{"url":"http://public2.vulnerablecode.io/api/packages/53581?format=json","purl":"pkg:composer/opensolutions/vimbadmin@3.0.15","type":"composer","namespace":"opensolutions","name":"vimbadmin","version":"3.0.15","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/38657?format=json","vulnerability_id":"VCID-623t-p5c7-ybd3","summary":"Cross-Site Request Forgery (CSRF)\nMultiple cross-site request forgery vulnerabilities are present in vimbadmin.","references":[{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2017-6086","reference_id":"CVE-2017-6086","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2017-6086"}],"fixed_packages":[],"aliases":["CVE-2017-6086"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-623t-p5c7-ybd3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/38626?format=json","vulnerability_id":"VCID-g1v7-jmnu-dqfg","summary":"Cross-site Scripting\nMultiple cross-site scripting vulnerabilities in vimbadmin.","references":[{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2017-5870","reference_id":"CVE-2017-5870","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2017-5870"}],"fixed_packages":[],"aliases":["CVE-2017-5870"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-g1v7-jmnu-dqfg"}],"fixing_vulnerabilities":[],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/opensolutions/vimbadmin@3.0.15"}