Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:npm/express-brute@0.7.0-beta.0

Type npm

Namespace

Name express-brute

Version 0.7.0-beta.0

Qualifiers

Subpath

Is_vulnerable true

Next_non_vulnerable_version null

Latest_non_vulnerable_version null

Affected_by_vulnerabilities

0

url

VCID-frgj-tksm-h7gh

vulnerability_id

VCID-frgj-tksm-h7gh

summary

Rate Limiting Bypass in express-brute

references

0

reference_url

https://github.com/AdamPflug/express-brute/issues/46

reference_id

reference_type

scores

0

value	5.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

1

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/AdamPflug/express-brute/issues/46

1

reference_url

https://snyk.io/vuln/SNYK-JS-EXPRESSBRUTE-174457

reference_id

reference_type

scores

0

value	5.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

1

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://snyk.io/vuln/SNYK-JS-EXPRESSBRUTE-174457

2

reference_url

https://www.npmjs.com/advisories/823

reference_id

reference_type

scores

0

value	5.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

1

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://www.npmjs.com/advisories/823

3

reference_url

https://github.com/advisories/GHSA-984p-xq9m-4rjw

reference_id

GHSA-984p-xq9m-4rjw

reference_type

scores

0

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-984p-xq9m-4rjw

fixed_packages

aliases

GHSA-984p-xq9m-4rjw, GMS-2019-24

risk_score

3.1

exploitability

0.5

weighted_severity

6.2

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-frgj-tksm-h7gh

Fixing_vulnerabilities

Risk_score 3.1

Resource_url http://public2.vulnerablecode.io/packages/pkg:npm/express-brute@0.7.0-beta.0