Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:composer/willdurand/js-translation-bundle@2.1.1
Typecomposer
Namespacewilldurand
Namejs-translation-bundle
Version2.1.1
Qualifiers
Subpath
Is_vulnerablefalse
Next_non_vulnerable_versionnull
Latest_non_vulnerable_versionnull
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-p7qs-xhtj-aydp
vulnerability_id VCID-p7qs-xhtj-aydp
summary 
Path Traversal
Fixed potential path traversal attack and remote code injection.
references
0
reference_url https://github.com/willdurand/BazingaJsTranslationBundle/releases/tag/v2.1.1
reference_id
reference_type
scores
url https://github.com/willdurand/BazingaJsTranslationBundle/releases/tag/v2.1.1
fixed_packages
0
url pkg:composer/willdurand/js-translation-bundle@2.1.1
purl pkg:composer/willdurand/js-translation-bundle@2.1.1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/willdurand/js-translation-bundle@2.1.1
aliases GMS-2014-50
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-p7qs-xhtj-aydp
1
url VCID-vpd4-egka-juga
vulnerability_id VCID-vpd4-egka-juga
summary 
willdurand/js-translation-bundle potential path traversal attack and remote code injection
A path traversal and a javascript code injection vulnerabilities were identified in willdurand/js-translation-bundle versions prior to 2.1.1.
references
0
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/willdurand/js-translation-bundle/2014-07-29-1.yaml
reference_id
reference_type
scores
url https://github.com/FriendsOfPHP/security-advisories/blob/master/willdurand/js-translation-bundle/2014-07-29-1.yaml
1
reference_url https://github.com/willdurand/BazingaJsTranslationBundle
reference_id
reference_type
scores
url https://github.com/willdurand/BazingaJsTranslationBundle
2
reference_url https://github.com/willdurand/BazingaJsTranslationBundle/commit/7accee93569c3f3d2379f035a41ece66522801fc
reference_id
reference_type
scores
url https://github.com/willdurand/BazingaJsTranslationBundle/commit/7accee93569c3f3d2379f035a41ece66522801fc
3
reference_url https://github.com/willdurand/BazingaJsTranslationBundle/commit/df6c0fd603c0192ebc5584991a52a1092c5f60bd
reference_id
reference_type
scores
url https://github.com/willdurand/BazingaJsTranslationBundle/commit/df6c0fd603c0192ebc5584991a52a1092c5f60bd
4
reference_url https://github.com/willdurand/BazingaJsTranslationBundle/releases/tag/v2.1.1
reference_id
reference_type
scores
url https://github.com/willdurand/BazingaJsTranslationBundle/releases/tag/v2.1.1
5
reference_url https://github.com/advisories/GHSA-x86x-qhf8-f37w
reference_id GHSA-x86x-qhf8-f37w
reference_type
scores
url https://github.com/advisories/GHSA-x86x-qhf8-f37w
fixed_packages
0
url pkg:composer/willdurand/js-translation-bundle@2.1.1
purl pkg:composer/willdurand/js-translation-bundle@2.1.1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/willdurand/js-translation-bundle@2.1.1
aliases GHSA-x86x-qhf8-f37w
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vpd4-egka-juga
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:composer/willdurand/js-translation-bundle@2.1.1