{"url":"http://public2.vulnerablecode.io/api/packages/464619?format=json","purl":"pkg:npm/docsify@3.5.2","type":"npm","namespace":"","name":"docsify","version":"3.5.2","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"4.12.0","latest_non_vulnerable_version":"4.12.2","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/330966?format=json","vulnerability_id":"VCID-aatf-up5h-qfhc","summary":"","references":[{"reference_url":"http://packetstormsecurity.com/files/158515/Docsify.js-4.11.4-Cross-Site-Scripting.html","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://packetstormsecurity.com/files/158515/Docsify.js-4.11.4-Cross-Site-Scripting.html"},{"reference_url":"http://packetstormsecurity.com/files/161495/docsify-4.11.6-Cross-Site-Scripting.html","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://packetstormsecurity.com/files/161495/docsify-4.11.6-Cross-Site-Scripting.html"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-7680","reference_id":"","reference_type":"","scores":[{"value":"0.03162","scoring_system":"epss","scoring_elements":"0.87207","published_at":"2026-06-11T12:55:00Z"},{"value":"0.03162","scoring_system":"epss","scoring_elements":"0.87253","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-7680"},{"reference_url":"http://seclists.org/fulldisclosure/2021/Feb/71","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://seclists.org/fulldisclosure/2021/Feb/71"},{"reference_url":"https://github.com/docsifyjs/docsify/issues/1126","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/docsifyjs/docsify/issues/1126"},{"reference_url":"https://github.com/docsifyjs/docsify/pull/1128","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/docsifyjs/docsify/pull/1128"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2020-7680","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2020-7680"},{"reference_url":"https://snyk.io/vuln/SNYK-JS-DOCSIFY-567099","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://snyk.io/vuln/SNYK-JS-DOCSIFY-567099"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/webapps/48681.txt","reference_id":"CVE-2020-7680","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/webapps/48681.txt"},{"reference_url":"https://github.com/advisories/GHSA-qpqh-46qj-vwcw","reference_id":"GHSA-qpqh-46qj-vwcw","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-qpqh-46qj-vwcw"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/383696?format=json","purl":"pkg:npm/docsify@4.11.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-y8yz-q453-93ap"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:npm/docsify@4.11.4"}],"aliases":["CVE-2020-7680","GHSA-qpqh-46qj-vwcw"],"risk_score":10.0,"exploitability":"2.0","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-aatf-up5h-qfhc"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/335398?format=json","vulnerability_id":"VCID-y8yz-q453-93ap","summary":"","references":[{"reference_url":"http://packetstormsecurity.com/files/161495/docsify-4.11.6-Cross-Site-Scripting.html","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://packetstormsecurity.com/files/161495/docsify-4.11.6-Cross-Site-Scripting.html"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-23342","reference_id":"","reference_type":"","scores":[{"value":"0.00463","scoring_system":"epss","scoring_elements":"0.6474","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00463","scoring_system":"epss","scoring_elements":"0.64843","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-23342"},{"reference_url":"http://seclists.org/fulldisclosure/2021/Feb/71","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://seclists.org/fulldisclosure/2021/Feb/71"},{"reference_url":"https://github.com/docsifyjs/docsify/commit/ff2a66f12752471277fe81a64ad6c4b2c08111fe","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/docsifyjs/docsify/commit/ff2a66f12752471277fe81a64ad6c4b2c08111fe"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-23342","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-23342"},{"reference_url":"https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1076593","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1076593"},{"reference_url":"https://snyk.io/vuln/SNYK-JS-DOCSIFY-1066017","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://snyk.io/vuln/SNYK-JS-DOCSIFY-1066017"},{"reference_url":"https://www.npmjs.com/package/docsify","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.npmjs.com/package/docsify"},{"reference_url":"https://github.com/advisories/GHSA-2mm9-c2fx-c7m4","reference_id":"GHSA-2mm9-c2fx-c7m4","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-2mm9-c2fx-c7m4"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/383007?format=json","purl":"pkg:npm/docsify@4.12.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:npm/docsify@4.12.0"}],"aliases":["CVE-2021-23342","GHSA-2mm9-c2fx-c7m4"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-y8yz-q453-93ap"}],"fixing_vulnerabilities":[],"risk_score":"10.0","resource_url":"http://public2.vulnerablecode.io/packages/pkg:npm/docsify@3.5.2"}