Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:hex/plug@0.4.4

Type hex

Namespace

Name plug

Version 0.4.4

Qualifiers

Subpath

Is_vulnerable true

Next_non_vulnerable_version 1.0.6

Latest_non_vulnerable_version 1.19.2

Affected_by_vulnerabilities

url VCID-2vh3-3ptq-gkc3

vulnerability_id VCID-2vh3-3ptq-gkc3

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-1000883

reference_id

reference_type

scores

value	0.0025
scoring_system	epss
scoring_elements	0.4841
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-1000883

reference_url

https://github.com/dependabot/elixir-security-advisories/blob/master/packages/plug/2017-04-17.yml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/dependabot/elixir-security-advisories/blob/master/packages/plug/2017-04-17.yml

reference_url

https://github.com/elixir-plug/plug

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/elixir-plug/plug

reference_url

https://github.com/elixir-plug/plug/commit/8857f8ab4acf9b9c22e80480dae2636692f5f573

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/elixir-plug/plug/commit/8857f8ab4acf9b9c22e80480dae2636692f5f573

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2018-1000883

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2018-1000883

fixed_packages

url	pkg:hex/plug@1.0.6
purl	pkg:hex/plug@1.0.6
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:hex/plug@1.0.6

url	pkg:hex/plug@1.1.9
purl	pkg:hex/plug@1.1.9
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:hex/plug@1.1.9

url	pkg:hex/plug@1.2.5
purl	pkg:hex/plug@1.2.5
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:hex/plug@1.2.5

url	pkg:hex/plug@1.3.5
purl	pkg:hex/plug@1.3.5
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:hex/plug@1.3.5

aliases CVE-2018-1000883, GHSA-9h73-w7ch-rh73

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2vh3-3ptq-gkc3

url VCID-37r1-6n6e-gbe8

vulnerability_id VCID-37r1-6n6e-gbe8

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-1000053

reference_id

reference_type

scores

value	0.01075
scoring_system	epss
scoring_elements	0.78093
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-1000053

reference_url

https://elixirforum.com/t/security-releases-for-plug/3913

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://elixirforum.com/t/security-releases-for-plug/3913

reference_url	https://elixirforum.com/t/static-and-session-security-fixes-for-plug/3913
reference_id
reference_type
scores
url	https://elixirforum.com/t/static-and-session-security-fixes-for-plug/3913

reference_url

https://github.com/elixir-plug/plug

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/elixir-plug/plug

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2017-1000053

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2017-1000053

fixed_packages

url pkg:hex/plug@1.0.4

purl pkg:hex/plug@1.0.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2vh3-3ptq-gkc3

resource_url http://public2.vulnerablecode.io/packages/pkg:hex/plug@1.0.4

url pkg:hex/plug@1.1.7

purl pkg:hex/plug@1.1.7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2vh3-3ptq-gkc3

resource_url http://public2.vulnerablecode.io/packages/pkg:hex/plug@1.1.7

url pkg:hex/plug@1.2.3

purl pkg:hex/plug@1.2.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2vh3-3ptq-gkc3

resource_url http://public2.vulnerablecode.io/packages/pkg:hex/plug@1.2.3

url pkg:hex/plug@1.3.2

purl pkg:hex/plug@1.3.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2vh3-3ptq-gkc3

resource_url http://public2.vulnerablecode.io/packages/pkg:hex/plug@1.3.2

aliases CVE-2017-1000053, GHSA-5v4m-c73v-c7gq

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-37r1-6n6e-gbe8

url VCID-bde6-t22g-v7hb

vulnerability_id VCID-bde6-t22g-v7hb

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-1000052

reference_id

reference_type

scores

value	0.00246
scoring_system	epss
scoring_elements	0.48021
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-1000052

reference_url

https://elixirforum.com/t/security-releases-for-plug/3913

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://elixirforum.com/t/security-releases-for-plug/3913

reference_url	https://elixirforum.com/t/static-and-session-security-fixes-for-plug/3913
reference_id
reference_type
scores
url	https://elixirforum.com/t/static-and-session-security-fixes-for-plug/3913

reference_url

https://github.com/elixir-plug/plug

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/elixir-plug/plug

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2017-1000052

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2017-1000052

fixed_packages

url pkg:hex/plug@1.0.4

purl pkg:hex/plug@1.0.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2vh3-3ptq-gkc3

resource_url http://public2.vulnerablecode.io/packages/pkg:hex/plug@1.0.4

url pkg:hex/plug@1.1.7

purl pkg:hex/plug@1.1.7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2vh3-3ptq-gkc3

resource_url http://public2.vulnerablecode.io/packages/pkg:hex/plug@1.1.7

url pkg:hex/plug@1.2.3

purl pkg:hex/plug@1.2.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2vh3-3ptq-gkc3

resource_url http://public2.vulnerablecode.io/packages/pkg:hex/plug@1.2.3

url pkg:hex/plug@1.3.2

purl pkg:hex/plug@1.3.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2vh3-3ptq-gkc3

resource_url http://public2.vulnerablecode.io/packages/pkg:hex/plug@1.3.2

aliases CVE-2017-1000052, GHSA-2q6v-32mr-8p8x

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bde6-t22g-v7hb

Fixing_vulnerabilities

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:hex/plug@0.4.4

Package Instance