{"url":"http://public2.vulnerablecode.io/api/packages/429882?format=json","purl":"pkg:composer/topthink/framework@5.1.16","type":"composer","namespace":"topthink","name":"framework","version":"5.1.16","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/118665?format=json","vulnerability_id":"VCID-1ekv-2pk5-zfbm","summary":"An issue in thinkphp v.5.1 allows a remote attacker to execute arbitrary code via the routecheck function","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-50706","reference_id":"","reference_type":"","scores":[{"value":"0.04401","scoring_system":"epss","scoring_elements":"0.89246","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-50706"},{"reference_url":"https://github.com/top-think/framework","reference_id":"","reference_type":"","scores":[{"value":"9.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/top-think/framework"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2025-50706","reference_id":"","reference_type":"","scores":[{"value":"9.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2025-50706"},{"reference_url":"https://xinyisleep.github.io/CVE-2025-50706.md","reference_id":"CVE-2025-50706.md","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"9.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-08-05T15:26:53Z/"}],"url":"https://xinyisleep.github.io/CVE-2025-50706.md"},{"reference_url":"https://github.com/advisories/GHSA-mrwc-mvr8-9xq5","reference_id":"GHSA-mrwc-mvr8-9xq5","reference_type":"","scores":[],"url":"https://github.com/advisories/GHSA-mrwc-mvr8-9xq5"},{"reference_url":"https://xinyisleep.github.io/2024-04-24/Thinkphp5.1%E6%96%87%E4%BB%B6%E5%8C%85%E5%90%AB-CNVD-2024-29981","reference_id":"Thinkphp5.1%E6%96%87%E4%BB%B6%E5%8C%85%E5%90%AB-CNVD-2024-29981","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"9.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-08-05T15:26:53Z/"}],"url":"https://xinyisleep.github.io/2024-04-24/Thinkphp5.1%E6%96%87%E4%BB%B6%E5%8C%85%E5%90%AB-CNVD-2024-29981"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/600340?format=json","purl":"pkg:composer/topthink/framework@5.1.42","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-8ma9-k587-ufba"},{"vulnerability":"VCID-grek-9pzd-kkdm"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/topthink/framework@5.1.42"}],"aliases":["CVE-2025-50706","GHSA-mrwc-mvr8-9xq5"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-1ekv-2pk5-zfbm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/173012?format=json","vulnerability_id":"VCID-8ma9-k587-ufba","summary":"ThinkPHP Framework before 6.0.14 allows local file inclusion via the lang parameter when the language pack feature is enabled (lang_switch_on=true). An unauthenticated and remote attacker can exploit this to execute arbitrary operating system commands, as demonstrated by including pearcmd.php.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-47945","reference_id":"","reference_type":"","scores":[{"value":"0.9034","scoring_system":"epss","scoring_elements":"0.99618","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-47945"},{"reference_url":"https://github.com/top-think/framework","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/top-think/framework"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-47945","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-47945"},{"reference_url":"https://tttang.com/archive/1865","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://tttang.com/archive/1865"},{"reference_url":"https://tttang.com/archive/1865/","reference_id":"1865","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-04-15T13:51:52Z/"}],"url":"https://tttang.com/archive/1865/"},{"reference_url":"https://github.com/top-think/framework/commit/c4acb8b4001b98a0078eda25840d33e295a7f099","reference_id":"c4acb8b4001b98a0078eda25840d33e295a7f099","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-04-15T13:51:52Z/"}],"url":"https://github.com/top-think/framework/commit/c4acb8b4001b98a0078eda25840d33e295a7f099"},{"reference_url":"https://github.com/advisories/GHSA-p4qr-vq2g-22wp","reference_id":"GHSA-p4qr-vq2g-22wp","reference_type":"","scores":[],"url":"https://github.com/advisories/GHSA-p4qr-vq2g-22wp"},{"reference_url":"https://github.com/top-think/framework/compare/v6.0.13...v6.0.14","reference_id":"v6.0.13...v6.0.14","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-04-15T13:51:52Z/"}],"url":"https://github.com/top-think/framework/compare/v6.0.13...v6.0.14"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/384075?format=json","purl":"pkg:composer/topthink/framework@6.0.14","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-grek-9pzd-kkdm"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/topthink/framework@6.0.14"}],"aliases":["CVE-2022-47945","GHSA-p4qr-vq2g-22wp"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8ma9-k587-ufba"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/207004?format=json","vulnerability_id":"VCID-9hnj-g4qq-5ffb","summary":"ThinkPHP5 SQL Injection vulnerability","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-44350","reference_id":"","reference_type":"","scores":[{"value":"0.01037","scoring_system":"epss","scoring_elements":"0.77817","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-44350"},{"reference_url":"https://github.com/top-think/framework","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/top-think/framework"},{"reference_url":"https://github.com/top-think/framework/issues/2613","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/top-think/framework/issues/2613"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-44350","reference_id":"CVE-2021-44350","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-44350"},{"reference_url":"https://github.com/advisories/GHSA-q868-c4vw-qjx3","reference_id":"GHSA-q868-c4vw-qjx3","reference_type":"","scores":[{"value":"CRITICAL","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-q868-c4vw-qjx3"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/385141?format=json","purl":"pkg:composer/topthink/framework@5.1.23","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ekv-2pk5-zfbm"},{"vulnerability":"VCID-8ma9-k587-ufba"},{"vulnerability":"VCID-grek-9pzd-kkdm"},{"vulnerability":"VCID-pssk-8q2y-tfhe"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/topthink/framework@5.1.23"}],"aliases":["CVE-2021-44350","GHSA-q868-c4vw-qjx3"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9hnj-g4qq-5ffb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/49751?format=json","vulnerability_id":"VCID-grek-9pzd-kkdm","summary":"ThinkPHP 8.0.3 allows remote attackers to exploit XSS due to inadequate filtering of function argument values in think_exception.tpl.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-34467","reference_id":"","reference_type":"","scores":[{"value":"0.00054","scoring_system":"epss","scoring_elements":"0.1712","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-34467"},{"reference_url":"https://github.com/top-think/framework","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/top-think/framework"},{"reference_url":"https://github.com/top-think/framework/commit/403358cd3e510e2fdab63f951930bdd093314eee","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/top-think/framework/commit/403358cd3e510e2fdab63f951930bdd093314eee"},{"reference_url":"https://github.com/top-think/framework/commit/57d1950a1844ef8d3098ea290032aeb92e2e32c3","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/top-think/framework/commit/57d1950a1844ef8d3098ea290032aeb92e2e32c3"},{"reference_url":"https://github.com/top-think/framework/commit/d3904e51e279c3b72ee206192aeccf9b1cffb534","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/top-think/framework/commit/d3904e51e279c3b72ee206192aeccf9b1cffb534"},{"reference_url":"https://github.com/top-think/framework/issues/2996","reference_id":"2996","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-16T18:14:34Z/"}],"url":"https://github.com/top-think/framework/issues/2996"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-34467","reference_id":"CVE-2024-34467","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-34467"},{"reference_url":"https://github.com/advisories/GHSA-969f-v7jv-pgj3","reference_id":"GHSA-969f-v7jv-pgj3","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-969f-v7jv-pgj3"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/30902?format=json","purl":"pkg:composer/topthink/framework@6.0.17","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/topthink/framework@6.0.17"},{"url":"http://public2.vulnerablecode.io/api/packages/30904?format=json","purl":"pkg:composer/topthink/framework@6.1.5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-74ev-f8gq-j7h1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/topthink/framework@6.1.5"},{"url":"http://public2.vulnerablecode.io/api/packages/30901?format=json","purl":"pkg:composer/topthink/framework@8.0.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-74ev-f8gq-j7h1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/topthink/framework@8.0.4"}],"aliases":["CVE-2024-34467","GHSA-969f-v7jv-pgj3"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-grek-9pzd-kkdm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/209316?format=json","vulnerability_id":"VCID-pssk-8q2y-tfhe","summary":"Deserialization of Untrusted Data in topthink/framework","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-23592","reference_id":"","reference_type":"","scores":[{"value":"0.01009","scoring_system":"epss","scoring_elements":"0.7751","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-23592"},{"reference_url":"https://github.com/top-think/framework","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/top-think/framework"},{"reference_url":"https://github.com/top-think/framework/commit/d3b5aeae94bc71bae97977d05cd12c3e0550905c","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/top-think/framework/commit/d3b5aeae94bc71bae97977d05cd12c3e0550905c"},{"reference_url":"https://github.com/top-think/framework/releases/tag/v6.0.12","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/top-think/framework/releases/tag/v6.0.12"},{"reference_url":"https://snyk.io/vuln/SNYK-PHP-TOPTHINKFRAMEWORK-2385695","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://snyk.io/vuln/SNYK-PHP-TOPTHINKFRAMEWORK-2385695"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-23592","reference_id":"CVE-2021-23592","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-23592"},{"reference_url":"https://github.com/advisories/GHSA-3fpv-54ff-wqfj","reference_id":"GHSA-3fpv-54ff-wqfj","reference_type":"","scores":[{"value":"CRITICAL","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-3fpv-54ff-wqfj"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/20843?format=json","purl":"pkg:composer/topthink/framework@6.0.12","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-8ma9-k587-ufba"},{"vulnerability":"VCID-cq1k-e7p8-5qfy"},{"vulnerability":"VCID-grek-9pzd-kkdm"},{"vulnerability":"VCID-rvbc-p1tv-3kb4"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/topthink/framework@6.0.12"}],"aliases":["CVE-2021-23592","GHSA-3fpv-54ff-wqfj"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-pssk-8q2y-tfhe"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/301808?format=json","vulnerability_id":"VCID-z8hh-2h6x-u3ax","summary":"","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-16385","reference_id":"","reference_type":"","scores":[{"value":"0.00518","scoring_system":"epss","scoring_elements":"0.67167","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-16385"},{"reference_url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/149288","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/149288"},{"reference_url":"https://github.com/top-think/framework","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/top-think/framework"},{"reference_url":"https://github.com/top-think/framework/issues/1375","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/top-think/framework/issues/1375"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2018-16385","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2018-16385"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/385141?format=json","purl":"pkg:composer/topthink/framework@5.1.23","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ekv-2pk5-zfbm"},{"vulnerability":"VCID-8ma9-k587-ufba"},{"vulnerability":"VCID-grek-9pzd-kkdm"},{"vulnerability":"VCID-pssk-8q2y-tfhe"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/topthink/framework@5.1.23"}],"aliases":["CVE-2018-16385","GHSA-vcm7-88jx-3r39"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-z8hh-2h6x-u3ax"}],"fixing_vulnerabilities":[],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/topthink/framework@5.1.16"}