{"url":"http://public2.vulnerablecode.io/api/packages/61989?format=json","purl":"pkg:npm/jquery.json-viewer@1.5.0","type":"npm","namespace":"","name":"jquery.json-viewer","version":"1.5.0","qualifiers":{},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/43288?format=json","vulnerability_id":"VCID-r3q2-5ha2-5key","summary":"Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')\nThe jquery.json-viewer library through 1.4.0 for Node.js does not properly escape characters such as < in a JSON object, as demonstrated by a SCRIPT element.","references":[{"reference_url":"https://github.com/abodelot/jquery.json-viewer/pull/26","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/abodelot/jquery.json-viewer/pull/26"},{"reference_url":"https://github.com/abodelot/jquery.json-viewer/releases/tag/v1.5.0","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/abodelot/jquery.json-viewer/releases/tag/v1.5.0"},{"reference_url":"https://www.npmjs.com/package/jquery.json-viewer","reference_id":"","reference_type":"","scores":[],"url":"https://www.npmjs.com/package/jquery.json-viewer"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-30241","reference_id":"CVE-2022-30241","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-30241"},{"reference_url":"https://github.com/advisories/GHSA-qp2q-6h9j-jg2r","reference_id":"GHSA-qp2q-6h9j-jg2r","reference_type":"","scores":[],"url":"https://github.com/advisories/GHSA-qp2q-6h9j-jg2r"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/61989?format=json","purl":"pkg:npm/jquery.json-viewer@1.5.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:npm/jquery.json-viewer@1.5.0"}],"aliases":["CVE-2022-30241","GHSA-qp2q-6h9j-jg2r"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-r3q2-5ha2-5key"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:npm/jquery.json-viewer@1.5.0"}