Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:npm/eventsource@2.0.2
Typenpm
Namespace
Nameeventsource
Version2.0.2
Qualifiers
Subpath
Is_vulnerablefalse
Next_non_vulnerable_versionnull
Latest_non_vulnerable_versionnull
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-2sn6-2sgj-rkh9
vulnerability_id VCID-2sn6-2sgj-rkh9
summary Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository eventsource/eventsource prior to v2.0.2.
references
0
reference_url https://github.com/eventsource/eventsource/commit/10ee0c4881a6ba2fe65ec18ed195ac35889583c4
reference_id
reference_type
scores
url https://github.com/eventsource/eventsource/commit/10ee0c4881a6ba2fe65ec18ed195ac35889583c4
1
reference_url https://huntr.dev/bounties/dc9e467f-be5d-4945-867d-1044d27e9b8e
reference_id
reference_type
scores
url https://huntr.dev/bounties/dc9e467f-be5d-4945-867d-1044d27e9b8e
2
reference_url https://nvd.nist.gov/vuln/detail/CVE-2022-1650
reference_id CVE-2022-1650
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2022-1650
3
reference_url https://github.com/advisories/GHSA-6h5x-7c5m-7cr7
reference_id GHSA-6h5x-7c5m-7cr7
reference_type
scores
url https://github.com/advisories/GHSA-6h5x-7c5m-7cr7
fixed_packages
0
url pkg:npm/eventsource@1.1.1
purl pkg:npm/eventsource@1.1.1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/eventsource@1.1.1
1
url pkg:npm/eventsource@2.0.2
purl pkg:npm/eventsource@2.0.2
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/eventsource@2.0.2
aliases CVE-2022-1650, GHSA-6h5x-7c5m-7cr7
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2sn6-2sgj-rkh9
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:npm/eventsource@2.0.2