{"url":"http://public2.vulnerablecode.io/api/packages/535144?format=json","purl":"pkg:composer/jsdecena/laracom@1.0.0","type":"composer","namespace":"jsdecena","name":"laracom","version":"1.0.0","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/207683?format=json","vulnerability_id":"VCID-2pvt-pbej-rbep","summary":"Unrestricted Upload of File with Dangerous Type in jsdecena/laracom","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0472","reference_id":"","reference_type":"","scores":[{"value":"0.00337","scoring_system":"epss","scoring_elements":"0.5705","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00337","scoring_system":"epss","scoring_elements":"0.56931","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00337","scoring_system":"epss","scoring_elements":"0.57057","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00337","scoring_system":"epss","scoring_elements":"0.57065","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0472"},{"reference_url":"https://github.com/jsdecena/laracom","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/jsdecena/laracom"},{"reference_url":"https://github.com/jsdecena/laracom/commit/256026193ce994dc4c1365e02f414d8a0cd77ae8","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/jsdecena/laracom/commit/256026193ce994dc4c1365e02f414d8a0cd77ae8"},{"reference_url":"https://huntr.dev/bounties/cb5b8563-15cf-408c-9f79-4871ea0a8713","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/cb5b8563-15cf-408c-9f79-4871ea0a8713"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0472","reference_id":"CVE-2022-0472","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0472"},{"reference_url":"https://github.com/advisories/GHSA-5q5w-mqp6-g2gh","reference_id":"GHSA-5q5w-mqp6-g2gh","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-5q5w-mqp6-g2gh"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/18943?format=json","purl":"pkg:composer/jsdecena/laracom@2.0.9","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/jsdecena/laracom@2.0.9"}],"aliases":["CVE-2022-0472","GHSA-5q5w-mqp6-g2gh"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-2pvt-pbej-rbep"}],"fixing_vulnerabilities":[],"risk_score":"3.1","resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/jsdecena/laracom@1.0.0"}