2021-3993","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-3993"},{"reference_url":"https://github.com/advisories/GHSA-6pqm-xvfc-w7p4","reference_id":"GHSA-6pqm-xvfc-w7p4","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-6pqm-xvfc-w7p4"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/18014?format=json","purl":"pkg:composer/showdoc/showdoc@2.9.13","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-158e-gra4-pke9"},{"vulnerability":"VCID-3ez4-xzmr-qbd6"},{"vulnerability":"VCID-3n97-92yn-ckck"},{"vulnerability":"VCID-93sj-gsh9-5bb1"},{"vulnerability":"VCID-auh1-nb9b-zfg3"},{"vulnerability":"VCID-deg7-4ma6-tyd2"},{"vulnerability":"VCID-ewjx-puts-f7h4"},{"vulnerability":"VCID-fk3v-vaj6-dka4"},{"vulnerability":"VCID-fyk4-u9vt-pfgj"},{"vulnerability":"VCID-kjsp-v37r-yue1"},{"vulnerability":"VCID-kwse-tbqn-tqfr"},{"vulnerability":"VCID-m3mp-m3pq-fbd9"},{"vulnerability":"VCID-mybn-n9zu-ukfm"},{"vulnerability":"VCID-ny73-vkpe-mye4"},{"vulnerability":"VCID-pe2f-4yes-cyew"},{"vulnerability":"VCID-pupy-jprc-17f4"},{"vulnerability":"VCID-s5vu-x24p-4uga"},{"vulnerability":"VCID-u4xp-xb3z-r7dm"},{"vulnerability":"VCID-ubse-tfbr-audj"},{"vulnerability":"VCID-urvq-g1g1-8bgy"},{"vulnerability":"VCID-uwjs-9kjy-jqcp"},{"vulnerability":"VCID-vjve-v4fx-hffb"},{"vulnerability":"VCID-w3qg-kqjv-r7dk"},{"vulnerability":"VCID-x5zj-4exs-t7em"},{"vulnerability":"VCID-zsvd-ysfj-gkad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.9.13"}],"aliases":["CVE-2021-3993","GHSA-6pqm-xvfc-w7p4"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-am4w-8by3-aygq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/208488?format=json","vulnerability_id":"VCID-auh1-nb9b-zfg3","summary":"Cross-site Scripting in ShowDoc","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0950","reference_id":"","reference_type":"","scores":[{"value":"0.00281","scoring_system":"epss","scoring_elements":"0.51849","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0950"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/237ac6d43bf3728bf3587c486a23b4a48ea7acb3","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/237ac6d43bf3728bf3587c486a23b4a48ea7acb3"},{"reference_url":"https://huntr.dev/bounties/acc23996-bd57-448f-9eb4-05a8a046c2dc","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/acc23996-bd57-448f-9eb4-05a8a046c2dc"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0950","reference_id":"CVE-2022-0950","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0950"},{"reference_url":"https://github.com/advisories/GHSA-v94v-pxqp-5qgj","reference_id":"GHSA-v94v-pxqp-5qgj","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-v94v-pxqp-5qgj"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/19684?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ubse-tfbr-audj"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.4"}],"aliases":["CVE-2022-0950","GHSA-v94v-pxqp-5qgj"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-auh1-nb9b-zfg3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/206578?format=json","vulnerability_id":"VCID-bvhd-mwnt-ruev","summary":"showdoc is vulnerable to Cross-Site Request Forgery (CSRF)","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3683","reference_id":"","reference_type":"","scores":[{"value":"0.00112","scoring_system":"epss","scoring_elements":"0.2922","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3683"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/67093c879a6563aa6ee08003177777d1975e2351","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/67093c879a6563aa6ee08003177777d1975e2351"},{"reference_url":"https://huntr.dev/bounties/063a339a-5d78-40d6-a96a-6716960e8134","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/063a339a-5d78-40d6-a96a-6716960e8134"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-3683","reference_id":"CVE-2021-3683","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-3683"},{"reference_url":"https://github.com/advisories/GHSA-x5jp-9fmm-m9pf","reference_id":"GHSA-x5jp-9fmm-m9pf","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-x5jp-9fmm-m9pf"}],"fixed_packages":[],"aliases":["CVE-2021-3683","GHSA-x5jp-9fmm-m9pf"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-bvhd-mwnt-ruev"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/120770?format=json","vulnerability_id":"VCID-c77c-87m4-wkaw","summary":"An unrestricted file upload vulnerability in ShowDoc caused by improper validation of file extension allows execution of arbitrary PHP, leading to remote code execution.This issue affects ShowDoc: before 2.8.7.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-0520","reference_id":"","reference_type":"","scores":[{"value":"0.02105","scoring_system":"epss","scoring_elements":"0.8445","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-0520"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"9.4","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:L/SC:H/SI:H/SA:L"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2025-0520","reference_id":"","reference_type":"","scores":[{"value":"9.4","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:L/SC:H/SI:H/SA:L"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2025-0520"},{"reference_url":"https://github.com/star7th/showdoc/pull/1059","reference_id":"1059","reference_type":"","scores":[{"value":"9.4","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:L/SC:H/SI:H/SA:L"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-04-29T20:38:44Z/"}],"url":"https://github.com/star7th/showdoc/pull/1059"},{"reference_url":"https://github.com/vulhub/vulhub/tree/master/showdoc/CNVD-2020-26585","reference_id":"CNVD-2020-26585","reference_type":"","scores":[{"value":"9.4","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:L/SC:H/SI:H/SA:L"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-04-29T20:38:44Z/"}],"url":"https://github.com/vulhub/vulhub/tree/master/showdoc/CNVD-2020-26585"},{"reference_url":"https://www.cnvd.org.cn/flaw/show/CNVD-2020-26585","reference_id":"CNVD-2020-26585","reference_type":"","scores":[{"value":"9.4","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:L/SC:H/SI:H/SA:L"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-04-29T20:38:44Z/"}],"url":"https://www.cnvd.org.cn/flaw/show/CNVD-2020-26585"},{"reference_url":"https://github.com/advisories/GHSA-6jmr-r7p6-f5wr","reference_id":"GHSA-6jmr-r7p6-f5wr","reference_type":"","scores":[],"url":"https://github.com/advisories/GHSA-6jmr-r7p6-f5wr"},{"reference_url":"https://www.vulncheck.com/advisories/showdoc-unauthenticated-file-upload-rce","reference_id":"showdoc-unauthenticated-file-upload-rce","reference_type":"","scores":[{"value":"9.4","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:L/SC:H/SI:H/SA:L"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-04-29T20:38:44Z/"}],"url":"https://www.vulncheck.com/advisories/showdoc-unauthenticated-file-upload-rce"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/376550?format=json","purl":"pkg:composer/showdoc/showdoc@2.8.7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-158e-gra4-pke9"},{"vulnerability":"VCID-3ez4-xzmr-qbd6"},{"vulnerability":"VCID-3n97-92yn-ckck"},{"vulnerability":"VCID-5a8d-7jh7-tfev"},{"vulnerability":"VCID-7ugv-9fct-fbgh"},{"vulnerability":"VCID-93sj-gsh9-5bb1"},{"vulnerability":"VCID-am4w-8by3-aygq"},{"vulnerability":"VCID-auh1-nb9b-zfg3"},{"vulnerability":"VCID-bvhd-mwnt-ruev"},{"vulnerability":"VCID-deg7-4ma6-tyd2"},{"vulnerability":"VCID-eqcs-tmpq-9ub7"},{"vulnerability":"VCID-ewjx-puts-f7h4"},{"vulnerability":"VCID-fa1j-6bzu-a3a5"},{"vulnerability":"VCID-fk3v-vaj6-dka4"},{"vulnerability":"VCID-fyk4-u9vt-pfgj"},{"vulnerability":"VCID-kjsp-v37r-yue1"},{"vulnerability":"VCID-kwse-tbqn-tqfr"},{"vulnerability":"VCID-m3mp-m3pq-fbd9"},{"vulnerability":"VCID-mybn-n9zu-ukfm"},{"vulnerability":"VCID-ny73-vkpe-mye4"},{"vulnerability":"VCID-pe2f-4yes-cyew"},{"vulnerability":"VCID-pupy-jprc-17f4"},{"vulnerability":"VCID-s5vu-x24p-4uga"},{"vulnerability":"VCID-u4xp-xb3z-r7dm"},{"vulnerability":"VCID-ubse-tfbr-audj"},{"vulnerability":"VCID-urvq-g1g1-8bgy"},{"vulnerability":"VCID-uwjs-9kjy-jqcp"},{"vulnerability":"VCID-vjve-v4fx-hffb"},{"vulnerability":"VCID-w3qg-kqjv-r7dk"},{"vulnerability":"VCID-wbdc-jg9s-vqbp"},{"vulnerability":"VCID-x5zj-4exs-t7em"},{"vulnerability":"VCID-x91u-2hwa-3fhu"},{"vulnerability":"VCID-xe8d-vba4-2yhw"},{"vulnerability":"VCID-zsvd-ysfj-gkad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.8.7"}],"aliases":["CVE-2025-0520","GHSA-6jmr-r7p6-f5wr"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-c77c-87m4-wkaw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/208481?format=json","vulnerability_id":"VCID-deg7-4ma6-tyd2","summary":"Cross-site Scripting in ShowDoc","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0942","reference_id":"","reference_type":"","scores":[{"value":"0.00344","scoring_system":"epss","scoring_elements":"0.57358","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0942"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/3caa32334db0c277b84e993eaca2036f5d1dbef8","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/3caa32334db0c277b84e993eaca2036f5d1dbef8"},{"reference_url":"https://huntr.dev/bounties/a412707c-18da-4c84-adc0-9801ed8068c9","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/a412707c-18da-4c84-adc0-9801ed8068c9"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0942","reference_id":"CVE-2022-0942","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0942"},{"reference_url":"https://github.com/advisories/GHSA-9fcc-7g44-mxrj","reference_id":"GHSA-9fcc-7g44-mxrj","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-9fcc-7g44-mxrj"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/19684?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ubse-tfbr-audj"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.4"}],"aliases":["CVE-2022-0942","GHSA-9fcc-7g44-mxrj"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-deg7-4ma6-tyd2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/206576?format=json","vulnerability_id":"VCID-eqcs-tmpq-9ub7","summary":"showdoc is vulnerable to Cross-Site Request Forgery (CSRF)","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3776","reference_id":"","reference_type":"","scores":[{"value":"0.00112","scoring_system":"epss","scoring_elements":"0.2922","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3776"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/67093c879a6563aa6ee08003177777d1975e2351","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/67093c879a6563aa6ee08003177777d1975e2351"},{"reference_url":"https://huntr.dev/bounties/e0edf27d-437e-44fe-907a-df020f385304","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/e0edf27d-437e-44fe-907a-df020f385304"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-3776","reference_id":"CVE-2021-3776","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-3776"},{"reference_url":"https://github.com/advisories/GHSA-m4hj-wg2r-qpcr","reference_id":"GHSA-m4hj-wg2r-qpcr","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-m4hj-wg2r-qpcr"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/18014?format=json","purl":"pkg:composer/showdoc/showdoc@2.9.13","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-158e-gra4-pke9"},{"vulnerability":"VCID-3ez4-xzmr-qbd6"},{"vulnerability":"VCID-3n97-92yn-ckck"},{"vulnerability":"VCID-93sj-gsh9-5bb1"},{"vulnerability":"VCID-auh1-nb9b-zfg3"},{"vulnerability":"VCID-deg7-4ma6-tyd2"},{"vulnerability":"VCID-ewjx-puts-f7h4"},{"vulnerability":"VCID-fk3v-vaj6-dka4"},{"vulnerability":"VCID-fyk4-u9vt-pfgj"},{"vulnerability":"VCID-kjsp-v37r-yue1"},{"vulnerability":"VCID-kwse-tbqn-tqfr"},{"vulnerability":"VCID-m3mp-m3pq-fbd9"},{"vulnerability":"VCID-mybn-n9zu-ukfm"},{"vulnerability":"VCID-ny73-vkpe-mye4"},{"vulnerability":"VCID-pe2f-4yes-cyew"},{"vulnerability":"VCID-pupy-jprc-17f4"},{"vulnerability":"VCID-s5vu-x24p-4uga"},{"vulnerability":"VCID-u4xp-xb3z-r7dm"},{"vulnerability":"VCID-ubse-tfbr-audj"},{"vulnerability":"VCID-urvq-g1g1-8bgy"},{"vulnerability":"VCID-uwjs-9kjy-jqcp"},{"vulnerability":"VCID-vjve-v4fx-hffb"},{"vulnerability":"VCID-w3qg-kqjv-r7dk"},{"vulnerability":"VCID-x5zj-4exs-t7em"},{"vulnerability":"VCID-zsvd-ysfj-gkad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.9.13"}],"aliases":["CVE-2021-3776","GHSA-m4hj-wg2r-qpcr"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-eqcs-tmpq-9ub7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/208492?format=json","vulnerability_id":"VCID-ewjx-puts-f7h4","summary":"Stored Cross-site Scripting in ShowDoc","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0945","reference_id":"","reference_type":"","scores":[{"value":"0.0035","scoring_system":"epss","scoring_elements":"0.57874","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0945"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/ba45d19e1d77a7eea866dab30eff5da552694891","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/ba45d19e1d77a7eea866dab30eff5da552694891"},{"reference_url":"https://huntr.dev/bounties/8702e2bf-4af2-4391-b651-c8c89e7d089e","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/8702e2bf-4af2-4391-b651-c8c89e7d089e"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0945","reference_id":"CVE-2022-0945","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0945"},{"reference_url":"https://github.com/advisories/GHSA-vpwq-6cp4-ffqc","reference_id":"GHSA-vpwq-6cp4-ffqc","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-vpwq-6cp4-ffqc"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/19684?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ubse-tfbr-audj"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.4"}],"aliases":["CVE-2022-0945","GHSA-vpwq-6cp4-ffqc"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ewjx-puts-f7h4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/206761?format=json","vulnerability_id":"VCID-fa1j-6bzu-a3a5","summary":"showdoc is vulnerable to Cross-Site Request Forgery (CSRF)","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-4017","reference_id":"","reference_type":"","scores":[{"value":"0.00142","scoring_system":"epss","scoring_elements":"0.34126","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-4017"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/654e871a3923e79076818a9a03533fe88222c871","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/654e871a3923e79076818a9a03533fe88222c871"},{"reference_url":"https://huntr.dev/bounties/1d8439e8-b3f7-40f8-8b30-f9cb05ff2bcd","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/1d8439e8-b3f7-40f8-8b30-f9cb05ff2bcd"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-4017","reference_id":"CVE-2021-4017","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-4017"},{"reference_url":"https://github.com/advisories/GHSA-f77h-m9w2-vvg2","reference_id":"GHSA-f77h-m9w2-vvg2","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-f77h-m9w2-vvg2"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/18014?format=json","purl":"pkg:composer/showdoc/showdoc@2.9.13","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-158e-gra4-pke9"},{"vulnerability":"VCID-3ez4-xzmr-qbd6"},{"vulnerability":"VCID-3n97-92yn-ckck"},{"vulnerability":"VCID-93sj-gsh9-5bb1"},{"vulnerability":"VCID-auh1-nb9b-zfg3"},{"vulnerability":"VCID-deg7-4ma6-tyd2"},{"vulnerability":"VCID-ewjx-puts-f7h4"},{"vulnerability":"VCID-fk3v-vaj6-dka4"},{"vulnerability":"VCID-fyk4-u9vt-pfgj"},{"vulnerability":"VCID-kjsp-v37r-yue1"},{"vulnerability":"VCID-kwse-tbqn-tqfr"},{"vulnerability":"VCID-m3mp-m3pq-fbd9"},{"vulnerability":"VCID-mybn-n9zu-ukfm"},{"vulnerability":"VCID-ny73-vkpe-mye4"},{"vulnerability":"VCID-pe2f-4yes-cyew"},{"vulnerability":"VCID-pupy-jprc-17f4"},{"vulnerability":"VCID-s5vu-x24p-4uga"},{"vulnerability":"VCID-u4xp-xb3z-r7dm"},{"vulnerability":"VCID-ubse-tfbr-audj"},{"vulnerability":"VCID-urvq-g1g1-8bgy"},{"vulnerability":"VCID-uwjs-9kjy-jqcp"},{"vulnerability":"VCID-vjve-v4fx-hffb"},{"vulnerability":"VCID-w3qg-kqjv-r7dk"},{"vulnerability":"VCID-x5zj-4exs-t7em"},{"vulnerability":"VCID-zsvd-ysfj-gkad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.9.13"}],"aliases":["CVE-2021-4017","GHSA-f77h-m9w2-vvg2"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fa1j-6bzu-a3a5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/208579?format=json","vulnerability_id":"VCID-fk3v-vaj6-dka4","summary":"Unrestricted Upload of File with Dangerous Type in ShowDoc","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-1034","reference_id":"","reference_type":"","scores":[{"value":"0.00487","scoring_system":"epss","scoring_elements":"0.65903","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-1034"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"7.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/bd792a89c0325836fbd64784f4c4117c0171416b","reference_id":"","reference_type":"","scores":[{"value":"7.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/bd792a89c0325836fbd64784f4c4117c0171416b"},{"reference_url":"https://huntr.dev/bounties/d205c489-3266-4ac4-acb7-c8ee570887f7","reference_id":"","reference_type":"","scores":[{"value":"7.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/d205c489-3266-4ac4-acb7-c8ee570887f7"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-1034","reference_id":"CVE-2022-1034","reference_type":"","scores":[{"value":"7.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-1034"},{"reference_url":"https://github.com/advisories/GHSA-xp82-jmw8-mjxp","reference_id":"GHSA-xp82-jmw8-mjxp","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-xp82-jmw8-mjxp"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/19684?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ubse-tfbr-audj"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.4"}],"aliases":["CVE-2022-1034","GHSA-xp82-jmw8-mjxp"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fk3v-vaj6-dka4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/207132?format=json","vulnerability_id":"VCID-fyk4-u9vt-pfgj","summary":"showdoc is vulnerable to Cross-Site Request Forgery (CSRF)","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-4168","reference_id":"","reference_type":"","scores":[{"value":"0.00105","scoring_system":"epss","scoring_elements":"0.27977","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-4168"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/3ff0c85d439ccbdfadeb96b5a52acf6318041109","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/3ff0c85d439ccbdfadeb96b5a52acf6318041109"},{"reference_url":"https://huntr.dev/bounties/f14431e2-f1f6-4331-ba91-a4ea8b26be0c","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/f14431e2-f1f6-4331-ba91-a4ea8b26be0c"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-4168","reference_id":"CVE-2021-4168","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-4168"},{"reference_url":"https://github.com/advisories/GHSA-7vxc-chqj-h83g","reference_id":"GHSA-7vxc-chqj-h83g","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-7vxc-chqj-h83g"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/18507?format=json","purl":"pkg:composer/showdoc/showdoc@2.9.15","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3ez4-xzmr-qbd6"},{"vulnerability":"VCID-3n97-92yn-ckck"},{"vulnerability":"VCID-93sj-gsh9-5bb1"},{"vulnerability":"VCID-auh1-nb9b-zfg3"},{"vulnerability":"VCID-deg7-4ma6-tyd2"},{"vulnerability":"VCID-ewjx-puts-f7h4"},{"vulnerability":"VCID-fk3v-vaj6-dka4"},{"vulnerability":"VCID-kjsp-v37r-yue1"},{"vulnerability":"VCID-kwse-tbqn-tqfr"},{"vulnerability":"VCID-m3mp-m3pq-fbd9"},{"vulnerability":"VCID-mybn-n9zu-ukfm"},{"vulnerability":"VCID-ny73-vkpe-mye4"},{"vulnerability":"VCID-pe2f-4yes-cyew"},{"vulnerability":"VCID-pupy-jprc-17f4"},{"vulnerability":"VCID-s5vu-x24p-4uga"},{"vulnerability":"VCID-u4xp-xb3z-r7dm"},{"vulnerability":"VCID-ubse-tfbr-audj"},{"vulnerability":"VCID-urvq-g1g1-8bgy"},{"vulnerability":"VCID-uwjs-9kjy-jqcp"},{"vulnerability":"VCID-vjve-v4fx-hffb"},{"vulnerability":"VCID-w3qg-kqjv-r7dk"},{"vulnerability":"VCID-x5zj-4exs-t7em"},{"vulnerability":"VCID-zsvd-ysfj-gkad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.9.15"}],"aliases":["CVE-2021-4168","GHSA-7vxc-chqj-h83g"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fyk4-u9vt-pfgj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/207553?format=json","vulnerability_id":"VCID-kjsp-v37r-yue1","summary":"SQL Injection in showdoc","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0362","reference_id":"","reference_type":"","scores":[{"value":"0.00274","scoring_system":"epss","scoring_elements":"0.51101","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0362"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"6.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/2b34e267e4186125f99bfa420140634ad45801fb","reference_id":"","reference_type":"","scores":[{"value":"6.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/2b34e267e4186125f99bfa420140634ad45801fb"},{"reference_url":"https://huntr.dev/bounties/e7c72417-eb8f-416c-8480-be76ac0a9091","reference_id":"","reference_type":"","scores":[{"value":"6.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/e7c72417-eb8f-416c-8480-be76ac0a9091"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0362","reference_id":"CVE-2022-0362","reference_type":"","scores":[{"value":"6.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0362"},{"reference_url":"https://github.com/advisories/GHSA-9cq5-xgg4-x477","reference_id":"GHSA-9cq5-xgg4-x477","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-9cq5-xgg4-x477"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/18826?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3ez4-xzmr-qbd6"},{"vulnerability":"VCID-3n97-92yn-ckck"},{"vulnerability":"VCID-93sj-gsh9-5bb1"},{"vulnerability":"VCID-auh1-nb9b-zfg3"},{"vulnerability":"VCID-deg7-4ma6-tyd2"},{"vulnerability":"VCID-ewjx-puts-f7h4"},{"vulnerability":"VCID-fk3v-vaj6-dka4"},{"vulnerability":"VCID-kwse-tbqn-tqfr"},{"vulnerability":"VCID-m3mp-m3pq-fbd9"},{"vulnerability":"VCID-mybn-n9zu-ukfm"},{"vulnerability":"VCID-ny73-vkpe-mye4"},{"vulnerability":"VCID-pupy-jprc-17f4"},{"vulnerability":"VCID-s5vu-x24p-4uga"},{"vulnerability":"VCID-u4xp-xb3z-r7dm"},{"vulnerability":"VCID-ubse-tfbr-audj"},{"vulnerability":"VCID-urvq-g1g1-8bgy"},{"vulnerability":"VCID-vjve-v4fx-hffb"},{"vulnerability":"VCID-x5zj-4exs-t7em"},{"vulnerability":"VCID-zsvd-ysfj-gkad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.3"}],"aliases":["CVE-2022-0362","GHSA-9cq5-xgg4-x477"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kjsp-v37r-yue1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/208474?format=json","vulnerability_id":"VCID-kwse-tbqn-tqfr","summary":"Cross-site Scripting in ShowDoc","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0965","reference_id":"","reference_type":"","scores":[{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.60065","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0965"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/3caa32334db0c277b84e993eaca2036f5d1dbef8","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/3caa32334db0c277b84e993eaca2036f5d1dbef8"},{"reference_url":"https://huntr.dev/bounties/d66c88ce-63e2-4515-a429-8e43a42aa347","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/d66c88ce-63e2-4515-a429-8e43a42aa347"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0965","reference_id":"CVE-2022-0965","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0965"},{"reference_url":"https://github.com/advisories/GHSA-v8mp-hhjq-h4cj","reference_id":"GHSA-v8mp-hhjq-h4cj","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-v8mp-hhjq-h4cj"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/19684?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ubse-tfbr-audj"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.4"}],"aliases":["CVE-2022-0965","GHSA-v8mp-hhjq-h4cj"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kwse-tbqn-tqfr"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/208483?format=json","vulnerability_id":"VCID-m3mp-m3pq-fbd9","summary":"Cross-site Scripting in ShowDoc","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0956","reference_id":"","reference_type":"","scores":[{"value":"0.00337","scoring_system":"epss","scoring_elements":"0.56931","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0956"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/56e450c3adf75c707500d7231a78c9fc894c7f13","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/56e450c3adf75c707500d7231a78c9fc894c7f13"},{"reference_url":"https://huntr.dev/bounties/5b0e3f02-309f-4b59-8020-d7ac0f1999f2","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/5b0e3f02-309f-4b59-8020-d7ac0f1999f2"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0956","reference_id":"CVE-2022-0956","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0956"},{"reference_url":"https://github.com/advisories/GHSA-wg8p-w946-c482","reference_id":"GHSA-wg8p-w946-c482","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-wg8p-w946-c482"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/19684?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ubse-tfbr-audj"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.4"}],"aliases":["CVE-2022-0956","GHSA-wg8p-w946-c482"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-m3mp-m3pq-fbd9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/208435?format=json","vulnerability_id":"VCID-mybn-n9zu-ukfm","summary":"Cross-site Scripting in showdoc/showdoc","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0960","reference_id":"","reference_type":"","scores":[{"value":"0.00388","scoring_system":"epss","scoring_elements":"0.60307","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0960"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"9.0","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/92bc6a83a3a60e01a0d2effb98ab47d8d7eab28f","reference_id":"","reference_type":"","scores":[{"value":"9.0","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/92bc6a83a3a60e01a0d2effb98ab47d8d7eab28f"},{"reference_url":"https://huntr.dev/bounties/462cd8a7-b1a9-4e93-af71-b56ba1d7ad4e","reference_id":"","reference_type":"","scores":[{"value":"9.0","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/462cd8a7-b1a9-4e93-af71-b56ba1d7ad4e"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0960","reference_id":"CVE-2022-0960","reference_type":"","scores":[{"value":"9.0","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0960"},{"reference_url":"https://github.com/advisories/GHSA-rphc-h572-2x9f","reference_id":"GHSA-rphc-h572-2x9f","reference_type":"","scores":[{"value":"CRITICAL","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-rphc-h572-2x9f"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/19684?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ubse-tfbr-audj"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.4"}],"aliases":["CVE-2022-0960","GHSA-rphc-h572-2x9f"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-mybn-n9zu-ukfm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/208442?format=json","vulnerability_id":"VCID-ny73-vkpe-mye4","summary":"Cross-site Scripting in ShowDoc","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0937","reference_id":"","reference_type":"","scores":[{"value":"0.00181","scoring_system":"epss","scoring_elements":"0.39628","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0937"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/42c0d9813df3035728b36116a6ce9116e6fa8ed3","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/42c0d9813df3035728b36116a6ce9116e6fa8ed3"},{"reference_url":"https://huntr.dev/bounties/6127739d-f4f2-44cd-ae3d-e3ccb7f0d7b5","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/6127739d-f4f2-44cd-ae3d-e3ccb7f0d7b5"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0937","reference_id":"CVE-2022-0937","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0937"},{"reference_url":"https://github.com/advisories/GHSA-mg5h-9rhq-4cqx","reference_id":"GHSA-mg5h-9rhq-4cqx","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-mg5h-9rhq-4cqx"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/19684?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ubse-tfbr-audj"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.4"}],"aliases":["CVE-2022-0937","GHSA-mg5h-9rhq-4cqx"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ny73-vkpe-mye4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/208242?format=json","vulnerability_id":"VCID-pe2f-4yes-cyew","summary":"Unrestricted Upload of File with Dangerous Type in showdoc","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0409","reference_id":"","reference_type":"","scores":[{"value":"0.00209","scoring_system":"epss","scoring_elements":"0.43385","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0409"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/7383d7a3c1b0807b6f397ba7df415a0ce7ccc436","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/7383d7a3c1b0807b6f397ba7df415a0ce7ccc436"},{"reference_url":"https://huntr.dev/bounties/c25bfad1-2611-4226-954f-009e50f966f7","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/c25bfad1-2611-4226-954f-009e50f966f7"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0409","reference_id":"CVE-2022-0409","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0409"},{"reference_url":"https://github.com/advisories/GHSA-6x3j-x9rp-whxp","reference_id":"GHSA-6x3j-x9rp-whxp","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-6x3j-x9rp-whxp"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/18825?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3n97-92yn-ckck"},{"vulnerability":"VCID-93sj-gsh9-5bb1"},{"vulnerability":"VCID-auh1-nb9b-zfg3"},{"vulnerability":"VCID-deg7-4ma6-tyd2"},{"vulnerability":"VCID-ewjx-puts-f7h4"},{"vulnerability":"VCID-fk3v-vaj6-dka4"},{"vulnerability":"VCID-kjsp-v37r-yue1"},{"vulnerability":"VCID-kwse-tbqn-tqfr"},{"vulnerability":"VCID-m3mp-m3pq-fbd9"},{"vulnerability":"VCID-mybn-n9zu-ukfm"},{"vulnerability":"VCID-ny73-vkpe-mye4"},{"vulnerability":"VCID-pupy-jprc-17f4"},{"vulnerability":"VCID-s5vu-x24p-4uga"},{"vulnerability":"VCID-u4xp-xb3z-r7dm"},{"vulnerability":"VCID-ubse-tfbr-audj"},{"vulnerability":"VCID-urvq-g1g1-8bgy"},{"vulnerability":"VCID-vjve-v4fx-hffb"},{"vulnerability":"VCID-x5zj-4exs-t7em"},{"vulnerability":"VCID-zsvd-ysfj-gkad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.2"}],"aliases":["CVE-2022-0409","GHSA-6x3j-x9rp-whxp"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-pe2f-4yes-cyew"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/208434?format=json","vulnerability_id":"VCID-pupy-jprc-17f4","summary":"Cross-site Scripting in ShowDoc","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0962","reference_id":"","reference_type":"","scores":[{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.60065","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0962"},{"reference_url":"https://github.com/star7th/showdoc/commit/3caa32334db0c277b84e993eaca2036f5d1dbef8","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/3caa32334db0c277b84e993eaca2036f5d1dbef8"},{"reference_url":"https://huntr.dev/bounties/7ebe3e5f-2c86-44de-b83e-2ddb6bbda908","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/7ebe3e5f-2c86-44de-b83e-2ddb6bbda908"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0962","reference_id":"CVE-2022-0962","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0962"},{"reference_url":"https://github.com/advisories/GHSA-pccm-j6vj-jwwf","reference_id":"GHSA-pccm-j6vj-jwwf","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-pccm-j6vj-jwwf"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/19684?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ubse-tfbr-audj"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.4"}],"aliases":["CVE-2022-0962","GHSA-pccm-j6vj-jwwf"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-pupy-jprc-17f4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/208476?format=json","vulnerability_id":"VCID-s5vu-x24p-4uga","summary":"Cross-site Scripting in ShowDoc","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0964","reference_id":"","reference_type":"","scores":[{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.60065","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0964"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/3caa32334db0c277b84e993eaca2036f5d1dbef8","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/3caa32334db0c277b84e993eaca2036f5d1dbef8"},{"reference_url":"https://huntr.dev/bounties/dbe39998-8eb7-46ea-997f-7b27f6f16ea0","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/dbe39998-8eb7-46ea-997f-7b27f6f16ea0"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0964","reference_id":"CVE-2022-0964","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0964"},{"reference_url":"https://github.com/advisories/GHSA-xm3x-787m-p66r","reference_id":"GHSA-xm3x-787m-p66r","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-xm3x-787m-p66r"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/19684?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ubse-tfbr-audj"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.4"}],"aliases":["CVE-2022-0964","GHSA-xm3x-787m-p66r"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-s5vu-x24p-4uga"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/208477?format=json","vulnerability_id":"VCID-u4xp-xb3z-r7dm","summary":"Stored Cross-site Scripting in showdoc","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0967","reference_id":"","reference_type":"","scores":[{"value":"0.00831","scoring_system":"epss","scoring_elements":"0.75014","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0967"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"6.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:P/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/3caa32334db0c277b84e993eaca2036f5d1dbef8","reference_id":"","reference_type":"","scores":[{"value":"6.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:P/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/3caa32334db0c277b84e993eaca2036f5d1dbef8"},{"reference_url":"https://huntr.dev/bounties/9dea3c98-7609-480d-902d-149067bd1e2a","reference_id":"","reference_type":"","scores":[{"value":"6.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:P/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/9dea3c98-7609-480d-902d-149067bd1e2a"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/50941.txt","reference_id":"CVE-2022-0967","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/50941.txt"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0967","reference_id":"CVE-2022-0967","reference_type":"","scores":[{"value":"6.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:P/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0967"},{"reference_url":"https://github.com/advisories/GHSA-3pg8-c473-w6rr","reference_id":"GHSA-3pg8-c473-w6rr","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-3pg8-c473-w6rr"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/19684?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ubse-tfbr-audj"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.4"}],"aliases":["CVE-2022-0967","GHSA-3pg8-c473-w6rr"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-u4xp-xb3z-r7dm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/75776?format=json","vulnerability_id":"VCID-ubse-tfbr-audj","summary":"A vulnerability was determined in star7th ShowDoc up to 2.10.10/3.6.2/3.8.0. Affected by this vulnerability is an unknown functionality of the file server/Application/Api/Controller/PageController.class.PHP of the component API Page Sort Endpoint. Executing a manipulation of the argument pages can lead to sql injection. The attack may be launched remotely. Upgrading to version 3.8.1 addresses this issue. It is suggested to upgrade the affected component. According to the researcher, \"[t]he vendor explicitly stated they will not backport patches to the older affected versions.\"","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-6982","reference_id":"","reference_type":"","scores":[{"value":"0.00012","scoring_system":"epss","scoring_elements":"0.01801","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-6982"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2026-6982","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2026-6982"},{"reference_url":"https://vuldb.com/vuln/359525","reference_id":"359525","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:L/Au:S/C:P/I:P/A:P/E:ND/RL:OF/RC:C"},{"value":"6.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:X/RL:O/RC:C"},{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:X/RL:O/RC:C"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-27T13:18:53Z/"}],"url":"https://vuldb.com/vuln/359525"},{"reference_url":"https://gist.github.com/saDL0w/555e19668264f98d96259ad47ea33811","reference_id":"555e19668264f98d96259ad47ea33811","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:L/Au:S/C:P/I:P/A:P/E:ND/RL:OF/RC:C"},{"value":"6.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:X/RL:O/RC:C"},{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:X/RL:O/RC:C"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-27T13:18:53Z/"}],"url":"https://gist.github.com/saDL0w/555e19668264f98d96259ad47ea33811"},{"reference_url":"https://vuldb.com/submit/795528","reference_id":"795528","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:L/Au:S/C:P/I:P/A:P/E:ND/RL:OF/RC:C"},{"value":"6.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:X/RL:O/RC:C"},{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:X/RL:O/RC:C"},{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-27T13:18:53Z/"}],"url":"https://vuldb.com/submit/795528"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:showdoc:showdoc:*:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:showdoc:showdoc:*:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:showdoc:showdoc:*:*:*:*:*:*:*:*"},{"reference_url":"https://vuldb.com/vuln/359525/cti","reference_id":"cti","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:L/Au:S/C:P/I:P/A:P/E:ND/RL:OF/RC:C"},{"value":"6.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:X/RL:O/RC:C"},{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:X/RL:O/RC:C"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-27T13:18:53Z/"}],"url":"https://vuldb.com/vuln/359525/cti"},{"reference_url":"https://github.com/advisories/GHSA-fm5r-cj7v-rj2c","reference_id":"GHSA-fm5r-cj7v-rj2c","reference_type":"","scores":[],"url":"https://github.com/advisories/GHSA-fm5r-cj7v-rj2c"},{"reference_url":"https://github.com/star7th/showdoc/releases/tag/v3.8.1","reference_id":"v3.8.1","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:L/Au:S/C:P/I:P/A:P/E:ND/RL:OF/RC:C"},{"value":"6.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:X/RL:O/RC:C"},{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:X/RL:O/RC:C"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-27T13:18:53Z/"}],"url":"https://github.com/star7th/showdoc/releases/tag/v3.8.1"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/374077?format=json","purl":"pkg:composer/showdoc/showdoc@3.8.1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@3.8.1"}],"aliases":["CVE-2026-6982","GHSA-fm5r-cj7v-rj2c"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ubse-tfbr-audj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/208440?format=json","vulnerability_id":"VCID-urvq-g1g1-8bgy","summary":"Cross-site Scripting in ShowDoc","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0940","reference_id":"","reference_type":"","scores":[{"value":"0.00191","scoring_system":"epss","scoring_elements":"0.40949","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0940"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/78522520892d4e29cc94148c6ec84a204a607b73","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/78522520892d4e29cc94148c6ec84a204a607b73"},{"reference_url":"https://huntr.dev/bounties/856bd2e2-db4f-4b7d-9927-222261ae3782","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/856bd2e2-db4f-4b7d-9927-222261ae3782"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0940","reference_id":"CVE-2022-0940","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0940"},{"reference_url":"https://github.com/advisories/GHSA-82j4-vr25-x394","reference_id":"GHSA-82j4-vr25-x394","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-82j4-vr25-x394"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/19684?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ubse-tfbr-audj"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.4"}],"aliases":["CVE-2022-0940","GHSA-82j4-vr25-x394"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-urvq-g1g1-8bgy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/207627?format=json","vulnerability_id":"VCID-uwjs-9kjy-jqcp","summary":"Cross-site Scripting in showdoc","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-4172","reference_id":"","reference_type":"","scores":[{"value":"0.00195","scoring_system":"epss","scoring_elements":"0.41306","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-4172"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/409c8a1208bbb847046a9496303192980f2e6219","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/409c8a1208bbb847046a9496303192980f2e6219"},{"reference_url":"https://huntr.dev/bounties/c041b693-877b-4456-b463-19e4c9456eee","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/c041b693-877b-4456-b463-19e4c9456eee"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-4172","reference_id":"CVE-2021-4172","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-4172"},{"reference_url":"https://github.com/advisories/GHSA-7x22-pmw5-66mq","reference_id":"GHSA-7x22-pmw5-66mq","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-7x22-pmw5-66mq"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/18825?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3n97-92yn-ckck"},{"vulnerability":"VCID-93sj-gsh9-5bb1"},{"vulnerability":"VCID-auh1-nb9b-zfg3"},{"vulnerability":"VCID-deg7-4ma6-tyd2"},{"vulnerability":"VCID-ewjx-puts-f7h4"},{"vulnerability":"VCID-fk3v-vaj6-dka4"},{"vulnerability":"VCID-kjsp-v37r-yue1"},{"vulnerability":"VCID-kwse-tbqn-tqfr"},{"vulnerability":"VCID-m3mp-m3pq-fbd9"},{"vulnerability":"VCID-mybn-n9zu-ukfm"},{"vulnerability":"VCID-ny73-vkpe-mye4"},{"vulnerability":"VCID-pupy-jprc-17f4"},{"vulnerability":"VCID-s5vu-x24p-4uga"},{"vulnerability":"VCID-u4xp-xb3z-r7dm"},{"vulnerability":"VCID-ubse-tfbr-audj"},{"vulnerability":"VCID-urvq-g1g1-8bgy"},{"vulnerability":"VCID-vjve-v4fx-hffb"},{"vulnerability":"VCID-x5zj-4exs-t7em"},{"vulnerability":"VCID-zsvd-ysfj-gkad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.2"}],"aliases":["CVE-2021-4172","GHSA-7x22-pmw5-66mq"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-uwjs-9kjy-jqcp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/208489?format=json","vulnerability_id":"VCID-vjve-v4fx-hffb","summary":"Cross-site Scripting in ShowDoc","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0957","reference_id":"","reference_type":"","scores":[{"value":"0.00305","scoring_system":"epss","scoring_elements":"0.54185","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0957"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/d1c9ed0d77ea5d56f09be0c492361dca8af745bb","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/d1c9ed0d77ea5d56f09be0c492361dca8af745bb"},{"reference_url":"https://github.com/star7th/showdoc/pull/1632","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/pull/1632"},{"reference_url":"https://huntr.dev/bounties/b4918d45-b635-40db-bb4b-34035e1aca21","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/b4918d45-b635-40db-bb4b-34035e1aca21"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0957","reference_id":"CVE-2022-0957","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0957"},{"reference_url":"https://github.com/advisories/GHSA-q73m-3q7r-fpf7","reference_id":"GHSA-q73m-3q7r-fpf7","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-q73m-3q7r-fpf7"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/19684?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ubse-tfbr-audj"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.4"}],"aliases":["CVE-2022-0957","GHSA-q73m-3q7r-fpf7"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vjve-v4fx-hffb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/207230?format=json","vulnerability_id":"VCID-w3qg-kqjv-r7dk","summary":"showdoc is vulnerable to Generation of Error Message Containing Sensitive Information","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0079","reference_id":"","reference_type":"","scores":[{"value":"0.00194","scoring_system":"epss","scoring_elements":"0.41278","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0079"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/e43df0a190f68aefa272507d3bd54475f566c1db","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/e43df0a190f68aefa272507d3bd54475f566c1db"},{"reference_url":"https://huntr.dev/bounties/b37f0e26-355a-4d50-8495-a567c10828ee","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/b37f0e26-355a-4d50-8495-a567c10828ee"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0079","reference_id":"CVE-2022-0079","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0079"},{"reference_url":"https://github.com/advisories/GHSA-5mj6-3cmq-fh34","reference_id":"GHSA-5mj6-3cmq-fh34","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-5mj6-3cmq-fh34"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/18562?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3ez4-xzmr-qbd6"},{"vulnerability":"VCID-3n97-92yn-ckck"},{"vulnerability":"VCID-93sj-gsh9-5bb1"},{"vulnerability":"VCID-auh1-nb9b-zfg3"},{"vulnerability":"VCID-deg7-4ma6-tyd2"},{"vulnerability":"VCID-ewjx-puts-f7h4"},{"vulnerability":"VCID-fk3v-vaj6-dka4"},{"vulnerability":"VCID-kjsp-v37r-yue1"},{"vulnerability":"VCID-kwse-tbqn-tqfr"},{"vulnerability":"VCID-m3mp-m3pq-fbd9"},{"vulnerability":"VCID-mybn-n9zu-ukfm"},{"vulnerability":"VCID-ny73-vkpe-mye4"},{"vulnerability":"VCID-pe2f-4yes-cyew"},{"vulnerability":"VCID-pupy-jprc-17f4"},{"vulnerability":"VCID-s5vu-x24p-4uga"},{"vulnerability":"VCID-u4xp-xb3z-r7dm"},{"vulnerability":"VCID-ubse-tfbr-audj"},{"vulnerability":"VCID-urvq-g1g1-8bgy"},{"vulnerability":"VCID-uwjs-9kjy-jqcp"},{"vulnerability":"VCID-vjve-v4fx-hffb"},{"vulnerability":"VCID-x5zj-4exs-t7em"},{"vulnerability":"VCID-zsvd-ysfj-gkad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.0"}],"aliases":["CVE-2022-0079","GHSA-5mj6-3cmq-fh34"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-w3qg-kqjv-r7dk"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/343216?format=json","vulnerability_id":"VCID-wbdc-jg9s-vqbp","summary":"","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3680","reference_id":"","reference_type":"","scores":[{"value":"0.00099","scoring_system":"epss","scoring_elements":"0.2709","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3680"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"4.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/blob/fd1740234a12804b45af9cac3563567d83ba414d/server/Application/Home/Model/UserModel.class.php#L20","reference_id":"","reference_type":"","scores":[{"value":"4.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/blob/fd1740234a12804b45af9cac3563567d83ba414d/server/Application/Home/Model/UserModel.class.php#L20"},{"reference_url":"https://github.com/star7th/showdoc/commit/4b962c1740311e0d46775023b6acba39ad60e370","reference_id":"","reference_type":"","scores":[{"value":"4.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/4b962c1740311e0d46775023b6acba39ad60e370"},{"reference_url":"https://huntr.dev/bounties/76b49607-fba9-4100-9be7-cb459fe6cfe2","reference_id":"","reference_type":"","scores":[{"value":"4.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/76b49607-fba9-4100-9be7-cb459fe6cfe2"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-3680","reference_id":"","reference_type":"","scores":[{"value":"4.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-3680"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/382668?format=json","purl":"pkg:composer/showdoc/showdoc@2.9.8","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-158e-gra4-pke9"},{"vulnerability":"VCID-3ez4-xzmr-qbd6"},{"vulnerability":"VCID-3n97-92yn-ckck"},{"vulnerability":"VCID-5a8d-7jh7-tfev"},{"vulnerability":"VCID-7ugv-9fct-fbgh"},{"vulnerability":"VCID-93sj-gsh9-5bb1"},{"vulnerability":"VCID-am4w-8by3-aygq"},{"vulnerability":"VCID-auh1-nb9b-zfg3"},{"vulnerability":"VCID-bvhd-mwnt-ruev"},{"vulnerability":"VCID-deg7-4ma6-tyd2"},{"vulnerability":"VCID-eqcs-tmpq-9ub7"},{"vulnerability":"VCID-ewjx-puts-f7h4"},{"vulnerability":"VCID-fa1j-6bzu-a3a5"},{"vulnerability":"VCID-fk3v-vaj6-dka4"},{"vulnerability":"VCID-fyk4-u9vt-pfgj"},{"vulnerability":"VCID-kjsp-v37r-yue1"},{"vulnerability":"VCID-kwse-tbqn-tqfr"},{"vulnerability":"VCID-m3mp-m3pq-fbd9"},{"vulnerability":"VCID-mybn-n9zu-ukfm"},{"vulnerability":"VCID-ny73-vkpe-mye4"},{"vulnerability":"VCID-pe2f-4yes-cyew"},{"vulnerability":"VCID-pupy-jprc-17f4"},{"vulnerability":"VCID-s5vu-x24p-4uga"},{"vulnerability":"VCID-u4xp-xb3z-r7dm"},{"vulnerability":"VCID-ubse-tfbr-audj"},{"vulnerability":"VCID-urvq-g1g1-8bgy"},{"vulnerability":"VCID-uwjs-9kjy-jqcp"},{"vulnerability":"VCID-vjve-v4fx-hffb"},{"vulnerability":"VCID-w3qg-kqjv-r7dk"},{"vulnerability":"VCID-x5zj-4exs-t7em"},{"vulnerability":"VCID-x91u-2hwa-3fhu"},{"vulnerability":"VCID-zsvd-ysfj-gkad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.9.8"}],"aliases":["CVE-2021-3680","GHSA-8vh3-29mr-m9xg"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wbdc-jg9s-vqbp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/208441?format=json","vulnerability_id":"VCID-x5zj-4exs-t7em","summary":"Cross-site Scripting in ShowDoc","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0938","reference_id":"","reference_type":"","scores":[{"value":"0.00207","scoring_system":"epss","scoring_elements":"0.43134","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0938"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/830c89a4c2c5fd0dd491422bf8e97b4eb5713f55","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/830c89a4c2c5fd0dd491422bf8e97b4eb5713f55"},{"reference_url":"https://huntr.dev/bounties/3eb5a8f9-24e3-4eae-a212-070b2fbc237e","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/3eb5a8f9-24e3-4eae-a212-070b2fbc237e"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0938","reference_id":"CVE-2022-0938","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0938"},{"reference_url":"https://github.com/advisories/GHSA-mw75-qvfr-hpmr","reference_id":"GHSA-mw75-qvfr-hpmr","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-mw75-qvfr-hpmr"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/19684?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ubse-tfbr-audj"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.4"}],"aliases":["CVE-2022-0938","GHSA-mw75-qvfr-hpmr"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-x5zj-4exs-t7em"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/206580?format=json","vulnerability_id":"VCID-x91u-2hwa-3fhu","summary":"showdoc is vulnerable to Cross-Site Request Forgery (CSRF)","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3775","reference_id":"","reference_type":"","scores":[{"value":"0.00112","scoring_system":"epss","scoring_elements":"0.2922","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3775"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/67093c879a6563aa6ee08003177777d1975e2351","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/67093c879a6563aa6ee08003177777d1975e2351"},{"reference_url":"https://huntr.dev/bounties/6a59d203-4ca7-4aed-bdb9-1e39b66c77b3","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/6a59d203-4ca7-4aed-bdb9-1e39b66c77b3"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-3775","reference_id":"CVE-2021-3775","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-3775"},{"reference_url":"https://github.com/advisories/GHSA-pjjf-hc4q-g298","reference_id":"GHSA-pjjf-hc4q-g298","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-pjjf-hc4q-g298"}],"fixed_packages":[],"aliases":["CVE-2021-3775","GHSA-pjjf-hc4q-g298"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-x91u-2hwa-3fhu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/343215?format=json","vulnerability_id":"VCID-xe8d-vba4-2yhw","summary":"","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3678","reference_id":"","reference_type":"","scores":[{"value":"0.00391","scoring_system":"epss","scoring_elements":"0.60591","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3678"},{"reference_url":"https://github.com/star7th/showdoc/commit/4b962c1740311e0d46775023b6acba39ad60e370","reference_id":"","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/4b962c1740311e0d46775023b6acba39ad60e370"},{"reference_url":"https://huntr.dev/bounties/f9a9defd-29ea-4442-b692-ff1512813de4","reference_id":"","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/f9a9defd-29ea-4442-b692-ff1512813de4"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-3678","reference_id":"","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-3678"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/382668?format=json","purl":"pkg:composer/showdoc/showdoc@2.9.8","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-158e-gra4-pke9"},{"vulnerability":"VCID-3ez4-xzmr-qbd6"},{"vulnerability":"VCID-3n97-92yn-ckck"},{"vulnerability":"VCID-5a8d-7jh7-tfev"},{"vulnerability":"VCID-7ugv-9fct-fbgh"},{"vulnerability":"VCID-93sj-gsh9-5bb1"},{"vulnerability":"VCID-am4w-8by3-aygq"},{"vulnerability":"VCID-auh1-nb9b-zfg3"},{"vulnerability":"VCID-bvhd-mwnt-ruev"},{"vulnerability":"VCID-deg7-4ma6-tyd2"},{"vulnerability":"VCID-eqcs-tmpq-9ub7"},{"vulnerability":"VCID-ewjx-puts-f7h4"},{"vulnerability":"VCID-fa1j-6bzu-a3a5"},{"vulnerability":"VCID-fk3v-vaj6-dka4"},{"vulnerability":"VCID-fyk4-u9vt-pfgj"},{"vulnerability":"VCID-kjsp-v37r-yue1"},{"vulnerability":"VCID-kwse-tbqn-tqfr"},{"vulnerability":"VCID-m3mp-m3pq-fbd9"},{"vulnerability":"VCID-mybn-n9zu-ukfm"},{"vulnerability":"VCID-ny73-vkpe-mye4"},{"vulnerability":"VCID-pe2f-4yes-cyew"},{"vulnerability":"VCID-pupy-jprc-17f4"},{"vulnerability":"VCID-s5vu-x24p-4uga"},{"vulnerability":"VCID-u4xp-xb3z-r7dm"},{"vulnerability":"VCID-ubse-tfbr-audj"},{"vulnerability":"VCID-urvq-g1g1-8bgy"},{"vulnerability":"VCID-uwjs-9kjy-jqcp"},{"vulnerability":"VCID-vjve-v4fx-hffb"},{"vulnerability":"VCID-w3qg-kqjv-r7dk"},{"vulnerability":"VCID-x5zj-4exs-t7em"},{"vulnerability":"VCID-x91u-2hwa-3fhu"},{"vulnerability":"VCID-zsvd-ysfj-gkad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.9.8"}],"aliases":["CVE-2021-3678","GHSA-j85q-whc9-g4p9"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xe8d-vba4-2yhw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/208439?format=json","vulnerability_id":"VCID-zsvd-ysfj-gkad","summary":"Cross-site Scripting in ShowDoc","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0946","reference_id":"","reference_type":"","scores":[{"value":"0.00322","scoring_system":"epss","scoring_elements":"0.55673","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0946"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/e5d575928b1371a7e07b09b6592822298335062a","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/e5d575928b1371a7e07b09b6592822298335062a"},{"reference_url":"https://huntr.dev/bounties/1f8f0021-396e-428e-9748-dd4e359715e1","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/1f8f0021-396e-428e-9748-dd4e359715e1"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0946","reference_id":"CVE-2022-0946","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0946"},{"reference_url":"https://github.com/advisories/GHSA-qq74-vgcf-54c3","reference_id":"GHSA-qq74-vgcf-54c3","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-qq74-vgcf-54c3"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/19684?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ubse-tfbr-audj"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.4"}],"aliases":["CVE-2022-0946","GHSA-qq74-vgcf-54c3"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zsvd-ysfj-gkad"}],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/344060?format=json","vulnerability_id":"VCID-hze1-t621-akat","summary":"","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-41745","reference_id":"","reference_type":"","scores":[{"value":"0.00316","scoring_system":"epss","scoring_elements":"0.55142","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-41745"},{"reference_url":"https://github.com/purple-WL/SHOWDOC-file-upload-vulnerability","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/purple-WL/SHOWDOC-file-upload-vulnerability"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/aec3df841958059c1db9ab1af25acc2af81e4e0e","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/aec3df841958059c1db9ab1af25acc2af81e4e0e"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-41745","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-41745"},{"reference_url":"https://www.cnvd.org.cn/flaw/show/CNVD-2020-49480","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.cnvd.org.cn/flaw/show/CNVD-2020-49480"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/382266?format=json","purl":"pkg:composer/showdoc/showdoc@2.8.5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-158e-gra4-pke9"},{"vulnerability":"VCID-3ez4-xzmr-qbd6"},{"vulnerability":"VCID-3n97-92yn-ckck"},{"vulnerability":"VCID-5a8d-7jh7-tfev"},{"vulnerability":"VCID-7ugv-9fct-fbgh"},{"vulnerability":"VCID-93sj-gsh9-5bb1"},{"vulnerability":"VCID-am4w-8by3-aygq"},{"vulnerability":"VCID-auh1-nb9b-zfg3"},{"vulnerability":"VCID-bvhd-mwnt-ruev"},{"vulnerability":"VCID-c77c-87m4-wkaw"},{"vulnerability":"VCID-deg7-4ma6-tyd2"},{"vulnerability":"VCID-eqcs-tmpq-9ub7"},{"vulnerability":"VCID-ewjx-puts-f7h4"},{"vulnerability":"VCID-fa1j-6bzu-a3a5"},{"vulnerability":"VCID-fk3v-vaj6-dka4"},{"vulnerability":"VCID-fyk4-u9vt-pfgj"},{"vulnerability":"VCID-kjsp-v37r-yue1"},{"vulnerability":"VCID-kwse-tbqn-tqfr"},{"vulnerability":"VCID-m3mp-m3pq-fbd9"},{"vulnerability":"VCID-mybn-n9zu-ukfm"},{"vulnerability":"VCID-ny73-vkpe-mye4"},{"vulnerability":"VCID-pe2f-4yes-cyew"},{"vulnerability":"VCID-pupy-jprc-17f4"},{"vulnerability":"VCID-s5vu-x24p-4uga"},{"vulnerability":"VCID-u4xp-xb3z-r7dm"},{"vulnerability":"VCID-ubse-tfbr-audj"},{"vulnerability":"VCID-urvq-g1g1-8bgy"},{"vulnerability":"VCID-uwjs-9kjy-jqcp"},{"vulnerability":"VCID-vjve-v4fx-hffb"},{"vulnerability":"VCID-w3qg-kqjv-r7dk"},{"vulnerability":"VCID-wbdc-jg9s-vqbp"},{"vulnerability":"VCID-x5zj-4exs-t7em"},{"vulnerability":"VCID-x91u-2hwa-3fhu"},{"vulnerability":"VCID-xe8d-vba4-2yhw"},{"vulnerability":"VCID-zsvd-ysfj-gkad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.8.5"}],"aliases":["CVE-2021-41745","GHSA-4286-h47h-m5v6"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hze1-t621-akat"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.8.5"}