Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:pypi/label-studio@0.4.0rc4
Typepypi
Namespace
Namelabel-studio
Version0.4.0rc4
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_versionnull
Latest_non_vulnerable_versionnull
Affected_by_vulnerabilities
0
url VCID-8455-9d6u-uuf5
vulnerability_id VCID-8455-9d6u-uuf5
summary Heartex - Label Studio Community Edition vulnerable to SSRF in the Data Import module
references
0
reference_url http://heartex.com
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value 7.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url http://heartex.com
1
reference_url http://labelstud.io
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value 7.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url http://labelstud.io
2
reference_url http://packetstormsecurity.com/files/171548/Label-Studio-1.5.0-Server-Side-Request-Forgery.html
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value 7.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url http://packetstormsecurity.com/files/171548/Label-Studio-1.5.0-Server-Side-Request-Forgery.html
3
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-36551
reference_id
reference_type
scores
0
value 0.09161
scoring_system epss
scoring_elements 0.92871
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-36551
4
reference_url https://github.com/heartexlabs/label-studio
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value 7.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/heartexlabs/label-studio
5
reference_url https://github.com/heartexlabs/label-studio/commit/501142cb815ac964b0c600c491885b67386870c2
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value 7.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/heartexlabs/label-studio/commit/501142cb815ac964b0c600c491885b67386870c2
6
reference_url https://github.com/heartexlabs/label-studio/pull/2840
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value 7.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/heartexlabs/label-studio/pull/2840
7
reference_url https://github.com/heartexlabs/label-studio/releases/tag/1.6.0
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value 7.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/heartexlabs/label-studio/releases/tag/1.6.0
8
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/label-studio/PYSEC-2022-300.yaml
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value 7.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/label-studio/PYSEC-2022-300.yaml
9
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/python/webapps/51109.txt
reference_id CVE-2022-36551
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/python/webapps/51109.txt
10
reference_url https://nvd.nist.gov/vuln/detail/CVE-2022-36551
reference_id CVE-2022-36551
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value 7.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2022-36551
11
reference_url https://github.com/advisories/GHSA-pc6f-259w-w3j6
reference_id GHSA-pc6f-259w-w3j6
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-pc6f-259w-w3j6
fixed_packages
0
url pkg:pypi/label-studio@1.5.0.post0
purl pkg:pypi/label-studio@1.5.0.post0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3un1-fwmq-tuat
1
vulnerability VCID-6v8m-z1dc-tkfm
2
vulnerability VCID-8455-9d6u-uuf5
3
vulnerability VCID-8c15-2nd6-83ck
4
vulnerability VCID-99qn-k6hn-43gn
5
vulnerability VCID-g3x2-tnmz-b3ed
6
vulnerability VCID-h3xx-17d4-s7gh
7
vulnerability VCID-nd4t-cjwy-nyar
8
vulnerability VCID-pbdp-mnbt-j3fx
9
vulnerability VCID-us61-py8c-jbac
10
vulnerability VCID-w4r7-r8hq-gygt
11
vulnerability VCID-x73j-6azu-nkhh
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@1.5.0.post0
1
url pkg:pypi/label-studio@1.6.0
purl pkg:pypi/label-studio@1.6.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3un1-fwmq-tuat
1
vulnerability VCID-6v8m-z1dc-tkfm
2
vulnerability VCID-8c15-2nd6-83ck
3
vulnerability VCID-99qn-k6hn-43gn
4
vulnerability VCID-g3x2-tnmz-b3ed
5
vulnerability VCID-h3xx-17d4-s7gh
6
vulnerability VCID-nd4t-cjwy-nyar
7
vulnerability VCID-pbdp-mnbt-j3fx
8
vulnerability VCID-us61-py8c-jbac
9
vulnerability VCID-w4r7-r8hq-gygt
10
vulnerability VCID-x73j-6azu-nkhh
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@1.6.0
aliases CVE-2022-36551, GHSA-pc6f-259w-w3j6, PYSEC-2022-300
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8455-9d6u-uuf5
Fixing_vulnerabilities
Risk_score4.0
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:pypi/label-studio@0.4.0rc4