Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:pypi/horizon@11.0.0
Typepypi
Namespace
Namehorizon
Version11.0.0
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version11.0.1
Latest_non_vulnerable_version2013.2.4
Affected_by_vulnerabilities
0
url VCID-6baw-j34x-xked
vulnerability_id VCID-6baw-j34x-xked
summary 
OpenStack Horizon Cross-site Scripting (XSS)
OpenStack Horizon 9.x through 9.1.1, 10.x through 10.0.2, and 11.0.0 allows remote authenticated administrators to conduct XSS attacks via a crafted federation mapping.
references
0
reference_url https://access.redhat.com/errata/RHSA-2017:1598
reference_id
reference_type
scores
url https://access.redhat.com/errata/RHSA-2017:1598
1
reference_url https://access.redhat.com/errata/RHSA-2017:1739
reference_id
reference_type
scores
url https://access.redhat.com/errata/RHSA-2017:1739
2
reference_url https://launchpad.net/bugs/1667086
reference_id
reference_type
scores
url https://launchpad.net/bugs/1667086
3
reference_url https://opendev.org/openstack/horizon/commit/1407cfe53144146b29679de21f28c952282043ae
reference_id
reference_type
scores
url https://opendev.org/openstack/horizon/commit/1407cfe53144146b29679de21f28c952282043ae
4
reference_url https://opendev.org/openstack/horizon/commit/511b325b45b6bd7a88bb6df1a4639b80d0121277
reference_id
reference_type
scores
url https://opendev.org/openstack/horizon/commit/511b325b45b6bd7a88bb6df1a4639b80d0121277
5
reference_url https://opendev.org/openstack/horizon/commit/a835dbfbaa2c70329c08d4b8429d49315dc6d651
reference_id
reference_type
scores
url https://opendev.org/openstack/horizon/commit/a835dbfbaa2c70329c08d4b8429d49315dc6d651
6
reference_url https://opendev.org/openstack/horizon/commit/ce80bb6fec3cb0262728e7ae8b9d695cf832e5bf
reference_id
reference_type
scores
url https://opendev.org/openstack/horizon/commit/ce80bb6fec3cb0262728e7ae8b9d695cf832e5bf
7
reference_url https://nvd.nist.gov/vuln/detail/CVE-2017-7400
reference_id CVE-2017-7400
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2017-7400
8
reference_url https://github.com/advisories/GHSA-47vp-44v9-rhgq
reference_id GHSA-47vp-44v9-rhgq
reference_type
scores
url https://github.com/advisories/GHSA-47vp-44v9-rhgq
fixed_packages
0
url pkg:pypi/horizon@11.0.1
purl pkg:pypi/horizon@11.0.1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/horizon@11.0.1
aliases CVE-2017-7400, GHSA-47vp-44v9-rhgq
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6baw-j34x-xked
Fixing_vulnerabilities
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:pypi/horizon@11.0.0