{"url":"http://public2.vulnerablecode.io/api/packages/52152?format=json","purl":"pkg:composer/silverstripe/cms@3.1.0","type":"composer","namespace":"silverstripe","name":"cms","version":"3.1.0","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"2.3.5","latest_non_vulnerable_version":"3.5.2","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/37805?format=json","vulnerability_id":"VCID-3djp-e58j-2qey","summary":"Cross-site Scripting\nHistory XSS Vulnerability in silverstripe.","references":[{"reference_url":"https://www.silverstripe.org/software/download/security-releases/ss-2015-003/","reference_id":"","reference_type":"","scores":[],"url":"https://www.silverstripe.org/software/download/security-releases/ss-2015-003/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/52154?format=json","purl":"pkg:composer/silverstripe/cms@3.1.10","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/silverstripe/cms@3.1.10"}],"aliases":["SS-2015-003-1"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3djp-e58j-2qey"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/37803?format=json","vulnerability_id":"VCID-3uu7-zheq-duh4","summary":"Cross-site Scripting\nVirtualPage XSS in silverstripe.","references":[{"reference_url":"https://www.silverstripe.org/software/download/security-releases/ss-2015-005/","reference_id":"","reference_type":"","scores":[],"url":"https://www.silverstripe.org/software/download/security-releases/ss-2015-005/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/52154?format=json","purl":"pkg:composer/silverstripe/cms@3.1.10","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/silverstripe/cms@3.1.10"}],"aliases":["SS-2015-005-1"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3uu7-zheq-duh4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/37825?format=json","vulnerability_id":"VCID-p8xv-3qj1-h3g8","summary":"Incorrect Permission Assignment for Critical Resource\nSiteTree Creation Permission Vulnerability in silverstripe.","references":[{"reference_url":"https://www.silverstripe.org/software/download/security-releases/ss-2015-008-sitetree-creation-permission-vulnerability/","reference_id":"","reference_type":"","scores":[],"url":"https://www.silverstripe.org/software/download/security-releases/ss-2015-008-sitetree-creation-permission-vulnerability/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/52214?format=json","purl":"pkg:composer/silverstripe/cms@3.1.11","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/silverstripe/cms@3.1.11"}],"aliases":["SS-2015-008-1"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-p8xv-3qj1-h3g8"}],"fixing_vulnerabilities":[],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/silverstripe/cms@3.1.0"}