Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-1mh2-7nc4-pqg2
Summary
Silverstripe Brute force bypass on default admin
Default Administrator accounts were not subject to the same brute force protection afforded to other Member accounts. Failed login counts were not logged for default admins resulting in unlimited attempts on the default admin username and password.
Aliases
0
alias GHSA-8v6m-7f5v-hhx6
Fixed_packages
0
url pkg:composer/silverstripe/framework@3.1.19
purl pkg:composer/silverstripe/framework@3.1.19
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2f9j-ek3x-kbc5
1
vulnerability VCID-2rbk-47h6-d7d8
2
vulnerability VCID-414d-7bfm-kud7
3
vulnerability VCID-4f9c-aun4-wfep
4
vulnerability VCID-4x32-t75c-u3bj
5
vulnerability VCID-5pkg-j4wg-7fcn
6
vulnerability VCID-6du5-hdvd-fueb
7
vulnerability VCID-6epx-c68d-d7bv
8
vulnerability VCID-6yv4-xevb-v7b2
9
vulnerability VCID-7dk3-gcup-2kc9
10
vulnerability VCID-86yd-4mkt-hydr
11
vulnerability VCID-8am6-aeny-ffej
12
vulnerability VCID-8wbx-bvm9-jqcv
13
vulnerability VCID-8zj1-kn8e-kbbn
14
vulnerability VCID-a3yc-fxa1-gfhy
15
vulnerability VCID-ab5z-bqka-xudb
16
vulnerability VCID-ade4-h51n-3bap
17
vulnerability VCID-ajga-3b99-yugh
18
vulnerability VCID-axxx-gpfn-mqc9
19
vulnerability VCID-bdcq-z11u-zyh5
20
vulnerability VCID-c3vp-kc9a-vkhn
21
vulnerability VCID-cdgj-bdpy-ukak
22
vulnerability VCID-cg3k-vmk4-5kdb
23
vulnerability VCID-dx5f-g875-5bct
24
vulnerability VCID-eddc-w9wx-c3gq
25
vulnerability VCID-enkd-4y44-4ueq
26
vulnerability VCID-fpb7-5pwu-tyg5
27
vulnerability VCID-fyxa-vzeq-ubeq
28
vulnerability VCID-hgkh-tcdc-ufd5
29
vulnerability VCID-j6ze-f76y-cqgy
30
vulnerability VCID-k7bb-y315-4qb6
31
vulnerability VCID-kak1-btjp-kqgz
32
vulnerability VCID-kdyk-rrrr-pufw
33
vulnerability VCID-kqk7-mdnd-hfc7
34
vulnerability VCID-krjm-ygks-wyct
35
vulnerability VCID-kvhv-9fj5-7kgk
36
vulnerability VCID-kw9p-5fbc-hudg
37
vulnerability VCID-kxa8-dmva-ayff
38
vulnerability VCID-nt4w-m7ak-4bbx
39
vulnerability VCID-p2kq-rkh6-ayeu
40
vulnerability VCID-p52e-s67u-eya7
41
vulnerability VCID-pq29-qe7h-tkcp
42
vulnerability VCID-qm38-1cwk-b3hq
43
vulnerability VCID-t17w-gcwe-eue4
44
vulnerability VCID-tc2y-zrea-vyb2
45
vulnerability VCID-tm1s-2m92-uyh9
46
vulnerability VCID-u49v-31sv-eqc3
47
vulnerability VCID-wrnm-d19b-hqby
48
vulnerability VCID-ya8k-c5s5-47gx
49
vulnerability VCID-yuer-yn1w-q3gw
50
vulnerability VCID-z7fk-zbvh-quew
51
vulnerability VCID-zxmh-xcvd-53fe
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/silverstripe/framework@3.1.19
1
url pkg:composer/silverstripe/framework@3.2.4
purl pkg:composer/silverstripe/framework@3.2.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2f9j-ek3x-kbc5
1
vulnerability VCID-2rbk-47h6-d7d8
2
vulnerability VCID-414d-7bfm-kud7
3
vulnerability VCID-4f9c-aun4-wfep
4
vulnerability VCID-4x32-t75c-u3bj
5
vulnerability VCID-5pkg-j4wg-7fcn
6
vulnerability VCID-6du5-hdvd-fueb
7
vulnerability VCID-6epx-c68d-d7bv
8
vulnerability VCID-6yv4-xevb-v7b2
9
vulnerability VCID-7dk3-gcup-2kc9
10
vulnerability VCID-86yd-4mkt-hydr
11
vulnerability VCID-8am6-aeny-ffej
12
vulnerability VCID-8wbx-bvm9-jqcv
13
vulnerability VCID-8zj1-kn8e-kbbn
14
vulnerability VCID-a3yc-fxa1-gfhy
15
vulnerability VCID-ab5z-bqka-xudb
16
vulnerability VCID-ade4-h51n-3bap
17
vulnerability VCID-ajga-3b99-yugh
18
vulnerability VCID-axxx-gpfn-mqc9
19
vulnerability VCID-bdcq-z11u-zyh5
20
vulnerability VCID-c3vp-kc9a-vkhn
21
vulnerability VCID-cdgj-bdpy-ukak
22
vulnerability VCID-cg3k-vmk4-5kdb
23
vulnerability VCID-dx5f-g875-5bct
24
vulnerability VCID-eddc-w9wx-c3gq
25
vulnerability VCID-enkd-4y44-4ueq
26
vulnerability VCID-fpb7-5pwu-tyg5
27
vulnerability VCID-fyxa-vzeq-ubeq
28
vulnerability VCID-hgkh-tcdc-ufd5
29
vulnerability VCID-j6ze-f76y-cqgy
30
vulnerability VCID-k7bb-y315-4qb6
31
vulnerability VCID-kak1-btjp-kqgz
32
vulnerability VCID-kdyk-rrrr-pufw
33
vulnerability VCID-kqk7-mdnd-hfc7
34
vulnerability VCID-krjm-ygks-wyct
35
vulnerability VCID-kvhv-9fj5-7kgk
36
vulnerability VCID-kw9p-5fbc-hudg
37
vulnerability VCID-kxa8-dmva-ayff
38
vulnerability VCID-nt4w-m7ak-4bbx
39
vulnerability VCID-p2kq-rkh6-ayeu
40
vulnerability VCID-p52e-s67u-eya7
41
vulnerability VCID-pq29-qe7h-tkcp
42
vulnerability VCID-qm38-1cwk-b3hq
43
vulnerability VCID-tc2y-zrea-vyb2
44
vulnerability VCID-tm1s-2m92-uyh9
45
vulnerability VCID-u49v-31sv-eqc3
46
vulnerability VCID-wrnm-d19b-hqby
47
vulnerability VCID-ya8k-c5s5-47gx
48
vulnerability VCID-yuer-yn1w-q3gw
49
vulnerability VCID-z7fk-zbvh-quew
50
vulnerability VCID-zxmh-xcvd-53fe
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/silverstripe/framework@3.2.4
2
url pkg:composer/silverstripe/framework@3.3.2
purl pkg:composer/silverstripe/framework@3.3.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2f9j-ek3x-kbc5
1
vulnerability VCID-2rbk-47h6-d7d8
2
vulnerability VCID-414d-7bfm-kud7
3
vulnerability VCID-4f9c-aun4-wfep
4
vulnerability VCID-4fez-w6cm-rkf5
5
vulnerability VCID-4x32-t75c-u3bj
6
vulnerability VCID-5pkg-j4wg-7fcn
7
vulnerability VCID-6du5-hdvd-fueb
8
vulnerability VCID-6epx-c68d-d7bv
9
vulnerability VCID-6yv4-xevb-v7b2
10
vulnerability VCID-7dk3-gcup-2kc9
11
vulnerability VCID-86yd-4mkt-hydr
12
vulnerability VCID-8am6-aeny-ffej
13
vulnerability VCID-8wbx-bvm9-jqcv
14
vulnerability VCID-8zj1-kn8e-kbbn
15
vulnerability VCID-a3yc-fxa1-gfhy
16
vulnerability VCID-ab5z-bqka-xudb
17
vulnerability VCID-ade4-h51n-3bap
18
vulnerability VCID-ajga-3b99-yugh
19
vulnerability VCID-axxx-gpfn-mqc9
20
vulnerability VCID-bdcq-z11u-zyh5
21
vulnerability VCID-c3vp-kc9a-vkhn
22
vulnerability VCID-cdgj-bdpy-ukak
23
vulnerability VCID-cg3k-vmk4-5kdb
24
vulnerability VCID-dx5f-g875-5bct
25
vulnerability VCID-eddc-w9wx-c3gq
26
vulnerability VCID-enkd-4y44-4ueq
27
vulnerability VCID-fpb7-5pwu-tyg5
28
vulnerability VCID-fyxa-vzeq-ubeq
29
vulnerability VCID-hgkh-tcdc-ufd5
30
vulnerability VCID-j6ze-f76y-cqgy
31
vulnerability VCID-k7bb-y315-4qb6
32
vulnerability VCID-kak1-btjp-kqgz
33
vulnerability VCID-kdyk-rrrr-pufw
34
vulnerability VCID-kqk7-mdnd-hfc7
35
vulnerability VCID-krjm-ygks-wyct
36
vulnerability VCID-kvhv-9fj5-7kgk
37
vulnerability VCID-kw9p-5fbc-hudg
38
vulnerability VCID-kxa8-dmva-ayff
39
vulnerability VCID-nt4w-m7ak-4bbx
40
vulnerability VCID-p2kq-rkh6-ayeu
41
vulnerability VCID-p52e-s67u-eya7
42
vulnerability VCID-pq29-qe7h-tkcp
43
vulnerability VCID-qm38-1cwk-b3hq
44
vulnerability VCID-tc2y-zrea-vyb2
45
vulnerability VCID-tm1s-2m92-uyh9
46
vulnerability VCID-u49v-31sv-eqc3
47
vulnerability VCID-vtva-utdn-jkce
48
vulnerability VCID-wrnm-d19b-hqby
49
vulnerability VCID-ya8k-c5s5-47gx
50
vulnerability VCID-yuer-yn1w-q3gw
51
vulnerability VCID-z7fk-zbvh-quew
52
vulnerability VCID-zxmh-xcvd-53fe
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/silverstripe/framework@3.3.2
Affected_packages
0
url pkg:composer/silverstripe/framework@3.1.18
purl pkg:composer/silverstripe/framework@3.1.18
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1mh2-7nc4-pqg2
1
vulnerability VCID-2f9j-ek3x-kbc5
2
vulnerability VCID-2rbk-47h6-d7d8
3
vulnerability VCID-414d-7bfm-kud7
4
vulnerability VCID-4f9c-aun4-wfep
5
vulnerability VCID-4x32-t75c-u3bj
6
vulnerability VCID-5pkg-j4wg-7fcn
7
vulnerability VCID-6du5-hdvd-fueb
8
vulnerability VCID-6epx-c68d-d7bv
9
vulnerability VCID-6j2p-tzvx-9bdj
10
vulnerability VCID-7dk3-gcup-2kc9
11
vulnerability VCID-86yd-4mkt-hydr
12
vulnerability VCID-8wbx-bvm9-jqcv
13
vulnerability VCID-a3yc-fxa1-gfhy
14
vulnerability VCID-ab5z-bqka-xudb
15
vulnerability VCID-ajga-3b99-yugh
16
vulnerability VCID-axxx-gpfn-mqc9
17
vulnerability VCID-bdcq-z11u-zyh5
18
vulnerability VCID-c3vp-kc9a-vkhn
19
vulnerability VCID-cdgj-bdpy-ukak
20
vulnerability VCID-cg3k-vmk4-5kdb
21
vulnerability VCID-dgn7-zmwr-u3c6
22
vulnerability VCID-dx5f-g875-5bct
23
vulnerability VCID-eddc-w9wx-c3gq
24
vulnerability VCID-edex-qc8j-xfhn
25
vulnerability VCID-enkd-4y44-4ueq
26
vulnerability VCID-fpb7-5pwu-tyg5
27
vulnerability VCID-fyxa-vzeq-ubeq
28
vulnerability VCID-hgkh-tcdc-ufd5
29
vulnerability VCID-j6ze-f76y-cqgy
30
vulnerability VCID-k7bb-y315-4qb6
31
vulnerability VCID-kak1-btjp-kqgz
32
vulnerability VCID-kdyk-rrrr-pufw
33
vulnerability VCID-kqk7-mdnd-hfc7
34
vulnerability VCID-krjm-ygks-wyct
35
vulnerability VCID-kvhv-9fj5-7kgk
36
vulnerability VCID-kw9p-5fbc-hudg
37
vulnerability VCID-kxa8-dmva-ayff
38
vulnerability VCID-p2kq-rkh6-ayeu
39
vulnerability VCID-p52e-s67u-eya7
40
vulnerability VCID-pq29-qe7h-tkcp
41
vulnerability VCID-qm38-1cwk-b3hq
42
vulnerability VCID-qnsx-aa52-fkhf
43
vulnerability VCID-t17w-gcwe-eue4
44
vulnerability VCID-tc2y-zrea-vyb2
45
vulnerability VCID-tm1s-2m92-uyh9
46
vulnerability VCID-tuwu-cznx-jqdb
47
vulnerability VCID-u49v-31sv-eqc3
48
vulnerability VCID-wazt-hn99-qkdk
49
vulnerability VCID-wrnm-d19b-hqby
50
vulnerability VCID-ya8k-c5s5-47gx
51
vulnerability VCID-yuer-yn1w-q3gw
52
vulnerability VCID-z7fk-zbvh-quew
53
vulnerability VCID-zgy5-8cgd-gqhm
54
vulnerability VCID-zxmh-xcvd-53fe
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/silverstripe/framework@3.1.18
1
url pkg:composer/silverstripe/framework@3.1.19-rc1
purl pkg:composer/silverstripe/framework@3.1.19-rc1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1mh2-7nc4-pqg2
1
vulnerability VCID-2f9j-ek3x-kbc5
2
vulnerability VCID-2rbk-47h6-d7d8
3
vulnerability VCID-414d-7bfm-kud7
4
vulnerability VCID-4f9c-aun4-wfep
5
vulnerability VCID-4x32-t75c-u3bj
6
vulnerability VCID-5pkg-j4wg-7fcn
7
vulnerability VCID-6du5-hdvd-fueb
8
vulnerability VCID-6epx-c68d-d7bv
9
vulnerability VCID-6yv4-xevb-v7b2
10
vulnerability VCID-7dk3-gcup-2kc9
11
vulnerability VCID-86yd-4mkt-hydr
12
vulnerability VCID-8am6-aeny-ffej
13
vulnerability VCID-8wbx-bvm9-jqcv
14
vulnerability VCID-8zj1-kn8e-kbbn
15
vulnerability VCID-a3yc-fxa1-gfhy
16
vulnerability VCID-ab5z-bqka-xudb
17
vulnerability VCID-ade4-h51n-3bap
18
vulnerability VCID-ajga-3b99-yugh
19
vulnerability VCID-axxx-gpfn-mqc9
20
vulnerability VCID-bdcq-z11u-zyh5
21
vulnerability VCID-c3vp-kc9a-vkhn
22
vulnerability VCID-cdgj-bdpy-ukak
23
vulnerability VCID-cg3k-vmk4-5kdb
24
vulnerability VCID-dx5f-g875-5bct
25
vulnerability VCID-eddc-w9wx-c3gq
26
vulnerability VCID-edex-qc8j-xfhn
27
vulnerability VCID-enkd-4y44-4ueq
28
vulnerability VCID-fpb7-5pwu-tyg5
29
vulnerability VCID-fyxa-vzeq-ubeq
30
vulnerability VCID-hgkh-tcdc-ufd5
31
vulnerability VCID-j6ze-f76y-cqgy
32
vulnerability VCID-k7bb-y315-4qb6
33
vulnerability VCID-kak1-btjp-kqgz
34
vulnerability VCID-kdyk-rrrr-pufw
35
vulnerability VCID-kqk7-mdnd-hfc7
36
vulnerability VCID-krjm-ygks-wyct
37
vulnerability VCID-kvhv-9fj5-7kgk
38
vulnerability VCID-kw9p-5fbc-hudg
39
vulnerability VCID-kxa8-dmva-ayff
40
vulnerability VCID-nt4w-m7ak-4bbx
41
vulnerability VCID-p2kq-rkh6-ayeu
42
vulnerability VCID-p52e-s67u-eya7
43
vulnerability VCID-pq29-qe7h-tkcp
44
vulnerability VCID-qm38-1cwk-b3hq
45
vulnerability VCID-qnsx-aa52-fkhf
46
vulnerability VCID-t17w-gcwe-eue4
47
vulnerability VCID-tc2y-zrea-vyb2
48
vulnerability VCID-tm1s-2m92-uyh9
49
vulnerability VCID-u49v-31sv-eqc3
50
vulnerability VCID-wrnm-d19b-hqby
51
vulnerability VCID-ya8k-c5s5-47gx
52
vulnerability VCID-yuer-yn1w-q3gw
53
vulnerability VCID-z7fk-zbvh-quew
54
vulnerability VCID-zxmh-xcvd-53fe
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/silverstripe/framework@3.1.19-rc1
2
url pkg:composer/silverstripe/framework@3.2.3
purl pkg:composer/silverstripe/framework@3.2.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1mh2-7nc4-pqg2
1
vulnerability VCID-2f9j-ek3x-kbc5
2
vulnerability VCID-2rbk-47h6-d7d8
3
vulnerability VCID-414d-7bfm-kud7
4
vulnerability VCID-4f9c-aun4-wfep
5
vulnerability VCID-4x32-t75c-u3bj
6
vulnerability VCID-5pkg-j4wg-7fcn
7
vulnerability VCID-6du5-hdvd-fueb
8
vulnerability VCID-6epx-c68d-d7bv
9
vulnerability VCID-6j2p-tzvx-9bdj
10
vulnerability VCID-7dk3-gcup-2kc9
11
vulnerability VCID-86yd-4mkt-hydr
12
vulnerability VCID-8wbx-bvm9-jqcv
13
vulnerability VCID-a3yc-fxa1-gfhy
14
vulnerability VCID-ab5z-bqka-xudb
15
vulnerability VCID-ajga-3b99-yugh
16
vulnerability VCID-axxx-gpfn-mqc9
17
vulnerability VCID-bdcq-z11u-zyh5
18
vulnerability VCID-c3vp-kc9a-vkhn
19
vulnerability VCID-cdgj-bdpy-ukak
20
vulnerability VCID-cg3k-vmk4-5kdb
21
vulnerability VCID-dgn7-zmwr-u3c6
22
vulnerability VCID-dx5f-g875-5bct
23
vulnerability VCID-eddc-w9wx-c3gq
24
vulnerability VCID-edex-qc8j-xfhn
25
vulnerability VCID-enkd-4y44-4ueq
26
vulnerability VCID-fpb7-5pwu-tyg5
27
vulnerability VCID-fyxa-vzeq-ubeq
28
vulnerability VCID-hgkh-tcdc-ufd5
29
vulnerability VCID-j6ze-f76y-cqgy
30
vulnerability VCID-k7bb-y315-4qb6
31
vulnerability VCID-kak1-btjp-kqgz
32
vulnerability VCID-kdyk-rrrr-pufw
33
vulnerability VCID-krjm-ygks-wyct
34
vulnerability VCID-kvhv-9fj5-7kgk
35
vulnerability VCID-kw9p-5fbc-hudg
36
vulnerability VCID-kxa8-dmva-ayff
37
vulnerability VCID-p2kq-rkh6-ayeu
38
vulnerability VCID-p52e-s67u-eya7
39
vulnerability VCID-pq29-qe7h-tkcp
40
vulnerability VCID-qm38-1cwk-b3hq
41
vulnerability VCID-qnsx-aa52-fkhf
42
vulnerability VCID-tc2y-zrea-vyb2
43
vulnerability VCID-tm1s-2m92-uyh9
44
vulnerability VCID-tuwu-cznx-jqdb
45
vulnerability VCID-u49v-31sv-eqc3
46
vulnerability VCID-wazt-hn99-qkdk
47
vulnerability VCID-wrnm-d19b-hqby
48
vulnerability VCID-ya8k-c5s5-47gx
49
vulnerability VCID-yuer-yn1w-q3gw
50
vulnerability VCID-z7fk-zbvh-quew
51
vulnerability VCID-zgy5-8cgd-gqhm
52
vulnerability VCID-zxmh-xcvd-53fe
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/silverstripe/framework@3.2.3
3
url pkg:composer/silverstripe/framework@3.2.4-rc1
purl pkg:composer/silverstripe/framework@3.2.4-rc1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1mh2-7nc4-pqg2
1
vulnerability VCID-2f9j-ek3x-kbc5
2
vulnerability VCID-2rbk-47h6-d7d8
3
vulnerability VCID-414d-7bfm-kud7
4
vulnerability VCID-4f9c-aun4-wfep
5
vulnerability VCID-4x32-t75c-u3bj
6
vulnerability VCID-5pkg-j4wg-7fcn
7
vulnerability VCID-6du5-hdvd-fueb
8
vulnerability VCID-6epx-c68d-d7bv
9
vulnerability VCID-6yv4-xevb-v7b2
10
vulnerability VCID-7dk3-gcup-2kc9
11
vulnerability VCID-86yd-4mkt-hydr
12
vulnerability VCID-8am6-aeny-ffej
13
vulnerability VCID-8wbx-bvm9-jqcv
14
vulnerability VCID-8zj1-kn8e-kbbn
15
vulnerability VCID-a3yc-fxa1-gfhy
16
vulnerability VCID-ab5z-bqka-xudb
17
vulnerability VCID-ade4-h51n-3bap
18
vulnerability VCID-ajga-3b99-yugh
19
vulnerability VCID-axxx-gpfn-mqc9
20
vulnerability VCID-bdcq-z11u-zyh5
21
vulnerability VCID-c3vp-kc9a-vkhn
22
vulnerability VCID-cdgj-bdpy-ukak
23
vulnerability VCID-cg3k-vmk4-5kdb
24
vulnerability VCID-dx5f-g875-5bct
25
vulnerability VCID-eddc-w9wx-c3gq
26
vulnerability VCID-edex-qc8j-xfhn
27
vulnerability VCID-enkd-4y44-4ueq
28
vulnerability VCID-fpb7-5pwu-tyg5
29
vulnerability VCID-fyxa-vzeq-ubeq
30
vulnerability VCID-hgkh-tcdc-ufd5
31
vulnerability VCID-j6ze-f76y-cqgy
32
vulnerability VCID-k7bb-y315-4qb6
33
vulnerability VCID-kak1-btjp-kqgz
34
vulnerability VCID-kdyk-rrrr-pufw
35
vulnerability VCID-kqk7-mdnd-hfc7
36
vulnerability VCID-krjm-ygks-wyct
37
vulnerability VCID-kvhv-9fj5-7kgk
38
vulnerability VCID-kw9p-5fbc-hudg
39
vulnerability VCID-kxa8-dmva-ayff
40
vulnerability VCID-nt4w-m7ak-4bbx
41
vulnerability VCID-p2kq-rkh6-ayeu
42
vulnerability VCID-p52e-s67u-eya7
43
vulnerability VCID-pq29-qe7h-tkcp
44
vulnerability VCID-qm38-1cwk-b3hq
45
vulnerability VCID-qnsx-aa52-fkhf
46
vulnerability VCID-tc2y-zrea-vyb2
47
vulnerability VCID-tm1s-2m92-uyh9
48
vulnerability VCID-u49v-31sv-eqc3
49
vulnerability VCID-wrnm-d19b-hqby
50
vulnerability VCID-ya8k-c5s5-47gx
51
vulnerability VCID-yuer-yn1w-q3gw
52
vulnerability VCID-z7fk-zbvh-quew
53
vulnerability VCID-zxmh-xcvd-53fe
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/silverstripe/framework@3.2.4-rc1
4
url pkg:composer/silverstripe/framework@3.3.1
purl pkg:composer/silverstripe/framework@3.3.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1mh2-7nc4-pqg2
1
vulnerability VCID-2f9j-ek3x-kbc5
2
vulnerability VCID-2rbk-47h6-d7d8
3
vulnerability VCID-414d-7bfm-kud7
4
vulnerability VCID-4f9c-aun4-wfep
5
vulnerability VCID-4x32-t75c-u3bj
6
vulnerability VCID-5pkg-j4wg-7fcn
7
vulnerability VCID-6du5-hdvd-fueb
8
vulnerability VCID-6epx-c68d-d7bv
9
vulnerability VCID-6j2p-tzvx-9bdj
10
vulnerability VCID-7dk3-gcup-2kc9
11
vulnerability VCID-86yd-4mkt-hydr
12
vulnerability VCID-8wbx-bvm9-jqcv
13
vulnerability VCID-a3yc-fxa1-gfhy
14
vulnerability VCID-ab5z-bqka-xudb
15
vulnerability VCID-ajga-3b99-yugh
16
vulnerability VCID-axxx-gpfn-mqc9
17
vulnerability VCID-bdcq-z11u-zyh5
18
vulnerability VCID-c3vp-kc9a-vkhn
19
vulnerability VCID-cdgj-bdpy-ukak
20
vulnerability VCID-cg3k-vmk4-5kdb
21
vulnerability VCID-dgn7-zmwr-u3c6
22
vulnerability VCID-dx5f-g875-5bct
23
vulnerability VCID-eddc-w9wx-c3gq
24
vulnerability VCID-edex-qc8j-xfhn
25
vulnerability VCID-enkd-4y44-4ueq
26
vulnerability VCID-fpb7-5pwu-tyg5
27
vulnerability VCID-fyxa-vzeq-ubeq
28
vulnerability VCID-hgkh-tcdc-ufd5
29
vulnerability VCID-j6ze-f76y-cqgy
30
vulnerability VCID-k7bb-y315-4qb6
31
vulnerability VCID-kak1-btjp-kqgz
32
vulnerability VCID-kdyk-rrrr-pufw
33
vulnerability VCID-krjm-ygks-wyct
34
vulnerability VCID-kvhv-9fj5-7kgk
35
vulnerability VCID-kw9p-5fbc-hudg
36
vulnerability VCID-kxa8-dmva-ayff
37
vulnerability VCID-p2kq-rkh6-ayeu
38
vulnerability VCID-p52e-s67u-eya7
39
vulnerability VCID-pq29-qe7h-tkcp
40
vulnerability VCID-qm38-1cwk-b3hq
41
vulnerability VCID-qnsx-aa52-fkhf
42
vulnerability VCID-tc2y-zrea-vyb2
43
vulnerability VCID-tm1s-2m92-uyh9
44
vulnerability VCID-tuwu-cznx-jqdb
45
vulnerability VCID-u49v-31sv-eqc3
46
vulnerability VCID-vtva-utdn-jkce
47
vulnerability VCID-wazt-hn99-qkdk
48
vulnerability VCID-wrnm-d19b-hqby
49
vulnerability VCID-ya8k-c5s5-47gx
50
vulnerability VCID-yuer-yn1w-q3gw
51
vulnerability VCID-z7fk-zbvh-quew
52
vulnerability VCID-zgy5-8cgd-gqhm
53
vulnerability VCID-zxmh-xcvd-53fe
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/silverstripe/framework@3.3.1
5
url pkg:composer/silverstripe/framework@3.3.2-rc1
purl pkg:composer/silverstripe/framework@3.3.2-rc1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1mh2-7nc4-pqg2
1
vulnerability VCID-2f9j-ek3x-kbc5
2
vulnerability VCID-2rbk-47h6-d7d8
3
vulnerability VCID-414d-7bfm-kud7
4
vulnerability VCID-4f9c-aun4-wfep
5
vulnerability VCID-4x32-t75c-u3bj
6
vulnerability VCID-5pkg-j4wg-7fcn
7
vulnerability VCID-6du5-hdvd-fueb
8
vulnerability VCID-6epx-c68d-d7bv
9
vulnerability VCID-6yv4-xevb-v7b2
10
vulnerability VCID-7dk3-gcup-2kc9
11
vulnerability VCID-86yd-4mkt-hydr
12
vulnerability VCID-8am6-aeny-ffej
13
vulnerability VCID-8wbx-bvm9-jqcv
14
vulnerability VCID-8zj1-kn8e-kbbn
15
vulnerability VCID-a3yc-fxa1-gfhy
16
vulnerability VCID-ab5z-bqka-xudb
17
vulnerability VCID-ade4-h51n-3bap
18
vulnerability VCID-ajga-3b99-yugh
19
vulnerability VCID-axxx-gpfn-mqc9
20
vulnerability VCID-bdcq-z11u-zyh5
21
vulnerability VCID-c3vp-kc9a-vkhn
22
vulnerability VCID-cdgj-bdpy-ukak
23
vulnerability VCID-cg3k-vmk4-5kdb
24
vulnerability VCID-dx5f-g875-5bct
25
vulnerability VCID-eddc-w9wx-c3gq
26
vulnerability VCID-edex-qc8j-xfhn
27
vulnerability VCID-enkd-4y44-4ueq
28
vulnerability VCID-fpb7-5pwu-tyg5
29
vulnerability VCID-fyxa-vzeq-ubeq
30
vulnerability VCID-hgkh-tcdc-ufd5
31
vulnerability VCID-j6ze-f76y-cqgy
32
vulnerability VCID-k7bb-y315-4qb6
33
vulnerability VCID-kak1-btjp-kqgz
34
vulnerability VCID-kdyk-rrrr-pufw
35
vulnerability VCID-kqk7-mdnd-hfc7
36
vulnerability VCID-krjm-ygks-wyct
37
vulnerability VCID-kvhv-9fj5-7kgk
38
vulnerability VCID-kw9p-5fbc-hudg
39
vulnerability VCID-kxa8-dmva-ayff
40
vulnerability VCID-nt4w-m7ak-4bbx
41
vulnerability VCID-p2kq-rkh6-ayeu
42
vulnerability VCID-p52e-s67u-eya7
43
vulnerability VCID-pq29-qe7h-tkcp
44
vulnerability VCID-qm38-1cwk-b3hq
45
vulnerability VCID-qnsx-aa52-fkhf
46
vulnerability VCID-tc2y-zrea-vyb2
47
vulnerability VCID-tm1s-2m92-uyh9
48
vulnerability VCID-u49v-31sv-eqc3
49
vulnerability VCID-vtva-utdn-jkce
50
vulnerability VCID-wrnm-d19b-hqby
51
vulnerability VCID-ya8k-c5s5-47gx
52
vulnerability VCID-yuer-yn1w-q3gw
53
vulnerability VCID-z7fk-zbvh-quew
54
vulnerability VCID-zxmh-xcvd-53fe
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/silverstripe/framework@3.3.2-rc1
References
0
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/silverstripe/framework/SS-2016-005-1.yaml
reference_id
reference_type
scores
0
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/silverstripe/framework/SS-2016-005-1.yaml
1
reference_url https://github.com/silverstripe/silverstripe-framework
reference_id
reference_type
scores
0
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/silverstripe/silverstripe-framework
2
reference_url https://github.com/silverstripe/silverstripe-framework/commit/f32c893546340c8c279fd1ab6d4269e9d6539bc2
reference_id
reference_type
scores
0
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/silverstripe/silverstripe-framework/commit/f32c893546340c8c279fd1ab6d4269e9d6539bc2
3
reference_url https://www.silverstripe.org/download/security-releases/ss-2016-005
reference_id
reference_type
scores
0
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://www.silverstripe.org/download/security-releases/ss-2016-005
4
reference_url https://github.com/advisories/GHSA-8v6m-7f5v-hhx6
reference_id GHSA-8v6m-7f5v-hhx6
reference_type
scores
0
value CRITICAL
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-8v6m-7f5v-hhx6
Weaknesses
0
cwe_id 307
name Improper Restriction of Excessive Authentication Attempts
description The product does not implement sufficient measures to prevent multiple failed authentication attempts within a short time frame, making it more susceptible to brute force attacks.
1
cwe_id 937
name OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.
2
cwe_id 1035
name OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.
Exploits
Severity_range_score9.0 - 10.0
Exploitability0.5
Weighted_severity9.0
Risk_score4.5
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-1mh2-7nc4-pqg2