{"url":"http://public2.vulnerablecode.io/api/packages/530890?format=json","purl":"pkg:composer/showdoc/showdoc@2.9.14","type":"composer","namespace":"showdoc","name":"showdoc","version":"2.9.14","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"3.8.1","latest_non_vulnerable_version":"3.8.1","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/208429?format=json","vulnerability_id":"VCID-3ez4-xzmr-qbd6","summary":"Cross-site Scripting in ShowDoc","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0880","reference_id":"","reference_type":"","scores":[{"value":"0.00304","scoring_system":"epss","scoring_elements":"0.5419","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00304","scoring_system":"epss","scoring_elements":"0.54064","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00304","scoring_system":"epss","scoring_elements":"0.54195","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00304","scoring_system":"epss","scoring_elements":"0.54208","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0880"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/818d7fe731f452acccacf731ce47ec27ad68049c","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/818d7fe731f452acccacf731ce47ec27ad68049c"},{"reference_url":"https://huntr.dev/bounties/df347aa9-ed9b-4f75-af99-c83b8aad3bcf","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/df347aa9-ed9b-4f75-af99-c83b8aad3bcf"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0880","reference_id":"CVE-2022-0880","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0880"},{"reference_url":"https://github.com/advisories/GHSA-gq77-3r6x-383w","reference_id":"GHSA-gq77-3r6x-383w","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-gq77-3r6x-383w"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/18825?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3n97-92yn-ckck"},{"vulnerability":"VCID-93sj-gsh9-5bb1"},{"vulnerability":"VCID-auh1-nb9b-zfg3"},{"vulnerability":"VCID-deg7-4ma6-tyd2"},{"vulnerability":"VCID-ewjx-puts-f7h4"},{"vulnerability":"VCID-fk3v-vaj6-dka4"},{"vulnerability":"VCID-kjsp-v37r-yue1"},{"vulnerability":"VCID-kwse-tbqn-tqfr"},{"vulnerability":"VCID-m3mp-m3pq-fbd9"},{"vulnerability":"VCID-mybn-n9zu-ukfm"},{"vulnerability":"VCID-ny73-vkpe-mye4"},{"vulnerability":"VCID-pupy-jprc-17f4"},{"vulnerability":"VCID-s5vu-x24p-4uga"},{"vulnerability":"VCID-u4xp-xb3z-r7dm"},{"vulnerability":"VCID-ubse-tfbr-audj"},{"vulnerability":"VCID-urvq-g1g1-8bgy"},{"vulnerability":"VCID-vjve-v4fx-hffb"},{"vulnerability":"VCID-x5zj-4exs-t7em"},{"vulnerability":"VCID-zsvd-ysfj-gkad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.2"},{"url":"http://public2.vulnerablecode.io/api/packages/19684?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ubse-tfbr-audj"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.4"}],"aliases":["CVE-2022-0880","GHSA-gq77-3r6x-383w"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3ez4-xzmr-qbd6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/208490?format=json","vulnerability_id":"VCID-3n97-92yn-ckck","summary":"File Upload Restriction Bypass leading to Cross-site Scripting in ShowDoc","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0951","reference_id":"","reference_type":"","scores":[{"value":"0.00343","scoring_system":"epss","scoring_elements":"0.57415","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00343","scoring_system":"epss","scoring_elements":"0.57297","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00343","scoring_system":"epss","scoring_elements":"0.57421","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00343","scoring_system":"epss","scoring_elements":"0.57429","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0951"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/237ac6d43bf3728bf3587c486a23b4a48ea7acb3","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/237ac6d43bf3728bf3587c486a23b4a48ea7acb3"},{"reference_url":"https://huntr.dev/bounties/b3a983a3-17f9-4aa8-92d7-8a0c92a93932","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/b3a983a3-17f9-4aa8-92d7-8a0c92a93932"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0951","reference_id":"CVE-2022-0951","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0951"},{"reference_url":"https://github.com/advisories/GHSA-j6jg-w79c-7p8v","reference_id":"GHSA-j6jg-w79c-7p8v","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-j6jg-w79c-7p8v"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/19684?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ubse-tfbr-audj"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.4"}],"aliases":["CVE-2022-0951","GHSA-j6jg-w79c-7p8v"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3n97-92yn-ckck"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/208444?format=json","vulnerability_id":"VCID-93sj-gsh9-5bb1","summary":"Cross-site Scripting in ShowDoc","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0941","reference_id":"","reference_type":"","scores":[{"value":"0.00196","scoring_system":"epss","scoring_elements":"0.41596","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00196","scoring_system":"epss","scoring_elements":"0.41431","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00196","scoring_system":"epss","scoring_elements":"0.41604","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00196","scoring_system":"epss","scoring_elements":"0.41614","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0941"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/4b6e6603c714aab1de346c5f5cb0bbb4c871be1f","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/4b6e6603c714aab1de346c5f5cb0bbb4c871be1f"},{"reference_url":"https://huntr.dev/bounties/040a910e-e689-4fcb-9e4f-95206515d1bc","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/040a910e-e689-4fcb-9e4f-95206515d1bc"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0941","reference_id":"CVE-2022-0941","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0941"},{"reference_url":"https://github.com/advisories/GHSA-wg4r-q74r-p7c8","reference_id":"GHSA-wg4r-q74r-p7c8","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-wg4r-q74r-p7c8"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/19684?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ubse-tfbr-audj"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.4"}],"aliases":["CVE-2022-0941","GHSA-wg4r-q74r-p7c8"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-93sj-gsh9-5bb1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/208488?format=json","vulnerability_id":"VCID-auh1-nb9b-zfg3","summary":"Cross-site Scripting in ShowDoc","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0950","reference_id":"","reference_type":"","scores":[{"value":"0.00281","scoring_system":"epss","scoring_elements":"0.51979","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00281","scoring_system":"epss","scoring_elements":"0.51849","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00281","scoring_system":"epss","scoring_elements":"0.51976","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00281","scoring_system":"epss","scoring_elements":"0.51992","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0950"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/237ac6d43bf3728bf3587c486a23b4a48ea7acb3","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/237ac6d43bf3728bf3587c486a23b4a48ea7acb3"},{"reference_url":"https://huntr.dev/bounties/acc23996-bd57-448f-9eb4-05a8a046c2dc","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/acc23996-bd57-448f-9eb4-05a8a046c2dc"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0950","reference_id":"CVE-2022-0950","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0950"},{"reference_url":"https://github.com/advisories/GHSA-v94v-pxqp-5qgj","reference_id":"GHSA-v94v-pxqp-5qgj","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-v94v-pxqp-5qgj"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/19684?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ubse-tfbr-audj"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.4"}],"aliases":["CVE-2022-0950","GHSA-v94v-pxqp-5qgj"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-auh1-nb9b-zfg3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/208481?format=json","vulnerability_id":"VCID-deg7-4ma6-tyd2","summary":"Cross-site Scripting in ShowDoc","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0942","reference_id":"","reference_type":"","scores":[{"value":"0.00344","scoring_system":"epss","scoring_elements":"0.57476","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00344","scoring_system":"epss","scoring_elements":"0.57358","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00344","scoring_system":"epss","scoring_elements":"0.57481","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00344","scoring_system":"epss","scoring_elements":"0.57489","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0942"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/3caa32334db0c277b84e993eaca2036f5d1dbef8","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/3caa32334db0c277b84e993eaca2036f5d1dbef8"},{"reference_url":"https://huntr.dev/bounties/a412707c-18da-4c84-adc0-9801ed8068c9","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/a412707c-18da-4c84-adc0-9801ed8068c9"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0942","reference_id":"CVE-2022-0942","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0942"},{"reference_url":"https://github.com/advisories/GHSA-9fcc-7g44-mxrj","reference_id":"GHSA-9fcc-7g44-mxrj","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-9fcc-7g44-mxrj"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/19684?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ubse-tfbr-audj"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.4"}],"aliases":["CVE-2022-0942","GHSA-9fcc-7g44-mxrj"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-deg7-4ma6-tyd2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/208492?format=json","vulnerability_id":"VCID-ewjx-puts-f7h4","summary":"Stored Cross-site Scripting in ShowDoc","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0945","reference_id":"","reference_type":"","scores":[{"value":"0.0035","scoring_system":"epss","scoring_elements":"0.57986","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0035","scoring_system":"epss","scoring_elements":"0.57874","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0035","scoring_system":"epss","scoring_elements":"0.57992","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0035","scoring_system":"epss","scoring_elements":"0.58002","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0945"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/ba45d19e1d77a7eea866dab30eff5da552694891","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/ba45d19e1d77a7eea866dab30eff5da552694891"},{"reference_url":"https://huntr.dev/bounties/8702e2bf-4af2-4391-b651-c8c89e7d089e","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/8702e2bf-4af2-4391-b651-c8c89e7d089e"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0945","reference_id":"CVE-2022-0945","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0945"},{"reference_url":"https://github.com/advisories/GHSA-vpwq-6cp4-ffqc","reference_id":"GHSA-vpwq-6cp4-ffqc","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-vpwq-6cp4-ffqc"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/19684?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ubse-tfbr-audj"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.4"}],"aliases":["CVE-2022-0945","GHSA-vpwq-6cp4-ffqc"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ewjx-puts-f7h4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/208579?format=json","vulnerability_id":"VCID-fk3v-vaj6-dka4","summary":"Unrestricted Upload of File with Dangerous Type in ShowDoc","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-1034","reference_id":"","reference_type":"","scores":[{"value":"0.00487","scoring_system":"epss","scoring_elements":"0.65999","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00487","scoring_system":"epss","scoring_elements":"0.65903","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00487","scoring_system":"epss","scoring_elements":"0.66009","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00487","scoring_system":"epss","scoring_elements":"0.66013","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-1034"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"7.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/bd792a89c0325836fbd64784f4c4117c0171416b","reference_id":"","reference_type":"","scores":[{"value":"7.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/bd792a89c0325836fbd64784f4c4117c0171416b"},{"reference_url":"https://huntr.dev/bounties/d205c489-3266-4ac4-acb7-c8ee570887f7","reference_id":"","reference_type":"","scores":[{"value":"7.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/d205c489-3266-4ac4-acb7-c8ee570887f7"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-1034","reference_id":"CVE-2022-1034","reference_type":"","scores":[{"value":"7.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-1034"},{"reference_url":"https://github.com/advisories/GHSA-xp82-jmw8-mjxp","reference_id":"GHSA-xp82-jmw8-mjxp","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-xp82-jmw8-mjxp"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/19684?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ubse-tfbr-audj"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.4"}],"aliases":["CVE-2022-1034","GHSA-xp82-jmw8-mjxp"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fk3v-vaj6-dka4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/207132?format=json","vulnerability_id":"VCID-fyk4-u9vt-pfgj","summary":"showdoc is vulnerable to Cross-Site Request Forgery (CSRF)","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-4168","reference_id":"","reference_type":"","scores":[{"value":"0.00105","scoring_system":"epss","scoring_elements":"0.28176","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00105","scoring_system":"epss","scoring_elements":"0.27977","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00105","scoring_system":"epss","scoring_elements":"0.28189","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00105","scoring_system":"epss","scoring_elements":"0.282","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-4168"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/3ff0c85d439ccbdfadeb96b5a52acf6318041109","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/3ff0c85d439ccbdfadeb96b5a52acf6318041109"},{"reference_url":"https://huntr.dev/bounties/f14431e2-f1f6-4331-ba91-a4ea8b26be0c","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/f14431e2-f1f6-4331-ba91-a4ea8b26be0c"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-4168","reference_id":"CVE-2021-4168","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-4168"},{"reference_url":"https://github.com/advisories/GHSA-7vxc-chqj-h83g","reference_id":"GHSA-7vxc-chqj-h83g","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-7vxc-chqj-h83g"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/18507?format=json","purl":"pkg:composer/showdoc/showdoc@2.9.15","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3ez4-xzmr-qbd6"},{"vulnerability":"VCID-3n97-92yn-ckck"},{"vulnerability":"VCID-93sj-gsh9-5bb1"},{"vulnerability":"VCID-auh1-nb9b-zfg3"},{"vulnerability":"VCID-deg7-4ma6-tyd2"},{"vulnerability":"VCID-ewjx-puts-f7h4"},{"vulnerability":"VCID-fk3v-vaj6-dka4"},{"vulnerability":"VCID-kjsp-v37r-yue1"},{"vulnerability":"VCID-kwse-tbqn-tqfr"},{"vulnerability":"VCID-m3mp-m3pq-fbd9"},{"vulnerability":"VCID-mybn-n9zu-ukfm"},{"vulnerability":"VCID-ny73-vkpe-mye4"},{"vulnerability":"VCID-pe2f-4yes-cyew"},{"vulnerability":"VCID-pupy-jprc-17f4"},{"vulnerability":"VCID-s5vu-x24p-4uga"},{"vulnerability":"VCID-u4xp-xb3z-r7dm"},{"vulnerability":"VCID-ubse-tfbr-audj"},{"vulnerability":"VCID-urvq-g1g1-8bgy"},{"vulnerability":"VCID-uwjs-9kjy-jqcp"},{"vulnerability":"VCID-vjve-v4fx-hffb"},{"vulnerability":"VCID-w3qg-kqjv-r7dk"},{"vulnerability":"VCID-x5zj-4exs-t7em"},{"vulnerability":"VCID-zsvd-ysfj-gkad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.9.15"}],"aliases":["CVE-2021-4168","GHSA-7vxc-chqj-h83g"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fyk4-u9vt-pfgj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/207553?format=json","vulnerability_id":"VCID-kjsp-v37r-yue1","summary":"SQL Injection in showdoc","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0362","reference_id":"","reference_type":"","scores":[{"value":"0.00274","scoring_system":"epss","scoring_elements":"0.5123","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00274","scoring_system":"epss","scoring_elements":"0.51101","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00274","scoring_system":"epss","scoring_elements":"0.51232","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00274","scoring_system":"epss","scoring_elements":"0.51244","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0362"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"6.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/2b34e267e4186125f99bfa420140634ad45801fb","reference_id":"","reference_type":"","scores":[{"value":"6.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/2b34e267e4186125f99bfa420140634ad45801fb"},{"reference_url":"https://huntr.dev/bounties/e7c72417-eb8f-416c-8480-be76ac0a9091","reference_id":"","reference_type":"","scores":[{"value":"6.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/e7c72417-eb8f-416c-8480-be76ac0a9091"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0362","reference_id":"CVE-2022-0362","reference_type":"","scores":[{"value":"6.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0362"},{"reference_url":"https://github.com/advisories/GHSA-9cq5-xgg4-x477","reference_id":"GHSA-9cq5-xgg4-x477","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-9cq5-xgg4-x477"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/18826?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3ez4-xzmr-qbd6"},{"vulnerability":"VCID-3n97-92yn-ckck"},{"vulnerability":"VCID-93sj-gsh9-5bb1"},{"vulnerability":"VCID-auh1-nb9b-zfg3"},{"vulnerability":"VCID-deg7-4ma6-tyd2"},{"vulnerability":"VCID-ewjx-puts-f7h4"},{"vulnerability":"VCID-fk3v-vaj6-dka4"},{"vulnerability":"VCID-kwse-tbqn-tqfr"},{"vulnerability":"VCID-m3mp-m3pq-fbd9"},{"vulnerability":"VCID-mybn-n9zu-ukfm"},{"vulnerability":"VCID-ny73-vkpe-mye4"},{"vulnerability":"VCID-pupy-jprc-17f4"},{"vulnerability":"VCID-s5vu-x24p-4uga"},{"vulnerability":"VCID-u4xp-xb3z-r7dm"},{"vulnerability":"VCID-ubse-tfbr-audj"},{"vulnerability":"VCID-urvq-g1g1-8bgy"},{"vulnerability":"VCID-vjve-v4fx-hffb"},{"vulnerability":"VCID-x5zj-4exs-t7em"},{"vulnerability":"VCID-zsvd-ysfj-gkad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.3"}],"aliases":["CVE-2022-0362","GHSA-9cq5-xgg4-x477"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kjsp-v37r-yue1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/208474?format=json","vulnerability_id":"VCID-kwse-tbqn-tqfr","summary":"Cross-site Scripting in ShowDoc","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0965","reference_id":"","reference_type":"","scores":[{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.60172","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.60065","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.60176","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.60184","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0965"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/3caa32334db0c277b84e993eaca2036f5d1dbef8","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/3caa32334db0c277b84e993eaca2036f5d1dbef8"},{"reference_url":"https://huntr.dev/bounties/d66c88ce-63e2-4515-a429-8e43a42aa347","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/d66c88ce-63e2-4515-a429-8e43a42aa347"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0965","reference_id":"CVE-2022-0965","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0965"},{"reference_url":"https://github.com/advisories/GHSA-v8mp-hhjq-h4cj","reference_id":"GHSA-v8mp-hhjq-h4cj","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-v8mp-hhjq-h4cj"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/19684?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ubse-tfbr-audj"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.4"}],"aliases":["CVE-2022-0965","GHSA-v8mp-hhjq-h4cj"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kwse-tbqn-tqfr"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/208483?format=json","vulnerability_id":"VCID-m3mp-m3pq-fbd9","summary":"Cross-site Scripting in ShowDoc","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0956","reference_id":"","reference_type":"","scores":[{"value":"0.00337","scoring_system":"epss","scoring_elements":"0.5705","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00337","scoring_system":"epss","scoring_elements":"0.56931","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00337","scoring_system":"epss","scoring_elements":"0.57057","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00337","scoring_system":"epss","scoring_elements":"0.57065","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0956"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/56e450c3adf75c707500d7231a78c9fc894c7f13","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/56e450c3adf75c707500d7231a78c9fc894c7f13"},{"reference_url":"https://huntr.dev/bounties/5b0e3f02-309f-4b59-8020-d7ac0f1999f2","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/5b0e3f02-309f-4b59-8020-d7ac0f1999f2"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0956","reference_id":"CVE-2022-0956","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0956"},{"reference_url":"https://github.com/advisories/GHSA-wg8p-w946-c482","reference_id":"GHSA-wg8p-w946-c482","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-wg8p-w946-c482"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/19684?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ubse-tfbr-audj"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.4"}],"aliases":["CVE-2022-0956","GHSA-wg8p-w946-c482"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-m3mp-m3pq-fbd9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/208435?format=json","vulnerability_id":"VCID-mybn-n9zu-ukfm","summary":"Cross-site Scripting in showdoc/showdoc","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0960","reference_id":"","reference_type":"","scores":[{"value":"0.00388","scoring_system":"epss","scoring_elements":"0.60413","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00388","scoring_system":"epss","scoring_elements":"0.60307","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00388","scoring_system":"epss","scoring_elements":"0.60418","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00388","scoring_system":"epss","scoring_elements":"0.60424","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0960"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"9.0","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/92bc6a83a3a60e01a0d2effb98ab47d8d7eab28f","reference_id":"","reference_type":"","scores":[{"value":"9.0","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/92bc6a83a3a60e01a0d2effb98ab47d8d7eab28f"},{"reference_url":"https://huntr.dev/bounties/462cd8a7-b1a9-4e93-af71-b56ba1d7ad4e","reference_id":"","reference_type":"","scores":[{"value":"9.0","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/462cd8a7-b1a9-4e93-af71-b56ba1d7ad4e"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0960","reference_id":"CVE-2022-0960","reference_type":"","scores":[{"value":"9.0","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0960"},{"reference_url":"https://github.com/advisories/GHSA-rphc-h572-2x9f","reference_id":"GHSA-rphc-h572-2x9f","reference_type":"","scores":[{"value":"CRITICAL","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-rphc-h572-2x9f"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/19684?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ubse-tfbr-audj"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.4"}],"aliases":["CVE-2022-0960","GHSA-rphc-h572-2x9f"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-mybn-n9zu-ukfm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/208442?format=json","vulnerability_id":"VCID-ny73-vkpe-mye4","summary":"Cross-site Scripting in ShowDoc","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0937","reference_id":"","reference_type":"","scores":[{"value":"0.00181","scoring_system":"epss","scoring_elements":"0.39799","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00181","scoring_system":"epss","scoring_elements":"0.39628","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00181","scoring_system":"epss","scoring_elements":"0.39812","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00181","scoring_system":"epss","scoring_elements":"0.39823","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0937"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/42c0d9813df3035728b36116a6ce9116e6fa8ed3","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/42c0d9813df3035728b36116a6ce9116e6fa8ed3"},{"reference_url":"https://huntr.dev/bounties/6127739d-f4f2-44cd-ae3d-e3ccb7f0d7b5","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/6127739d-f4f2-44cd-ae3d-e3ccb7f0d7b5"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0937","reference_id":"CVE-2022-0937","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0937"},{"reference_url":"https://github.com/advisories/GHSA-mg5h-9rhq-4cqx","reference_id":"GHSA-mg5h-9rhq-4cqx","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-mg5h-9rhq-4cqx"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/19684?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ubse-tfbr-audj"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.4"}],"aliases":["CVE-2022-0937","GHSA-mg5h-9rhq-4cqx"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ny73-vkpe-mye4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/208242?format=json","vulnerability_id":"VCID-pe2f-4yes-cyew","summary":"Unrestricted Upload of File with Dangerous Type in showdoc","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0409","reference_id":"","reference_type":"","scores":[{"value":"0.00209","scoring_system":"epss","scoring_elements":"0.43542","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00209","scoring_system":"epss","scoring_elements":"0.43385","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00209","scoring_system":"epss","scoring_elements":"0.43552","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00209","scoring_system":"epss","scoring_elements":"0.43561","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0409"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/7383d7a3c1b0807b6f397ba7df415a0ce7ccc436","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/7383d7a3c1b0807b6f397ba7df415a0ce7ccc436"},{"reference_url":"https://huntr.dev/bounties/c25bfad1-2611-4226-954f-009e50f966f7","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/c25bfad1-2611-4226-954f-009e50f966f7"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0409","reference_id":"CVE-2022-0409","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0409"},{"reference_url":"https://github.com/advisories/GHSA-6x3j-x9rp-whxp","reference_id":"GHSA-6x3j-x9rp-whxp","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-6x3j-x9rp-whxp"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/18825?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3n97-92yn-ckck"},{"vulnerability":"VCID-93sj-gsh9-5bb1"},{"vulnerability":"VCID-auh1-nb9b-zfg3"},{"vulnerability":"VCID-deg7-4ma6-tyd2"},{"vulnerability":"VCID-ewjx-puts-f7h4"},{"vulnerability":"VCID-fk3v-vaj6-dka4"},{"vulnerability":"VCID-kjsp-v37r-yue1"},{"vulnerability":"VCID-kwse-tbqn-tqfr"},{"vulnerability":"VCID-m3mp-m3pq-fbd9"},{"vulnerability":"VCID-mybn-n9zu-ukfm"},{"vulnerability":"VCID-ny73-vkpe-mye4"},{"vulnerability":"VCID-pupy-jprc-17f4"},{"vulnerability":"VCID-s5vu-x24p-4uga"},{"vulnerability":"VCID-u4xp-xb3z-r7dm"},{"vulnerability":"VCID-ubse-tfbr-audj"},{"vulnerability":"VCID-urvq-g1g1-8bgy"},{"vulnerability":"VCID-vjve-v4fx-hffb"},{"vulnerability":"VCID-x5zj-4exs-t7em"},{"vulnerability":"VCID-zsvd-ysfj-gkad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.2"}],"aliases":["CVE-2022-0409","GHSA-6x3j-x9rp-whxp"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-pe2f-4yes-cyew"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/208434?format=json","vulnerability_id":"VCID-pupy-jprc-17f4","summary":"Cross-site Scripting in ShowDoc","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0962","reference_id":"","reference_type":"","scores":[{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.60172","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.60065","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.60176","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.60184","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0962"},{"reference_url":"https://github.com/star7th/showdoc/commit/3caa32334db0c277b84e993eaca2036f5d1dbef8","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/3caa32334db0c277b84e993eaca2036f5d1dbef8"},{"reference_url":"https://huntr.dev/bounties/7ebe3e5f-2c86-44de-b83e-2ddb6bbda908","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/7ebe3e5f-2c86-44de-b83e-2ddb6bbda908"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0962","reference_id":"CVE-2022-0962","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0962"},{"reference_url":"https://github.com/advisories/GHSA-pccm-j6vj-jwwf","reference_id":"GHSA-pccm-j6vj-jwwf","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-pccm-j6vj-jwwf"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/19684?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ubse-tfbr-audj"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.4"}],"aliases":["CVE-2022-0962","GHSA-pccm-j6vj-jwwf"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-pupy-jprc-17f4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/208476?format=json","vulnerability_id":"VCID-s5vu-x24p-4uga","summary":"Cross-site Scripting in ShowDoc","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0964","reference_id":"","reference_type":"","scores":[{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.60172","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.60065","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.60176","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.60184","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0964"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/3caa32334db0c277b84e993eaca2036f5d1dbef8","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/3caa32334db0c277b84e993eaca2036f5d1dbef8"},{"reference_url":"https://huntr.dev/bounties/dbe39998-8eb7-46ea-997f-7b27f6f16ea0","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/dbe39998-8eb7-46ea-997f-7b27f6f16ea0"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0964","reference_id":"CVE-2022-0964","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0964"},{"reference_url":"https://github.com/advisories/GHSA-xm3x-787m-p66r","reference_id":"GHSA-xm3x-787m-p66r","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-xm3x-787m-p66r"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/19684?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ubse-tfbr-audj"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.4"}],"aliases":["CVE-2022-0964","GHSA-xm3x-787m-p66r"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-s5vu-x24p-4uga"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/208477?format=json","vulnerability_id":"VCID-u4xp-xb3z-r7dm","summary":"Stored Cross-site Scripting in showdoc","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0967","reference_id":"","reference_type":"","scores":[{"value":"0.00831","scoring_system":"epss","scoring_elements":"0.75084","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00831","scoring_system":"epss","scoring_elements":"0.75014","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00831","scoring_system":"epss","scoring_elements":"0.75094","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00831","scoring_system":"epss","scoring_elements":"0.75097","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0967"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"6.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:P/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/3caa32334db0c277b84e993eaca2036f5d1dbef8","reference_id":"","reference_type":"","scores":[{"value":"6.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:P/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/3caa32334db0c277b84e993eaca2036f5d1dbef8"},{"reference_url":"https://huntr.dev/bounties/9dea3c98-7609-480d-902d-149067bd1e2a","reference_id":"","reference_type":"","scores":[{"value":"6.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:P/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/9dea3c98-7609-480d-902d-149067bd1e2a"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/50941.txt","reference_id":"CVE-2022-0967","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/50941.txt"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0967","reference_id":"CVE-2022-0967","reference_type":"","scores":[{"value":"6.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:P/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0967"},{"reference_url":"https://github.com/advisories/GHSA-3pg8-c473-w6rr","reference_id":"GHSA-3pg8-c473-w6rr","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-3pg8-c473-w6rr"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/19684?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ubse-tfbr-audj"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.4"}],"aliases":["CVE-2022-0967","GHSA-3pg8-c473-w6rr"],"risk_score":10.0,"exploitability":"2.0","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-u4xp-xb3z-r7dm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/75776?format=json","vulnerability_id":"VCID-ubse-tfbr-audj","summary":"A vulnerability was determined in star7th ShowDoc up to 2.10.10/3.6.2/3.8.0. Affected by this vulnerability is an unknown functionality of the file server/Application/Api/Controller/PageController.class.PHP of the component API Page Sort Endpoint. Executing a manipulation of the argument pages can lead to sql injection. The attack may be launched remotely. Upgrading to version 3.8.1 addresses this issue. It is suggested to upgrade the affected component. According to the researcher, \"[t]he vendor explicitly stated they will not backport patches to the older affected versions.\"","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-6982","reference_id":"","reference_type":"","scores":[{"value":"0.00012","scoring_system":"epss","scoring_elements":"0.01812","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00012","scoring_system":"epss","scoring_elements":"0.01804","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00012","scoring_system":"epss","scoring_elements":"0.01803","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00012","scoring_system":"epss","scoring_elements":"0.01801","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-6982"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2026-6982","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2026-6982"},{"reference_url":"https://vuldb.com/vuln/359525","reference_id":"359525","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:L/Au:S/C:P/I:P/A:P/E:ND/RL:OF/RC:C"},{"value":"6.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:X/RL:O/RC:C"},{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:X/RL:O/RC:C"},{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-27T13:18:53Z/"}],"url":"https://vuldb.com/vuln/359525"},{"reference_url":"https://gist.github.com/saDL0w/555e19668264f98d96259ad47ea33811","reference_id":"555e19668264f98d96259ad47ea33811","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:L/Au:S/C:P/I:P/A:P/E:ND/RL:OF/RC:C"},{"value":"6.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:X/RL:O/RC:C"},{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:X/RL:O/RC:C"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-27T13:18:53Z/"}],"url":"https://gist.github.com/saDL0w/555e19668264f98d96259ad47ea33811"},{"reference_url":"https://vuldb.com/submit/795528","reference_id":"795528","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:L/Au:S/C:P/I:P/A:P/E:ND/RL:OF/RC:C"},{"value":"6.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:X/RL:O/RC:C"},{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:X/RL:O/RC:C"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-27T13:18:53Z/"}],"url":"https://vuldb.com/submit/795528"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:showdoc:showdoc:*:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:showdoc:showdoc:*:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:showdoc:showdoc:*:*:*:*:*:*:*:*"},{"reference_url":"https://vuldb.com/vuln/359525/cti","reference_id":"cti","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:L/Au:S/C:P/I:P/A:P/E:ND/RL:OF/RC:C"},{"value":"6.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:X/RL:O/RC:C"},{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:X/RL:O/RC:C"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-27T13:18:53Z/"}],"url":"https://vuldb.com/vuln/359525/cti"},{"reference_url":"https://github.com/advisories/GHSA-fm5r-cj7v-rj2c","reference_id":"GHSA-fm5r-cj7v-rj2c","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-fm5r-cj7v-rj2c"},{"reference_url":"https://github.com/star7th/showdoc/releases/tag/v3.8.1","reference_id":"v3.8.1","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:L/Au:S/C:P/I:P/A:P/E:ND/RL:OF/RC:C"},{"value":"6.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:X/RL:O/RC:C"},{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:X/RL:O/RC:C"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-27T13:18:53Z/"}],"url":"https://github.com/star7th/showdoc/releases/tag/v3.8.1"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/374077?format=json","purl":"pkg:composer/showdoc/showdoc@3.8.1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@3.8.1"}],"aliases":["CVE-2026-6982","GHSA-fm5r-cj7v-rj2c"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ubse-tfbr-audj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/208440?format=json","vulnerability_id":"VCID-urvq-g1g1-8bgy","summary":"Cross-site Scripting in ShowDoc","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0940","reference_id":"","reference_type":"","scores":[{"value":"0.00191","scoring_system":"epss","scoring_elements":"0.41115","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00191","scoring_system":"epss","scoring_elements":"0.40949","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00191","scoring_system":"epss","scoring_elements":"0.41126","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00191","scoring_system":"epss","scoring_elements":"0.41137","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0940"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/78522520892d4e29cc94148c6ec84a204a607b73","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/78522520892d4e29cc94148c6ec84a204a607b73"},{"reference_url":"https://huntr.dev/bounties/856bd2e2-db4f-4b7d-9927-222261ae3782","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/856bd2e2-db4f-4b7d-9927-222261ae3782"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0940","reference_id":"CVE-2022-0940","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0940"},{"reference_url":"https://github.com/advisories/GHSA-82j4-vr25-x394","reference_id":"GHSA-82j4-vr25-x394","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-82j4-vr25-x394"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/19684?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ubse-tfbr-audj"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.4"}],"aliases":["CVE-2022-0940","GHSA-82j4-vr25-x394"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-urvq-g1g1-8bgy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/207627?format=json","vulnerability_id":"VCID-uwjs-9kjy-jqcp","summary":"Cross-site Scripting in showdoc","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-4172","reference_id":"","reference_type":"","scores":[{"value":"0.00195","scoring_system":"epss","scoring_elements":"0.41473","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00195","scoring_system":"epss","scoring_elements":"0.41306","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00195","scoring_system":"epss","scoring_elements":"0.41482","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00195","scoring_system":"epss","scoring_elements":"0.41491","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-4172"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/409c8a1208bbb847046a9496303192980f2e6219","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/409c8a1208bbb847046a9496303192980f2e6219"},{"reference_url":"https://huntr.dev/bounties/c041b693-877b-4456-b463-19e4c9456eee","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/c041b693-877b-4456-b463-19e4c9456eee"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-4172","reference_id":"CVE-2021-4172","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-4172"},{"reference_url":"https://github.com/advisories/GHSA-7x22-pmw5-66mq","reference_id":"GHSA-7x22-pmw5-66mq","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-7x22-pmw5-66mq"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/18825?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3n97-92yn-ckck"},{"vulnerability":"VCID-93sj-gsh9-5bb1"},{"vulnerability":"VCID-auh1-nb9b-zfg3"},{"vulnerability":"VCID-deg7-4ma6-tyd2"},{"vulnerability":"VCID-ewjx-puts-f7h4"},{"vulnerability":"VCID-fk3v-vaj6-dka4"},{"vulnerability":"VCID-kjsp-v37r-yue1"},{"vulnerability":"VCID-kwse-tbqn-tqfr"},{"vulnerability":"VCID-m3mp-m3pq-fbd9"},{"vulnerability":"VCID-mybn-n9zu-ukfm"},{"vulnerability":"VCID-ny73-vkpe-mye4"},{"vulnerability":"VCID-pupy-jprc-17f4"},{"vulnerability":"VCID-s5vu-x24p-4uga"},{"vulnerability":"VCID-u4xp-xb3z-r7dm"},{"vulnerability":"VCID-ubse-tfbr-audj"},{"vulnerability":"VCID-urvq-g1g1-8bgy"},{"vulnerability":"VCID-vjve-v4fx-hffb"},{"vulnerability":"VCID-x5zj-4exs-t7em"},{"vulnerability":"VCID-zsvd-ysfj-gkad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.2"}],"aliases":["CVE-2021-4172","GHSA-7x22-pmw5-66mq"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-uwjs-9kjy-jqcp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/208489?format=json","vulnerability_id":"VCID-vjve-v4fx-hffb","summary":"Cross-site Scripting in ShowDoc","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0957","reference_id":"","reference_type":"","scores":[{"value":"0.00305","scoring_system":"epss","scoring_elements":"0.54311","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00305","scoring_system":"epss","scoring_elements":"0.54185","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00305","scoring_system":"epss","scoring_elements":"0.54315","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00305","scoring_system":"epss","scoring_elements":"0.54329","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0957"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/d1c9ed0d77ea5d56f09be0c492361dca8af745bb","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/d1c9ed0d77ea5d56f09be0c492361dca8af745bb"},{"reference_url":"https://github.com/star7th/showdoc/pull/1632","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/pull/1632"},{"reference_url":"https://huntr.dev/bounties/b4918d45-b635-40db-bb4b-34035e1aca21","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/b4918d45-b635-40db-bb4b-34035e1aca21"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0957","reference_id":"CVE-2022-0957","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0957"},{"reference_url":"https://github.com/advisories/GHSA-q73m-3q7r-fpf7","reference_id":"GHSA-q73m-3q7r-fpf7","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-q73m-3q7r-fpf7"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/19684?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ubse-tfbr-audj"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.4"}],"aliases":["CVE-2022-0957","GHSA-q73m-3q7r-fpf7"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vjve-v4fx-hffb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/207230?format=json","vulnerability_id":"VCID-w3qg-kqjv-r7dk","summary":"showdoc is vulnerable to Generation of Error Message Containing Sensitive Information","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0079","reference_id":"","reference_type":"","scores":[{"value":"0.00194","scoring_system":"epss","scoring_elements":"0.41444","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00194","scoring_system":"epss","scoring_elements":"0.41278","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00194","scoring_system":"epss","scoring_elements":"0.41452","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00194","scoring_system":"epss","scoring_elements":"0.41462","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0079"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/e43df0a190f68aefa272507d3bd54475f566c1db","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/e43df0a190f68aefa272507d3bd54475f566c1db"},{"reference_url":"https://huntr.dev/bounties/b37f0e26-355a-4d50-8495-a567c10828ee","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/b37f0e26-355a-4d50-8495-a567c10828ee"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0079","reference_id":"CVE-2022-0079","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0079"},{"reference_url":"https://github.com/advisories/GHSA-5mj6-3cmq-fh34","reference_id":"GHSA-5mj6-3cmq-fh34","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-5mj6-3cmq-fh34"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/18562?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3ez4-xzmr-qbd6"},{"vulnerability":"VCID-3n97-92yn-ckck"},{"vulnerability":"VCID-93sj-gsh9-5bb1"},{"vulnerability":"VCID-auh1-nb9b-zfg3"},{"vulnerability":"VCID-deg7-4ma6-tyd2"},{"vulnerability":"VCID-ewjx-puts-f7h4"},{"vulnerability":"VCID-fk3v-vaj6-dka4"},{"vulnerability":"VCID-kjsp-v37r-yue1"},{"vulnerability":"VCID-kwse-tbqn-tqfr"},{"vulnerability":"VCID-m3mp-m3pq-fbd9"},{"vulnerability":"VCID-mybn-n9zu-ukfm"},{"vulnerability":"VCID-ny73-vkpe-mye4"},{"vulnerability":"VCID-pe2f-4yes-cyew"},{"vulnerability":"VCID-pupy-jprc-17f4"},{"vulnerability":"VCID-s5vu-x24p-4uga"},{"vulnerability":"VCID-u4xp-xb3z-r7dm"},{"vulnerability":"VCID-ubse-tfbr-audj"},{"vulnerability":"VCID-urvq-g1g1-8bgy"},{"vulnerability":"VCID-uwjs-9kjy-jqcp"},{"vulnerability":"VCID-vjve-v4fx-hffb"},{"vulnerability":"VCID-x5zj-4exs-t7em"},{"vulnerability":"VCID-zsvd-ysfj-gkad"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.0"}],"aliases":["CVE-2022-0079","GHSA-5mj6-3cmq-fh34"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-w3qg-kqjv-r7dk"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/208441?format=json","vulnerability_id":"VCID-x5zj-4exs-t7em","summary":"Cross-site Scripting in ShowDoc","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0938","reference_id":"","reference_type":"","scores":[{"value":"0.00207","scoring_system":"epss","scoring_elements":"0.43291","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00207","scoring_system":"epss","scoring_elements":"0.43134","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00207","scoring_system":"epss","scoring_elements":"0.43302","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00207","scoring_system":"epss","scoring_elements":"0.43311","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0938"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/830c89a4c2c5fd0dd491422bf8e97b4eb5713f55","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/830c89a4c2c5fd0dd491422bf8e97b4eb5713f55"},{"reference_url":"https://huntr.dev/bounties/3eb5a8f9-24e3-4eae-a212-070b2fbc237e","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/3eb5a8f9-24e3-4eae-a212-070b2fbc237e"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0938","reference_id":"CVE-2022-0938","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0938"},{"reference_url":"https://github.com/advisories/GHSA-mw75-qvfr-hpmr","reference_id":"GHSA-mw75-qvfr-hpmr","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-mw75-qvfr-hpmr"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/19684?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ubse-tfbr-audj"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.4"}],"aliases":["CVE-2022-0938","GHSA-mw75-qvfr-hpmr"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-x5zj-4exs-t7em"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/208439?format=json","vulnerability_id":"VCID-zsvd-ysfj-gkad","summary":"Cross-site Scripting in ShowDoc","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0946","reference_id":"","reference_type":"","scores":[{"value":"0.00322","scoring_system":"epss","scoring_elements":"0.55793","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00322","scoring_system":"epss","scoring_elements":"0.55673","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00322","scoring_system":"epss","scoring_elements":"0.55795","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00322","scoring_system":"epss","scoring_elements":"0.55808","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0946"},{"reference_url":"https://github.com/star7th/showdoc","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc"},{"reference_url":"https://github.com/star7th/showdoc/commit/e5d575928b1371a7e07b09b6592822298335062a","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/star7th/showdoc/commit/e5d575928b1371a7e07b09b6592822298335062a"},{"reference_url":"https://huntr.dev/bounties/1f8f0021-396e-428e-9748-dd4e359715e1","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/1f8f0021-396e-428e-9748-dd4e359715e1"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0946","reference_id":"CVE-2022-0946","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0946"},{"reference_url":"https://github.com/advisories/GHSA-qq74-vgcf-54c3","reference_id":"GHSA-qq74-vgcf-54c3","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-qq74-vgcf-54c3"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/19684?format=json","purl":"pkg:composer/showdoc/showdoc@2.10.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ubse-tfbr-audj"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.10.4"}],"aliases":["CVE-2022-0946","GHSA-qq74-vgcf-54c3"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zsvd-ysfj-gkad"}],"fixing_vulnerabilities":[],"risk_score":"10.0","resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/showdoc/showdoc@2.9.14"}