{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/108634?format=json","vulnerability_id":"VCID-c2rd-uq2u-7qee","summary":"Moderate severity vulnerability that affects doorkeeper\nWithdrawn, accidental duplicate publish.\n\nThe Doorkeeper gem before 4.2.0 for Ruby might allow remote attackers to conduct replay attacks or revoke arbitrary tokens by leveraging failure to implement the OAuth 2.0 Token Revocation specification.","aliases":[{"alias":"GHSA-5p9f-55j8-922m"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/53234?format=json","purl":"pkg:gem/doorkeeper@4.2.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-bss3-b2mz-gyg6"},{"vulnerability":"VCID-jqsd-ye8h-hfd1"},{"vulnerability":"VCID-vfr9-mu8k-rbg5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@4.2.0"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/75498?format=json","purl":"pkg:gem/doorkeeper@1.2.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-bss3-b2mz-gyg6"},{"vulnerability":"VCID-c2rd-uq2u-7qee"},{"vulnerability":"VCID-jqsd-ye8h-hfd1"},{"vulnerability":"VCID-unwy-fy1v-9qcr"},{"vulnerability":"VCID-vfr9-mu8k-rbg5"},{"vulnerability":"VCID-xa34-b97y-tye5"},{"vulnerability":"VCID-ypak-x4hq-6qgt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@1.2.0"},{"url":"http://public2.vulnerablecode.io/api/packages/159544?format=json","purl":"pkg:gem/doorkeeper@1.3.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-bss3-b2mz-gyg6"},{"vulnerability":"VCID-c2rd-uq2u-7qee"},{"vulnerability":"VCID-jqsd-ye8h-hfd1"},{"vulnerability":"VCID-unwy-fy1v-9qcr"},{"vulnerability":"VCID-vfr9-mu8k-rbg5"},{"vulnerability":"VCID-xa34-b97y-tye5"},{"vulnerability":"VCID-ypak-x4hq-6qgt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@1.3.0"},{"url":"http://public2.vulnerablecode.io/api/packages/159545?format=json","purl":"pkg:gem/doorkeeper@1.3.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-bss3-b2mz-gyg6"},{"vulnerability":"VCID-c2rd-uq2u-7qee"},{"vulnerability":"VCID-jqsd-ye8h-hfd1"},{"vulnerability":"VCID-unwy-fy1v-9qcr"},{"vulnerability":"VCID-vfr9-mu8k-rbg5"},{"vulnerability":"VCID-xa34-b97y-tye5"},{"vulnerability":"VCID-ypak-x4hq-6qgt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@1.3.1"},{"url":"http://public2.vulnerablecode.io/api/packages/159546?format=json","purl":"pkg:gem/doorkeeper@1.4.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-bss3-b2mz-gyg6"},{"vulnerability":"VCID-c2rd-uq2u-7qee"},{"vulnerability":"VCID-jqsd-ye8h-hfd1"},{"vulnerability":"VCID-unwy-fy1v-9qcr"},{"vulnerability":"VCID-vfr9-mu8k-rbg5"},{"vulnerability":"VCID-xa34-b97y-tye5"},{"vulnerability":"VCID-ypak-x4hq-6qgt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@1.4.0"},{"url":"http://public2.vulnerablecode.io/api/packages/51345?format=json","purl":"pkg:gem/doorkeeper@1.4.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-bss3-b2mz-gyg6"},{"vulnerability":"VCID-c2rd-uq2u-7qee"},{"vulnerability":"VCID-jqsd-ye8h-hfd1"},{"vulnerability":"VCID-unwy-fy1v-9qcr"},{"vulnerability":"VCID-vfr9-mu8k-rbg5"},{"vulnerability":"VCID-xa34-b97y-tye5"},{"vulnerability":"VCID-ypak-x4hq-6qgt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@1.4.1"},{"url":"http://public2.vulnerablecode.io/api/packages/52148?format=json","purl":"pkg:gem/doorkeeper@1.4.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-bss3-b2mz-gyg6"},{"vulnerability":"VCID-c2rd-uq2u-7qee"},{"vulnerability":"VCID-jqsd-ye8h-hfd1"},{"vulnerability":"VCID-vfr9-mu8k-rbg5"},{"vulnerability":"VCID-xa34-b97y-tye5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@1.4.2"},{"url":"http://public2.vulnerablecode.io/api/packages/159547?format=json","purl":"pkg:gem/doorkeeper@2.0.0.alpha1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-bss3-b2mz-gyg6"},{"vulnerability":"VCID-c2rd-uq2u-7qee"},{"vulnerability":"VCID-jqsd-ye8h-hfd1"},{"vulnerability":"VCID-unwy-fy1v-9qcr"},{"vulnerability":"VCID-vfr9-mu8k-rbg5"},{"vulnerability":"VCID-xa34-b97y-tye5"},{"vulnerability":"VCID-ypak-x4hq-6qgt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@2.0.0.alpha1"},{"url":"http://public2.vulnerablecode.io/api/packages/159548?format=json","purl":"pkg:gem/doorkeeper@2.0.0.rc2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-bss3-b2mz-gyg6"},{"vulnerability":"VCID-c2rd-uq2u-7qee"},{"vulnerability":"VCID-jqsd-ye8h-hfd1"},{"vulnerability":"VCID-unwy-fy1v-9qcr"},{"vulnerability":"VCID-vfr9-mu8k-rbg5"},{"vulnerability":"VCID-xa34-b97y-tye5"},{"vulnerability":"VCID-ypak-x4hq-6qgt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@2.0.0.rc2"},{"url":"http://public2.vulnerablecode.io/api/packages/51346?format=json","purl":"pkg:gem/doorkeeper@2.0.0.rc3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-bss3-b2mz-gyg6"},{"vulnerability":"VCID-c2rd-uq2u-7qee"},{"vulnerability":"VCID-jqsd-ye8h-hfd1"},{"vulnerability":"VCID-unwy-fy1v-9qcr"},{"vulnerability":"VCID-vfr9-mu8k-rbg5"},{"vulnerability":"VCID-xa34-b97y-tye5"},{"vulnerability":"VCID-ypak-x4hq-6qgt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@2.0.0.rc3"},{"url":"http://public2.vulnerablecode.io/api/packages/159549?format=json","purl":"pkg:gem/doorkeeper@2.0.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-bss3-b2mz-gyg6"},{"vulnerability":"VCID-c2rd-uq2u-7qee"},{"vulnerability":"VCID-jqsd-ye8h-hfd1"},{"vulnerability":"VCID-unwy-fy1v-9qcr"},{"vulnerability":"VCID-vfr9-mu8k-rbg5"},{"vulnerability":"VCID-xa34-b97y-tye5"},{"vulnerability":"VCID-ypak-x4hq-6qgt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@2.0.0"},{"url":"http://public2.vulnerablecode.io/api/packages/159550?format=json","purl":"pkg:gem/doorkeeper@2.0.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-bss3-b2mz-gyg6"},{"vulnerability":"VCID-c2rd-uq2u-7qee"},{"vulnerability":"VCID-jqsd-ye8h-hfd1"},{"vulnerability":"VCID-unwy-fy1v-9qcr"},{"vulnerability":"VCID-vfr9-mu8k-rbg5"},{"vulnerability":"VCID-xa34-b97y-tye5"},{"vulnerability":"VCID-ypak-x4hq-6qgt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@2.0.1"},{"url":"http://public2.vulnerablecode.io/api/packages/55169?format=json","purl":"pkg:gem/doorkeeper@2.1.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-bss3-b2mz-gyg6"},{"vulnerability":"VCID-c2rd-uq2u-7qee"},{"vulnerability":"VCID-jqsd-ye8h-hfd1"},{"vulnerability":"VCID-vfr9-mu8k-rbg5"},{"vulnerability":"VCID-xa34-b97y-tye5"},{"vulnerability":"VCID-ypak-x4hq-6qgt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@2.1.0"},{"url":"http://public2.vulnerablecode.io/api/packages/162250?format=json","purl":"pkg:gem/doorkeeper@2.1.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-bss3-b2mz-gyg6"},{"vulnerability":"VCID-c2rd-uq2u-7qee"},{"vulnerability":"VCID-jqsd-ye8h-hfd1"},{"vulnerability":"VCID-vfr9-mu8k-rbg5"},{"vulnerability":"VCID-xa34-b97y-tye5"},{"vulnerability":"VCID-ypak-x4hq-6qgt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@2.1.1"},{"url":"http://public2.vulnerablecode.io/api/packages/52149?format=json","purl":"pkg:gem/doorkeeper@2.1.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-bss3-b2mz-gyg6"},{"vulnerability":"VCID-c2rd-uq2u-7qee"},{"vulnerability":"VCID-jqsd-ye8h-hfd1"},{"vulnerability":"VCID-vfr9-mu8k-rbg5"},{"vulnerability":"VCID-xa34-b97y-tye5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@2.1.2"},{"url":"http://public2.vulnerablecode.io/api/packages/162251?format=json","purl":"pkg:gem/doorkeeper@2.1.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-bss3-b2mz-gyg6"},{"vulnerability":"VCID-c2rd-uq2u-7qee"},{"vulnerability":"VCID-jqsd-ye8h-hfd1"},{"vulnerability":"VCID-vfr9-mu8k-rbg5"},{"vulnerability":"VCID-xa34-b97y-tye5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@2.1.3"},{"url":"http://public2.vulnerablecode.io/api/packages/162252?format=json","purl":"pkg:gem/doorkeeper@2.1.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-bss3-b2mz-gyg6"},{"vulnerability":"VCID-c2rd-uq2u-7qee"},{"vulnerability":"VCID-jqsd-ye8h-hfd1"},{"vulnerability":"VCID-vfr9-mu8k-rbg5"},{"vulnerability":"VCID-xa34-b97y-tye5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@2.1.4"},{"url":"http://public2.vulnerablecode.io/api/packages/162253?format=json","purl":"pkg:gem/doorkeeper@2.2.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-bss3-b2mz-gyg6"},{"vulnerability":"VCID-c2rd-uq2u-7qee"},{"vulnerability":"VCID-jqsd-ye8h-hfd1"},{"vulnerability":"VCID-vfr9-mu8k-rbg5"},{"vulnerability":"VCID-xa34-b97y-tye5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@2.2.0"},{"url":"http://public2.vulnerablecode.io/api/packages/162254?format=json","purl":"pkg:gem/doorkeeper@2.2.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-bss3-b2mz-gyg6"},{"vulnerability":"VCID-c2rd-uq2u-7qee"},{"vulnerability":"VCID-jqsd-ye8h-hfd1"},{"vulnerability":"VCID-vfr9-mu8k-rbg5"},{"vulnerability":"VCID-xa34-b97y-tye5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@2.2.1"},{"url":"http://public2.vulnerablecode.io/api/packages/162255?format=json","purl":"pkg:gem/doorkeeper@2.2.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-bss3-b2mz-gyg6"},{"vulnerability":"VCID-c2rd-uq2u-7qee"},{"vulnerability":"VCID-jqsd-ye8h-hfd1"},{"vulnerability":"VCID-vfr9-mu8k-rbg5"},{"vulnerability":"VCID-xa34-b97y-tye5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@2.2.2"},{"url":"http://public2.vulnerablecode.io/api/packages/162256?format=json","purl":"pkg:gem/doorkeeper@3.0.0.rc1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-bss3-b2mz-gyg6"},{"vulnerability":"VCID-c2rd-uq2u-7qee"},{"vulnerability":"VCID-jqsd-ye8h-hfd1"},{"vulnerability":"VCID-vfr9-mu8k-rbg5"},{"vulnerability":"VCID-xa34-b97y-tye5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@3.0.0.rc1"},{"url":"http://public2.vulnerablecode.io/api/packages/162257?format=json","purl":"pkg:gem/doorkeeper@3.0.0.rc2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-bss3-b2mz-gyg6"},{"vulnerability":"VCID-c2rd-uq2u-7qee"},{"vulnerability":"VCID-jqsd-ye8h-hfd1"},{"vulnerability":"VCID-vfr9-mu8k-rbg5"},{"vulnerability":"VCID-xa34-b97y-tye5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@3.0.0.rc2"},{"url":"http://public2.vulnerablecode.io/api/packages/162258?format=json","purl":"pkg:gem/doorkeeper@3.0.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-bss3-b2mz-gyg6"},{"vulnerability":"VCID-c2rd-uq2u-7qee"},{"vulnerability":"VCID-jqsd-ye8h-hfd1"},{"vulnerability":"VCID-vfr9-mu8k-rbg5"},{"vulnerability":"VCID-xa34-b97y-tye5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@3.0.0"},{"url":"http://public2.vulnerablecode.io/api/packages/162259?format=json","purl":"pkg:gem/doorkeeper@3.0.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-bss3-b2mz-gyg6"},{"vulnerability":"VCID-c2rd-uq2u-7qee"},{"vulnerability":"VCID-jqsd-ye8h-hfd1"},{"vulnerability":"VCID-vfr9-mu8k-rbg5"},{"vulnerability":"VCID-xa34-b97y-tye5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@3.0.1"},{"url":"http://public2.vulnerablecode.io/api/packages/162260?format=json","purl":"pkg:gem/doorkeeper@3.1.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-bss3-b2mz-gyg6"},{"vulnerability":"VCID-c2rd-uq2u-7qee"},{"vulnerability":"VCID-jqsd-ye8h-hfd1"},{"vulnerability":"VCID-vfr9-mu8k-rbg5"},{"vulnerability":"VCID-xa34-b97y-tye5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@3.1.0"},{"url":"http://public2.vulnerablecode.io/api/packages/162261?format=json","purl":"pkg:gem/doorkeeper@4.0.0.rc1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-bss3-b2mz-gyg6"},{"vulnerability":"VCID-c2rd-uq2u-7qee"},{"vulnerability":"VCID-jqsd-ye8h-hfd1"},{"vulnerability":"VCID-vfr9-mu8k-rbg5"},{"vulnerability":"VCID-xa34-b97y-tye5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@4.0.0.rc1"},{"url":"http://public2.vulnerablecode.io/api/packages/162262?format=json","purl":"pkg:gem/doorkeeper@4.0.0.rc2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-bss3-b2mz-gyg6"},{"vulnerability":"VCID-c2rd-uq2u-7qee"},{"vulnerability":"VCID-jqsd-ye8h-hfd1"},{"vulnerability":"VCID-vfr9-mu8k-rbg5"},{"vulnerability":"VCID-xa34-b97y-tye5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@4.0.0.rc2"},{"url":"http://public2.vulnerablecode.io/api/packages/162263?format=json","purl":"pkg:gem/doorkeeper@4.0.0.rc3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-bss3-b2mz-gyg6"},{"vulnerability":"VCID-c2rd-uq2u-7qee"},{"vulnerability":"VCID-jqsd-ye8h-hfd1"},{"vulnerability":"VCID-vfr9-mu8k-rbg5"},{"vulnerability":"VCID-xa34-b97y-tye5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@4.0.0.rc3"},{"url":"http://public2.vulnerablecode.io/api/packages/162264?format=json","purl":"pkg:gem/doorkeeper@4.0.0.rc4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-bss3-b2mz-gyg6"},{"vulnerability":"VCID-c2rd-uq2u-7qee"},{"vulnerability":"VCID-jqsd-ye8h-hfd1"},{"vulnerability":"VCID-vfr9-mu8k-rbg5"},{"vulnerability":"VCID-xa34-b97y-tye5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@4.0.0.rc4"},{"url":"http://public2.vulnerablecode.io/api/packages/162265?format=json","purl":"pkg:gem/doorkeeper@4.0.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-bss3-b2mz-gyg6"},{"vulnerability":"VCID-c2rd-uq2u-7qee"},{"vulnerability":"VCID-jqsd-ye8h-hfd1"},{"vulnerability":"VCID-vfr9-mu8k-rbg5"},{"vulnerability":"VCID-xa34-b97y-tye5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@4.0.0"},{"url":"http://public2.vulnerablecode.io/api/packages/162266?format=json","purl":"pkg:gem/doorkeeper@4.1.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-bss3-b2mz-gyg6"},{"vulnerability":"VCID-c2rd-uq2u-7qee"},{"vulnerability":"VCID-jqsd-ye8h-hfd1"},{"vulnerability":"VCID-vfr9-mu8k-rbg5"},{"vulnerability":"VCID-xa34-b97y-tye5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:gem/doorkeeper@4.1.0"}],"references":[{"reference_url":"https://github.com/advisories/GHSA-5p9f-55j8-922m","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-5p9f-55j8-922m"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2016-6582","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2016-6582"}],"weaknesses":[],"exploits":[],"severity_range_score":"4.0 - 6.9","exploitability":"0.5","weighted_severity":"6.2","risk_score":3.1,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-c2rd-uq2u-7qee"}