{"url":"http://public2.vulnerablecode.io/api/packages/66538?format=json","purl":"pkg:composer/froxlor/froxlor@2.0.22","type":"composer","namespace":"froxlor","name":"froxlor","version":"2.0.22","qualifiers":{},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"2.1.0-dev1","latest_non_vulnerable_version":"2.3.4","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/46195?format=json","vulnerability_id":"VCID-c7wv-3ymw-57b3","summary":"Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')\nCross-site Scripting (XSS) - Stored in GitHub repository froxlor/froxlor prior to 2.0.22.","references":[{"reference_url":"https://github.com/froxlor/froxlor/commit/4711a414360782fe4fc94f7c25027077cbcdf73d","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/froxlor/froxlor/commit/4711a414360782fe4fc94f7c25027077cbcdf73d"},{"reference_url":"https://huntr.dev/bounties/babd73ca-6c80-4145-8c7d-33a883fe606b","reference_id":"","reference_type":"","scores":[],"url":"https://huntr.dev/bounties/babd73ca-6c80-4145-8c7d-33a883fe606b"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2023-4829","reference_id":"CVE-2023-4829","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2023-4829"},{"reference_url":"https://github.com/advisories/GHSA-cvwv-h85m-w37h","reference_id":"GHSA-cvwv-h85m-w37h","reference_type":"","scores":[],"url":"https://github.com/advisories/GHSA-cvwv-h85m-w37h"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/66538?format=json","purl":"pkg:composer/froxlor/froxlor@2.0.22","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/froxlor/froxlor@2.0.22"}],"aliases":["CVE-2023-4829","GHSA-cvwv-h85m-w37h"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-c7wv-3ymw-57b3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/45827?format=json","vulnerability_id":"VCID-ebs6-j85u-s3eg","summary":"Froxlor vulnerable to business logic errors\nBusiness Logic Errors in GitHub repository froxlor/froxlor prior to 2.0.22","references":[{"reference_url":"https://github.com/froxlor/froxlor/commit/ce9a5f97a3edb30c7d33878765d3c014a6583597","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/froxlor/froxlor/commit/ce9a5f97a3edb30c7d33878765d3c014a6583597"},{"reference_url":"https://huntr.dev/bounties/59fe5037-b253-4b0f-be69-1d2e4af8b4a9","reference_id":"","reference_type":"","scores":[],"url":"https://huntr.dev/bounties/59fe5037-b253-4b0f-be69-1d2e4af8b4a9"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2023-4304","reference_id":"CVE-2023-4304","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2023-4304"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/66538?format=json","purl":"pkg:composer/froxlor/froxlor@2.0.22","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/froxlor/froxlor@2.0.22"}],"aliases":["CVE-2023-4304"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ebs6-j85u-s3eg"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/froxlor/froxlor@2.0.22"}