Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:maven/ml.shifu/shifu@0.10.3

Type maven

Namespace ml.shifu

Name shifu

Version 0.10.3

Qualifiers

Subpath

Is_vulnerable true

Next_non_vulnerable_version null

Latest_non_vulnerable_version null

Affected_by_vulnerabilities

0

url

VCID-ffv4-33rx-a3b6

vulnerability_id

VCID-ffv4-33rx-a3b6

summary

ShifuML shifu code injection vulnerability

references

0

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-7148

reference_id

reference_type

scores

0

value	0.00117
scoring_system	epss
scoring_elements	0.30134
published_at	2026-06-11T12:55:00Z

1

value	0.00117
scoring_system	epss
scoring_elements	0.30347
published_at	2026-06-13T12:55:00Z

2

value	0.00117
scoring_system	epss
scoring_elements	0.30329
published_at	2026-06-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-7148

1

reference_url

https://drive.google.com/file/d/1ST3dD-iwUBgBNZ8tGaBbqVi1zRh5rLND/view

reference_id

reference_type

scores

0

value	5.0
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L

1

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://drive.google.com/file/d/1ST3dD-iwUBgBNZ8tGaBbqVi1zRh5rLND/view

2

reference_url

https://github.com/ShifuML/shifu

reference_id

reference_type

scores

0

value	5.0
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L

1

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/ShifuML/shifu

3

reference_url

https://github.com/ShifuML/shifu/blob/20f589158adfc011c505664cf7bdf31e36ed62fa/src/main/java/ml/shifu/shifu/core/DataPurifier.java

reference_id

reference_type

scores

0

value	5.0
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L

1

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/ShifuML/shifu/blob/20f589158adfc011c505664cf7bdf31e36ed62fa/src/main/java/ml/shifu/shifu/core/DataPurifier.java

4

reference_url

https://vuldb.com/?ctiid.249151

reference_id

reference_type

scores

0

value	5.0
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L

1

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://vuldb.com/?ctiid.249151

5

reference_url

https://vuldb.com/?id.249151

reference_id

reference_type

scores

0

value	5.0
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L

1

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://vuldb.com/?id.249151

6

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2023-7148

reference_id

CVE-2023-7148

reference_type

scores

0

value	5.0
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L

1

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2023-7148

7

reference_url

https://github.com/advisories/GHSA-5fpq-3c9p-3r3w

reference_id

GHSA-5fpq-3c9p-3r3w

reference_type

scores

0

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-5fpq-3c9p-3r3w

fixed_packages

aliases

CVE-2023-7148, GHSA-5fpq-3c9p-3r3w

risk_score

3.1

exploitability

0.5

weighted_severity

6.2

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-ffv4-33rx-a3b6

Fixing_vulnerabilities

Risk_score 3.1

Resource_url http://public2.vulnerablecode.io/packages/pkg:maven/ml.shifu/shifu@0.10.3