Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:composer/cachethq/cachet@2.0.2
Typecomposer
Namespacecachethq
Namecachet
Version2.0.2
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version2.4.0
Latest_non_vulnerable_version2.4.0
Affected_by_vulnerabilities
0
url VCID-94cv-cc1n-zbh5
vulnerability_id VCID-94cv-cc1n-zbh5
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-39173
reference_id
reference_type
scores
0
value 0.037
scoring_system epss
scoring_elements 0.88217
published_at 2026-06-11T12:55:00Z
1
value 0.037
scoring_system epss
scoring_elements 0.88256
published_at 2026-06-12T12:55:00Z
2
value 0.037
scoring_system epss
scoring_elements 0.88262
published_at 2026-06-13T12:55:00Z
3
value 0.037
scoring_system epss
scoring_elements 0.88261
published_at 2026-06-14T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-39173
1
reference_url https://blog.sonarsource.com/cachet-code-execution-via-laravel-configuration-injection
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://blog.sonarsource.com/cachet-code-execution-via-laravel-configuration-injection
2
reference_url https://blog.sonarsource.com/cachet-code-execution-via-laravel-configuration-injection/
reference_id
reference_type
scores
url https://blog.sonarsource.com/cachet-code-execution-via-laravel-configuration-injection/
3
reference_url https://github.com/fiveai/Cachet
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/fiveai/Cachet
4
reference_url https://github.com/fiveai/Cachet/releases/tag/v2.5.1
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/fiveai/Cachet/releases/tag/v2.5.1
5
reference_url https://github.com/fiveai/Cachet/security/advisories/GHSA-r67m-m8c7-jp83
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/fiveai/Cachet/security/advisories/GHSA-r67m-m8c7-jp83
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2021-39173
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2021-39173
7
reference_url https://github.com/advisories/GHSA-r67m-m8c7-jp83
reference_id GHSA-r67m-m8c7-jp83
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-r67m-m8c7-jp83
fixed_packages
0
url pkg:composer/cachethq/cachet@2.5.1
purl pkg:composer/cachethq/cachet@2.5.1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/cachethq/cachet@2.5.1
aliases CVE-2021-39173, GHSA-r67m-m8c7-jp83
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-94cv-cc1n-zbh5
1
url VCID-mwbt-wn3j-qqh7
vulnerability_id VCID-mwbt-wn3j-qqh7
summary Cachet, the open-source status page system. Prior to the 2.4 branch, a template functionality which allows users to create templates allows them to execute any code on the server during the bad filtration and old twig version. Commit 6fb043e109d2a262ce3974e863c54e9e5f5e0587 of the 2.4 branch contains a patch for this issue.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-43661
reference_id
reference_type
scores
0
value 0.18169
scoring_system epss
scoring_elements 0.95353
published_at 2026-06-12T12:55:00Z
1
value 0.18169
scoring_system epss
scoring_elements 0.9536
published_at 2026-06-14T12:55:00Z
2
value 0.18169
scoring_system epss
scoring_elements 0.95358
published_at 2026-06-13T12:55:00Z
3
value 0.18169
scoring_system epss
scoring_elements 0.95339
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-43661
1
reference_url https://github.com/cachethq/cachet
reference_id
reference_type
scores
0
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:L
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/cachethq/cachet
2
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-43661
reference_id
reference_type
scores
0
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:L
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-43661
3
reference_url https://github.com/cachethq/cachet/commit/6fb043e109d2a262ce3974e863c54e9e5f5e0587
reference_id 6fb043e109d2a262ce3974e863c54e9e5f5e0587
reference_type
scores
0
value 9.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:L
1
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:L
2
value CRITICAL
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-17T13:45:32Z/
url https://github.com/cachethq/cachet/commit/6fb043e109d2a262ce3974e863c54e9e5f5e0587
4
reference_url https://github.com/advisories/GHSA-hv79-p62r-wg3p
reference_id GHSA-hv79-p62r-wg3p
reference_type
scores
0
value CRITICAL
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-hv79-p62r-wg3p
5
reference_url https://github.com/cachethq/cachet/security/advisories/GHSA-hv79-p62r-wg3p
reference_id GHSA-hv79-p62r-wg3p
reference_type
scores
0
value 9.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:L
1
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:L
2
value CRITICAL
scoring_system cvssv3.1_qr
scoring_elements
3
value CRITICAL
scoring_system generic_textual
scoring_elements
4
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-17T13:45:32Z/
url https://github.com/cachethq/cachet/security/advisories/GHSA-hv79-p62r-wg3p
fixed_packages
0
url pkg:composer/cachethq/cachet@2.4.0
purl pkg:composer/cachethq/cachet@2.4.0
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/cachethq/cachet@2.4.0
aliases CVE-2023-43661, GHSA-hv79-p62r-wg3p
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mwbt-wn3j-qqh7
2
url VCID-pte7-qsjh-fbg1
vulnerability_id VCID-pte7-qsjh-fbg1
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-39165
reference_id
reference_type
scores
0
value 0.80411
scoring_system epss
scoring_elements 0.99151
published_at 2026-06-11T12:55:00Z
1
value 0.80411
scoring_system epss
scoring_elements 0.99155
published_at 2026-06-14T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-39165
1
reference_url https://github.com/fiveai/Cachet/commit/27bca8280419966ba80c6fa283d985ddffa84bb6
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/fiveai/Cachet/commit/27bca8280419966ba80c6fa283d985ddffa84bb6
2
reference_url https://github.com/fiveai/Cachet/security/advisories/GHSA-79mg-4w23-4fqc
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
1
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/fiveai/Cachet/security/advisories/GHSA-79mg-4w23-4fqc
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2021-39165
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2021-39165
4
reference_url https://github.com/advisories/GHSA-79mg-4w23-4fqc
reference_id GHSA-79mg-4w23-4fqc
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-79mg-4w23-4fqc
fixed_packages
aliases CVE-2021-39165, GHSA-79mg-4w23-4fqc
risk_score 10.0
exploitability 2.0
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-pte7-qsjh-fbg1
3
url VCID-qhp2-sje7-7fcv
vulnerability_id VCID-qhp2-sje7-7fcv
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-39174
reference_id
reference_type
scores
0
value 0.5172
scoring_system epss
scoring_elements 0.97958
published_at 2026-06-11T12:55:00Z
1
value 0.5172
scoring_system epss
scoring_elements 0.97965
published_at 2026-06-12T12:55:00Z
2
value 0.5172
scoring_system epss
scoring_elements 0.97966
published_at 2026-06-13T12:55:00Z
3
value 0.5172
scoring_system epss
scoring_elements 0.97967
published_at 2026-06-14T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-39174
1
reference_url https://blog.sonarsource.com/cachet-code-execution-via-laravel-configuration-injection
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://blog.sonarsource.com/cachet-code-execution-via-laravel-configuration-injection
2
reference_url https://github.com/cachethq/Cachet
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/cachethq/Cachet
3
reference_url https://github.com/fiveai/Cachet/releases/tag/v2.5.1
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/fiveai/Cachet/releases/tag/v2.5.1
4
reference_url https://github.com/fiveai/Cachet/security/advisories/GHSA-88f9-7xxh-c688
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/fiveai/Cachet/security/advisories/GHSA-88f9-7xxh-c688
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2021-39174
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2021-39174
6
reference_url https://github.com/advisories/GHSA-88f9-7xxh-c688
reference_id GHSA-88f9-7xxh-c688
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-88f9-7xxh-c688
fixed_packages
0
url pkg:composer/cachethq/cachet@2.5.1
purl pkg:composer/cachethq/cachet@2.5.1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/cachethq/cachet@2.5.1
aliases CVE-2021-39174, GHSA-88f9-7xxh-c688
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-qhp2-sje7-7fcv
4
url VCID-vnyk-n5a8-7qbj
vulnerability_id VCID-vnyk-n5a8-7qbj
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-39172
reference_id
reference_type
scores
0
value 0.52026
scoring_system epss
scoring_elements 0.97973
published_at 2026-06-11T12:55:00Z
1
value 0.52026
scoring_system epss
scoring_elements 0.97979
published_at 2026-06-12T12:55:00Z
2
value 0.52026
scoring_system epss
scoring_elements 0.97981
published_at 2026-06-13T12:55:00Z
3
value 0.52026
scoring_system epss
scoring_elements 0.97982
published_at 2026-06-14T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-39172
1
reference_url https://blog.sonarsource.com/cachet-code-execution-via-laravel-configuration-injection
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://blog.sonarsource.com/cachet-code-execution-via-laravel-configuration-injection
2
reference_url https://blog.sonarsource.com/cachet-code-execution-via-laravel-configuration-injection/
reference_id
reference_type
scores
url https://blog.sonarsource.com/cachet-code-execution-via-laravel-configuration-injection/
3
reference_url https://github.com/fiveai/Cachet
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/fiveai/Cachet
4
reference_url https://github.com/fiveai/Cachet/commit/6442976c25930cb370c65a22784b9caee7ed1de2
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/fiveai/Cachet/commit/6442976c25930cb370c65a22784b9caee7ed1de2
5
reference_url https://github.com/fiveai/Cachet/releases/tag/v2.5.1
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/fiveai/Cachet/releases/tag/v2.5.1
6
reference_url https://github.com/fiveai/Cachet/security/advisories/GHSA-9jxw-cfrh-jxq6
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/fiveai/Cachet/security/advisories/GHSA-9jxw-cfrh-jxq6
7
reference_url https://nvd.nist.gov/vuln/detail/CVE-2021-39172
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2021-39172
8
reference_url https://github.com/advisories/GHSA-9jxw-cfrh-jxq6
reference_id GHSA-9jxw-cfrh-jxq6
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-9jxw-cfrh-jxq6
fixed_packages
0
url pkg:composer/cachethq/cachet@2.5.1
purl pkg:composer/cachethq/cachet@2.5.1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/cachethq/cachet@2.5.1
aliases CVE-2021-39172, GHSA-9jxw-cfrh-jxq6
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vnyk-n5a8-7qbj
Fixing_vulnerabilities
Risk_score10.0
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:composer/cachethq/cachet@2.0.2