Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:composer/kimai/kimai@2.21.0
Typecomposer
Namespacekimai
Namekimai
Version2.21.0
Qualifiers
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version2.46.0
Latest_non_vulnerable_version2.51.0
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-tvp9-wvkf-77cf
vulnerability_id VCID-tvp9-wvkf-77cf
summary Kimai has an XXE Leading to Local File Read
references
0
reference_url https://github.com/kimai/kimai
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/kimai/kimai
1
reference_url https://github.com/kimai/kimai/commit/3204dcb03e1003dba90178667a4667ce3edb87b5
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/kimai/kimai/commit/3204dcb03e1003dba90178667a4667ce3edb87b5
2
reference_url https://github.com/advisories/GHSA-534c-hcr7-67jg
reference_id GHSA-534c-hcr7-67jg
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-534c-hcr7-67jg
3
reference_url https://github.com/kimai/kimai/security/advisories/GHSA-534c-hcr7-67jg
reference_id GHSA-534c-hcr7-67jg
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N
1
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
2
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
3
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/kimai/kimai/security/advisories/GHSA-534c-hcr7-67jg
4
reference_url https://github.com/PHPOffice/PhpSpreadsheet/security/advisories/GHSA-ghg6-32f9-2jp7
reference_id GHSA-ghg6-32f9-2jp7
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/PHPOffice/PhpSpreadsheet/security/advisories/GHSA-ghg6-32f9-2jp7
fixed_packages
0
url pkg:composer/kimai/kimai@2.21.0
purl pkg:composer/kimai/kimai@2.21.0
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/kimai/kimai@2.21.0
aliases GHSA-534c-hcr7-67jg
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tvp9-wvkf-77cf
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:composer/kimai/kimai@2.21.0