Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:composer/jasig/phpcas@1.3.3
Typecomposer
Namespacejasig
Namephpcas
Version1.3.3
Qualifiers
Subpath
Is_vulnerablefalse
Next_non_vulnerable_versionnull
Latest_non_vulnerable_versionnull
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-p8b8-ep2u-nbam
vulnerability_id VCID-p8b8-ep2u-nbam
summary 
Injection Vulnerability
Bypass of security constraints via URL parameter injection.
references
0
reference_url http://lists.fedoraproject.org/pipermail/package-announce/2014-August/137182.html
reference_id
reference_type
scores
url http://lists.fedoraproject.org/pipermail/package-announce/2014-August/137182.html
1
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=759718
reference_id
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=759718
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1131350
reference_id
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1131350
3
reference_url https://exchange.xforce.ibmcloud.com/vulnerabilities/95673
reference_id
reference_type
scores
url https://exchange.xforce.ibmcloud.com/vulnerabilities/95673
4
reference_url https://github.com/Jasig/dotnet-cas-client/commit/f0e030014fb7a39e5f38469f43199dc590fd0e8d
reference_id
reference_type
scores
url https://github.com/Jasig/dotnet-cas-client/commit/f0e030014fb7a39e5f38469f43199dc590fd0e8d
5
reference_url https://github.com/Jasig/java-cas-client/commit/ae37092100c8eaec610dab6d83e5e05a8ee58814
reference_id
reference_type
scores
url https://github.com/Jasig/java-cas-client/commit/ae37092100c8eaec610dab6d83e5e05a8ee58814
6
reference_url https://github.com/Jasig/phpCAS/blob/master/docs/ChangeLog
reference_id
reference_type
scores
url https://github.com/Jasig/phpCAS/blob/master/docs/ChangeLog
7
reference_url https://github.com/Jasig/phpCAS/pull/125
reference_id
reference_type
scores
url https://github.com/Jasig/phpCAS/pull/125
8
reference_url https://issues.jasig.org/browse/CASC-228
reference_id
reference_type
scores
url https://issues.jasig.org/browse/CASC-228
9
reference_url https://www.debian.org/security/2014/dsa-3017.en.html
reference_id
reference_type
scores
url https://www.debian.org/security/2014/dsa-3017.en.html
10
reference_url https://www.mail-archive.com/cas-user@lists.jasig.org/msg17338.html
reference_id
reference_type
scores
url https://www.mail-archive.com/cas-user@lists.jasig.org/msg17338.html
11
reference_url https://bugzilla.redhat.com/CVE-2014-4172
reference_id CVE-2014-4172
reference_type
scores
url https://bugzilla.redhat.com/CVE-2014-4172
12
reference_url https://nvd.nist.gov/vuln/detail/CVE-2014-4172
reference_id CVE-2014-4172
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2014-4172
13
reference_url https://github.com/advisories/GHSA-9fc5-q25c-r2wr
reference_id GHSA-9fc5-q25c-r2wr
reference_type
scores
url https://github.com/advisories/GHSA-9fc5-q25c-r2wr
fixed_packages
0
url pkg:composer/jasig/phpcas@1.3.3
purl pkg:composer/jasig/phpcas@1.3.3
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/jasig/phpcas@1.3.3
aliases CVE-2014-4172, GHSA-9fc5-q25c-r2wr
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-p8b8-ep2u-nbam
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:composer/jasig/phpcas@1.3.3