{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/35918?format=json","vulnerability_id":"VCID-safj-r9a5-1kdd","summary":"Aim is an open-source, self-hosted machine learning experiment tracking tool. Versions of Aim prior to 3.1.0 are vulnerable to a path traversal attack. By manipulating variables that reference files with â€œdot-dot-slash (../)â€? sequences and its variations or by using absolute file paths, it may be possible to access arbitrary files and directories stored on file system including application source code or configuration and critical system files. The vulnerability issue is resolved in Aim v3.1.0.","aliases":[{"alias":"CVE-2021-43775"},{"alias":"GHSA-8phj-f9w2-cjcc"},{"alias":"PYSEC-2021-839"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/25213?format=json","purl":"pkg:pypi/aim@3.1.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@3.1.0"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/25126?format=json","purl":"pkg:pypi/aim@2.0.19","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.0.19"},{"url":"http://public2.vulnerablecode.io/api/packages/25127?format=json","purl":"pkg:pypi/aim@2.0.20rc1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.0.20rc1"},{"url":"http://public2.vulnerablecode.io/api/packages/25128?format=json","purl":"pkg:pypi/aim@2.0.20rc2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.0.20rc2"},{"url":"http://public2.vulnerablecode.io/api/packages/25129?format=json","purl":"pkg:pypi/aim@2.0.20","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.0.20"},{"url":"http://public2.vulnerablecode.io/api/packages/25130?format=json","purl":"pkg:pypi/aim@2.0.21rc1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.0.21rc1"},{"url":"http://public2.vulnerablecode.io/api/packages/25131?format=json","purl":"pkg:pypi/aim@2.0.21","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.0.21"},{"url":"http://public2.vulnerablecode.io/api/packages/25132?format=json","purl":"pkg:pypi/aim@2.0.22rc1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.0.22rc1"},{"url":"http://public2.vulnerablecode.io/api/packages/25133?format=json","purl":"pkg:pypi/aim@2.0.22rc2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.0.22rc2"},{"url":"http://public2.vulnerablecode.io/api/packages/25134?format=json","purl":"pkg:pypi/aim@2.0.22rc3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.0.22rc3"},{"url":"http://public2.vulnerablecode.io/api/packages/25135?format=json","purl":"pkg:pypi/aim@2.0.22","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.0.22"},{"url":"http://public2.vulnerablecode.io/api/packages/25136?format=json","purl":"pkg:pypi/aim@2.0.23","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.0.23"},{"url":"http://public2.vulnerablecode.io/api/packages/25137?format=json","purl":"pkg:pypi/aim@2.0.24","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.0.24"},{"url":"http://public2.vulnerablecode.io/api/packages/25138?format=json","purl":"pkg:pypi/aim@2.0.25","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.0.25"},{"url":"http://public2.vulnerablecode.io/api/packages/25139?format=json","purl":"pkg:pypi/aim@2.0.26","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.0.26"},{"url":"http://public2.vulnerablecode.io/api/packages/25140?format=json","purl":"pkg:pypi/aim@2.0.27rc2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.0.27rc2"},{"url":"http://public2.vulnerablecode.io/api/packages/25141?format=json","purl":"pkg:pypi/aim@2.0.27rc3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.0.27rc3"},{"url":"http://public2.vulnerablecode.io/api/packages/25142?format=json","purl":"pkg:pypi/aim@2.0.27rc4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.0.27rc4"},{"url":"http://public2.vulnerablecode.io/api/packages/25143?format=json","purl":"pkg:pypi/aim@2.0.27rc5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.0.27rc5"},{"url":"http://public2.vulnerablecode.io/api/packages/25144?format=json","purl":"pkg:pypi/aim@2.0.27","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.0.27"},{"url":"http://public2.vulnerablecode.io/api/packages/25145?format=json","purl":"pkg:pypi/aim@2.1.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.1.0"},{"url":"http://public2.vulnerablecode.io/api/packages/25146?format=json","purl":"pkg:pypi/aim@2.1.1rc1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.1.1rc1"},{"url":"http://public2.vulnerablecode.io/api/packages/25147?format=json","purl":"pkg:pypi/aim@2.1.1rc6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.1.1rc6"},{"url":"http://public2.vulnerablecode.io/api/packages/25148?format=json","purl":"pkg:pypi/aim@2.1.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.1.1"},{"url":"http://public2.vulnerablecode.io/api/packages/25149?format=json","purl":"pkg:pypi/aim@2.1.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.1.2"},{"url":"http://public2.vulnerablecode.io/api/packages/25150?format=json","purl":"pkg:pypi/aim@2.1.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.1.3"},{"url":"http://public2.vulnerablecode.io/api/packages/25151?format=json","purl":"pkg:pypi/aim@2.1.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.1.4"},{"url":"http://public2.vulnerablecode.io/api/packages/25152?format=json","purl":"pkg:pypi/aim@2.1.5rc1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.1.5rc1"},{"url":"http://public2.vulnerablecode.io/api/packages/25153?format=json","purl":"pkg:pypi/aim@2.1.5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.1.5"},{"url":"http://public2.vulnerablecode.io/api/packages/25154?format=json","purl":"pkg:pypi/aim@2.1.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.1.6"},{"url":"http://public2.vulnerablecode.io/api/packages/25155?format=json","purl":"pkg:pypi/aim@2.2.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.2.0"},{"url":"http://public2.vulnerablecode.io/api/packages/25156?format=json","purl":"pkg:pypi/aim@2.2.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.2.1"},{"url":"http://public2.vulnerablecode.io/api/packages/25157?format=json","purl":"pkg:pypi/aim@2.3.0rc1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.3.0rc1"},{"url":"http://public2.vulnerablecode.io/api/packages/25158?format=json","purl":"pkg:pypi/aim@2.3.0rc2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.3.0rc2"},{"url":"http://public2.vulnerablecode.io/api/packages/25159?format=json","purl":"pkg:pypi/aim@2.3.0rc3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.3.0rc3"},{"url":"http://public2.vulnerablecode.io/api/packages/25160?format=json","purl":"pkg:pypi/aim@2.3.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.3.0"},{"url":"http://public2.vulnerablecode.io/api/packages/25161?format=json","purl":"pkg:pypi/aim@2.4.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.4.0"},{"url":"http://public2.vulnerablecode.io/api/packages/25162?format=json","purl":"pkg:pypi/aim@2.5.0rc1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.5.0rc1"},{"url":"http://public2.vulnerablecode.io/api/packages/25163?format=json","purl":"pkg:pypi/aim@2.5.0rc2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.5.0rc2"},{"url":"http://public2.vulnerablecode.io/api/packages/25164?format=json","purl":"pkg:pypi/aim@2.5.0rc3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.5.0rc3"},{"url":"http://public2.vulnerablecode.io/api/packages/25165?format=json","purl":"pkg:pypi/aim@2.5.0rc4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.5.0rc4"},{"url":"http://public2.vulnerablecode.io/api/packages/25166?format=json","purl":"pkg:pypi/aim@2.5.0rc5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.5.0rc5"},{"url":"http://public2.vulnerablecode.io/api/packages/25167?format=json","purl":"pkg:pypi/aim@2.5.0rc6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.5.0rc6"},{"url":"http://public2.vulnerablecode.io/api/packages/25168?format=json","purl":"pkg:pypi/aim@2.5.0rc7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.5.0rc7"},{"url":"http://public2.vulnerablecode.io/api/packages/25169?format=json","purl":"pkg:pypi/aim@2.5.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.5.0"},{"url":"http://public2.vulnerablecode.io/api/packages/25170?format=json","purl":"pkg:pypi/aim@2.6.0rc1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.6.0rc1"},{"url":"http://public2.vulnerablecode.io/api/packages/25171?format=json","purl":"pkg:pypi/aim@2.6.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.6.0"},{"url":"http://public2.vulnerablecode.io/api/packages/25172?format=json","purl":"pkg:pypi/aim@2.7.0rc1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.7.0rc1"},{"url":"http://public2.vulnerablecode.io/api/packages/25173?format=json","purl":"pkg:pypi/aim@2.7.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.7.0"},{"url":"http://public2.vulnerablecode.io/api/packages/25174?format=json","purl":"pkg:pypi/aim@2.7.1rc1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.7.1rc1"},{"url":"http://public2.vulnerablecode.io/api/packages/25175?format=json","purl":"pkg:pypi/aim@2.7.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.7.1"},{"url":"http://public2.vulnerablecode.io/api/packages/25176?format=json","purl":"pkg:pypi/aim@2.7.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.7.2"},{"url":"http://public2.vulnerablecode.io/api/packages/25177?format=json","purl":"pkg:pypi/aim@2.7.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.7.3"},{"url":"http://public2.vulnerablecode.io/api/packages/25178?format=json","purl":"pkg:pypi/aim@2.7.4rc1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.7.4rc1"},{"url":"http://public2.vulnerablecode.io/api/packages/25179?format=json","purl":"pkg:pypi/aim@2.7.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@2.7.4"},{"url":"http://public2.vulnerablecode.io/api/packages/25180?format=json","purl":"pkg:pypi/aim@3.0.0a1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@3.0.0a1"},{"url":"http://public2.vulnerablecode.io/api/packages/25181?format=json","purl":"pkg:pypi/aim@3.0.0a2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@3.0.0a2"},{"url":"http://public2.vulnerablecode.io/api/packages/25182?format=json","purl":"pkg:pypi/aim@3.0.0a3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@3.0.0a3"},{"url":"http://public2.vulnerablecode.io/api/packages/25183?format=json","purl":"pkg:pypi/aim@3.0.0a4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@3.0.0a4"},{"url":"http://public2.vulnerablecode.io/api/packages/25184?format=json","purl":"pkg:pypi/aim@3.0.0b1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@3.0.0b1"},{"url":"http://public2.vulnerablecode.io/api/packages/25185?format=json","purl":"pkg:pypi/aim@3.0.0b2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@3.0.0b2"},{"url":"http://public2.vulnerablecode.io/api/packages/25186?format=json","purl":"pkg:pypi/aim@3.0.0b3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@3.0.0b3"},{"url":"http://public2.vulnerablecode.io/api/packages/25187?format=json","purl":"pkg:pypi/aim@3.0.0b4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@3.0.0b4"},{"url":"http://public2.vulnerablecode.io/api/packages/25188?format=json","purl":"pkg:pypi/aim@3.0.0b5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@3.0.0b5"},{"url":"http://public2.vulnerablecode.io/api/packages/25189?format=json","purl":"pkg:pypi/aim@3.0.0b6.dev1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@3.0.0b6.dev1"},{"url":"http://public2.vulnerablecode.io/api/packages/25190?format=json","purl":"pkg:pypi/aim@3.0.0b6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@3.0.0b6"},{"url":"http://public2.vulnerablecode.io/api/packages/25191?format=json","purl":"pkg:pypi/aim@3.0.0b7.dev1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@3.0.0b7.dev1"},{"url":"http://public2.vulnerablecode.io/api/packages/25192?format=json","purl":"pkg:pypi/aim@3.0.0b7.dev2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@3.0.0b7.dev2"},{"url":"http://public2.vulnerablecode.io/api/packages/25193?format=json","purl":"pkg:pypi/aim@3.0.0b7.dev3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@3.0.0b7.dev3"},{"url":"http://public2.vulnerablecode.io/api/packages/25194?format=json","purl":"pkg:pypi/aim@3.0.0b7.dev4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@3.0.0b7.dev4"},{"url":"http://public2.vulnerablecode.io/api/packages/25195?format=json","purl":"pkg:pypi/aim@3.0.0b7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@3.0.0b7"},{"url":"http://public2.vulnerablecode.io/api/packages/25196?format=json","purl":"pkg:pypi/aim@3.0.0rc1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@3.0.0rc1"},{"url":"http://public2.vulnerablecode.io/api/packages/25197?format=json","purl":"pkg:pypi/aim@3.0.0rc2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@3.0.0rc2"},{"url":"http://public2.vulnerablecode.io/api/packages/25198?format=json","purl":"pkg:pypi/aim@3.0.0rc3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@3.0.0rc3"},{"url":"http://public2.vulnerablecode.io/api/packages/25199?format=json","purl":"pkg:pypi/aim@3.0.0rc4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@3.0.0rc4"},{"url":"http://public2.vulnerablecode.io/api/packages/25200?format=json","purl":"pkg:pypi/aim@3.0.0rc7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@3.0.0rc7"},{"url":"http://public2.vulnerablecode.io/api/packages/25201?format=json","purl":"pkg:pypi/aim@3.0.0rc8","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@3.0.0rc8"},{"url":"http://public2.vulnerablecode.io/api/packages/25202?format=json","purl":"pkg:pypi/aim@3.0.0rc9","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@3.0.0rc9"},{"url":"http://public2.vulnerablecode.io/api/packages/25203?format=json","purl":"pkg:pypi/aim@3.0.0rc10","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@3.0.0rc10"},{"url":"http://public2.vulnerablecode.io/api/packages/25204?format=json","purl":"pkg:pypi/aim@3.0.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"},{"vulnerability":"VCID-sgsk-jtpy-v7fn"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@3.0.0"},{"url":"http://public2.vulnerablecode.io/api/packages/25205?format=json","purl":"pkg:pypi/aim@3.0.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@3.0.1"},{"url":"http://public2.vulnerablecode.io/api/packages/25206?format=json","purl":"pkg:pypi/aim@3.0.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@3.0.2"},{"url":"http://public2.vulnerablecode.io/api/packages/25207?format=json","purl":"pkg:pypi/aim@3.0.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@3.0.3"},{"url":"http://public2.vulnerablecode.io/api/packages/25208?format=json","purl":"pkg:pypi/aim@3.0.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@3.0.4"},{"url":"http://public2.vulnerablecode.io/api/packages/25209?format=json","purl":"pkg:pypi/aim@3.0.5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@3.0.5"},{"url":"http://public2.vulnerablecode.io/api/packages/25210?format=json","purl":"pkg:pypi/aim@3.0.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@3.0.6"},{"url":"http://public2.vulnerablecode.io/api/packages/25211?format=json","purl":"pkg:pypi/aim@3.0.7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@3.0.7"},{"url":"http://public2.vulnerablecode.io/api/packages/25212?format=json","purl":"pkg:pypi/aim@3.1.0rc1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-safj-r9a5-1kdd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/aim@3.1.0rc1"}],"references":[{"reference_url":"https://github.com/aimhubio/aim","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/aimhubio/aim"},{"reference_url":"https://github.com/aimhubio/aim/blob/0b99c6ca08e0ba7e7011453a2f68033e9b1d1bce/aim/web/api/views.py#L9-L16","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/aimhubio/aim/blob/0b99c6ca08e0ba7e7011453a2f68033e9b1d1bce/aim/web/api/views.py#L9-L16"},{"reference_url":"https://github.com/aimhubio/aim/commit/b9e53df5e32d14bbd3a2c738e2db7187fb531e93","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/aimhubio/aim/commit/b9e53df5e32d14bbd3a2c738e2db7187fb531e93"},{"reference_url":"https://github.com/aimhubio/aim/issues/999","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/aimhubio/aim/issues/999"},{"reference_url":"https://github.com/aimhubio/aim/pull/1003","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/aimhubio/aim/pull/1003"},{"reference_url":"https://github.com/aimhubio/aim/pull/1003/commits/f01266a1a479ef11d7d6c539e7dd89e9d5639738","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/aimhubio/aim/pull/1003/commits/f01266a1a479ef11d7d6c539e7dd89e9d5639738"},{"reference_url":"https://github.com/aimhubio/aim/security/advisories/GHSA-8phj-f9w2-cjcc","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/aimhubio/aim/security/advisories/GHSA-8phj-f9w2-cjcc"},{"reference_url":"https://github.com/pypa/advisory-database/tree/main/vulns/aim/PYSEC-2021-839.yaml","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/pypa/advisory-database/tree/main/vulns/aim/PYSEC-2021-839.yaml"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-43775","reference_id":"CVE-2021-43775","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-43775"},{"reference_url":"https://github.com/advisories/GHSA-8phj-f9w2-cjcc","reference_id":"GHSA-8phj-f9w2-cjcc","reference_type":"","scores":[],"url":"https://github.com/advisories/GHSA-8phj-f9w2-cjcc"}],"weaknesses":[{"cwe_id":22,"name":"Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')","description":"The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory."},{"cwe_id":937,"name":"OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities","description":"Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013."},{"cwe_id":1035,"name":"OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities","description":"Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017."}],"exploits":[],"severity_range_score":null,"exploitability":null,"weighted_severity":null,"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-safj-r9a5-1kdd"}