Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-yur4-b8gw-8qda

Summary Open Redirect in GitHub repository archivy/archivy prior to 1.7.0.

Aliases

alias	CVE-2022-0697

alias	GHSA-28mg-98xm-q493

alias	PYSEC-2022-161

Fixed_packages

url	pkg:pypi/archivy@1.7.0
purl	pkg:pypi/archivy@1.7.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@1.7.0

url	pkg:pypi/archivy@1.7.1
purl	pkg:pypi/archivy@1.7.1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@1.7.1

Affected_packages

url pkg:pypi/archivy@0.0.1

purl pkg:pypi/archivy@0.0.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@0.0.1

url pkg:pypi/archivy@0.0.2

purl pkg:pypi/archivy@0.0.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@0.0.2

url pkg:pypi/archivy@0.0.3

purl pkg:pypi/archivy@0.0.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@0.0.3

url pkg:pypi/archivy@0.0.4

purl pkg:pypi/archivy@0.0.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@0.0.4

url pkg:pypi/archivy@0.0.5

purl pkg:pypi/archivy@0.0.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@0.0.5

url pkg:pypi/archivy@0.0.6

purl pkg:pypi/archivy@0.0.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@0.0.6

url pkg:pypi/archivy@0.0.7

purl pkg:pypi/archivy@0.0.7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@0.0.7

url pkg:pypi/archivy@0.0.8

purl pkg:pypi/archivy@0.0.8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@0.0.8

url pkg:pypi/archivy@0.1.0

purl pkg:pypi/archivy@0.1.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@0.1.0

url pkg:pypi/archivy@0.2.0

purl pkg:pypi/archivy@0.2.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@0.2.0

url pkg:pypi/archivy@0.3.0

purl pkg:pypi/archivy@0.3.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@0.3.0

url pkg:pypi/archivy@0.4.0

purl pkg:pypi/archivy@0.4.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@0.4.0

url pkg:pypi/archivy@0.4.1

purl pkg:pypi/archivy@0.4.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@0.4.1

url pkg:pypi/archivy@0.5.0

purl pkg:pypi/archivy@0.5.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@0.5.0

url pkg:pypi/archivy@0.6.0

purl pkg:pypi/archivy@0.6.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@0.6.0

url pkg:pypi/archivy@0.6.1

purl pkg:pypi/archivy@0.6.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@0.6.1

url pkg:pypi/archivy@0.6.2

purl pkg:pypi/archivy@0.6.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@0.6.2

url pkg:pypi/archivy@0.7.0

purl pkg:pypi/archivy@0.7.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@0.7.0

url pkg:pypi/archivy@0.7.1

purl pkg:pypi/archivy@0.7.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@0.7.1

url pkg:pypi/archivy@0.7.2

purl pkg:pypi/archivy@0.7.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@0.7.2

url pkg:pypi/archivy@0.7.3

purl pkg:pypi/archivy@0.7.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@0.7.3

url pkg:pypi/archivy@0.8.0

purl pkg:pypi/archivy@0.8.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@0.8.0

url pkg:pypi/archivy@0.8.1

purl pkg:pypi/archivy@0.8.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@0.8.1

url pkg:pypi/archivy@0.8.2

purl pkg:pypi/archivy@0.8.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@0.8.2

url pkg:pypi/archivy@0.8.3

purl pkg:pypi/archivy@0.8.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@0.8.3

url pkg:pypi/archivy@0.8.4

purl pkg:pypi/archivy@0.8.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@0.8.4

url pkg:pypi/archivy@0.8.5

purl pkg:pypi/archivy@0.8.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@0.8.5

url pkg:pypi/archivy@0.9.0

purl pkg:pypi/archivy@0.9.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@0.9.0

url pkg:pypi/archivy@0.9.1

purl pkg:pypi/archivy@0.9.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@0.9.1

url pkg:pypi/archivy@0.9.2

purl pkg:pypi/archivy@0.9.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@0.9.2

url pkg:pypi/archivy@0.9.3

purl pkg:pypi/archivy@0.9.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@0.9.3

url pkg:pypi/archivy@0.10.0

purl pkg:pypi/archivy@0.10.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@0.10.0

url pkg:pypi/archivy@0.10.1

purl pkg:pypi/archivy@0.10.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@0.10.1

url pkg:pypi/archivy@0.11.0

purl pkg:pypi/archivy@0.11.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@0.11.0

url pkg:pypi/archivy@0.11.1

purl pkg:pypi/archivy@0.11.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@0.11.1

url pkg:pypi/archivy@1.0.0rc2

purl pkg:pypi/archivy@1.0.0rc2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@1.0.0rc2

url pkg:pypi/archivy@1.0.0

purl pkg:pypi/archivy@1.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@1.0.0

url pkg:pypi/archivy@1.0.1

purl pkg:pypi/archivy@1.0.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@1.0.1

url pkg:pypi/archivy@1.0.2

purl pkg:pypi/archivy@1.0.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@1.0.2

url pkg:pypi/archivy@1.1.0

purl pkg:pypi/archivy@1.1.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@1.1.0

url pkg:pypi/archivy@1.1.1

purl pkg:pypi/archivy@1.1.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@1.1.1

url pkg:pypi/archivy@1.1.2

purl pkg:pypi/archivy@1.1.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@1.1.2

url pkg:pypi/archivy@1.1.3rc1

purl pkg:pypi/archivy@1.1.3rc1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@1.1.3rc1

url pkg:pypi/archivy@1.1.3

purl pkg:pypi/archivy@1.1.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@1.1.3

url pkg:pypi/archivy@1.1.4

purl pkg:pypi/archivy@1.1.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@1.1.4

url pkg:pypi/archivy@1.2.0

purl pkg:pypi/archivy@1.2.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@1.2.0

url pkg:pypi/archivy@1.3.0

purl pkg:pypi/archivy@1.3.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@1.3.0

url pkg:pypi/archivy@1.3.1

purl pkg:pypi/archivy@1.3.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@1.3.1

url pkg:pypi/archivy@1.4.0

purl pkg:pypi/archivy@1.4.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@1.4.0

url pkg:pypi/archivy@1.5.0

purl pkg:pypi/archivy@1.5.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@1.5.0

url pkg:pypi/archivy@1.6.0rc1

purl pkg:pypi/archivy@1.6.0rc1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@1.6.0rc1

url pkg:pypi/archivy@1.6rc2

purl pkg:pypi/archivy@1.6rc2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@1.6rc2

url pkg:pypi/archivy@1.6.0rc3

purl pkg:pypi/archivy@1.6.0rc3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@1.6.0rc3

url pkg:pypi/archivy@1.6.0

purl pkg:pypi/archivy@1.6.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@1.6.0

url pkg:pypi/archivy@1.6.1

purl pkg:pypi/archivy@1.6.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fsxj-tx6q-23fb

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@1.6.1

url pkg:pypi/archivy@1.6.2

purl pkg:pypi/archivy@1.6.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-yur4-b8gw-8qda

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/archivy@1.6.2

References

reference_url	https://github.com/advisories/GHSA-28mg-98xm-q493
reference_id
reference_type
scores
url	https://github.com/advisories/GHSA-28mg-98xm-q493

reference_url	https://github.com/archivy/archivy
reference_id
reference_type
scores
url	https://github.com/archivy/archivy

reference_url	https://github.com/archivy/archivy/commit/2d8cb29853190d42572b36deb61127e68d6be574
reference_id
reference_type
scores
url	https://github.com/archivy/archivy/commit/2d8cb29853190d42572b36deb61127e68d6be574

reference_url	https://github.com/archivy/archivy/releases/tag/v1.7.1
reference_id
reference_type
scores
url	https://github.com/archivy/archivy/releases/tag/v1.7.1

reference_url	https://github.com/pypa/advisory-database/tree/main/vulns/archivy/PYSEC-2022-161.yaml
reference_id
reference_type
scores
url	https://github.com/pypa/advisory-database/tree/main/vulns/archivy/PYSEC-2022-161.yaml

reference_url	https://huntr.dev/bounties/2d0301a2-10ff-48f4-a346-5a0e8707835b
reference_id
reference_type
scores
url	https://huntr.dev/bounties/2d0301a2-10ff-48f4-a346-5a0e8707835b

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2022-0697
reference_id	CVE-2022-0697
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2022-0697

Weaknesses

cwe_id	601
name	URL Redirection to Untrusted Site ('Open Redirect')
description	A web application accepts a user-controlled input that specifies a link to an external site, and uses that link in a Redirect. This simplifies phishing attacks.

cwe_id	937
name	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.

cwe_id	1035
name	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.

Exploits

Severity_range_score null

Exploitability null

Weighted_severity null

Risk_score null

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-yur4-b8gw-8qda

Vulnerability Instance