{"id":5398509,"name":"github.com/answerdev/answer","ecosystem":"go","description":"","homepage":"https://github.com/answerdev/answer","licenses":"Apache-2.0","normalized_licenses":["Apache-2.0"],"repository_url":"https://github.com/answerdev/answer","keywords_array":[],"namespace":"github.com/answerdev","versions_count":59,"first_release_published_at":"2022-11-01T10:09:48.000Z","latest_release_published_at":"2025-12-15T07:48:45.000Z","latest_release_number":"v1.7.1","last_synced_at":"2026-04-14T12:12:56.823Z","created_at":"2022-11-08T03:07:39.320Z","updated_at":"2026-04-14T18:13:09.332Z","registry_url":"https://pkg.go.dev/github.com/answerdev/answer","install_command":"go get github.com/answerdev/answer","documentation_url":"https://pkg.go.dev/github.com/answerdev/answer#section-documentation","metadata":{},"repo_metadata":{"uuid":"542931741","full_name":"answerdev/answer","owner":"answerdev","description":"An open-source knowledge-based community software. You can use it quickly to build Q\u0026A community for your products, customers, teams, and more.","archived":false,"fork":false,"pushed_at":"2023-03-17T09:43:42.000Z","size":5063,"stargazers_count":6497,"open_issues_count":46,"forks_count":352,"subscribers_count":60,"default_branch":"main","last_synced_at":"2023-03-17T14:31:46.065Z","etag":null,"topics":["community","forum","golang","react","typescipt"],"latest_commit_sha":null,"homepage":"https://answer.dev","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"logo_url":null,"metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2022-09-29T05:16:19.000Z","updated_at":"2023-03-16T18:07:21.000Z","dependencies_parsed_at":"2022-10-24T02:45:19.125Z","dependency_job_id":null,"html_url":"https://github.com/answerdev/answer","commit_stats":null,"repository_url":"http://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/answerdev%2Fanswer","tags_url":"http://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/answerdev%2Fanswer/tags","manifests_url":"http://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/answerdev%2Fanswer/manifests","owner_url":"http://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/answerdev","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":108921946,"host_url":"http://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"http://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"http://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names"},"tags":[{"name":"v1.0.0","sha":"dabfab6b9475a4de776c68de540b7fd84c7e843a","kind":"commit","published_at":"2022-12-18T10:08:19.000Z","download_url":"https://codeload.github.com/answerdev/answer/tar.gz/v1.0.0","html_url":"https://github.com/answerdev/answer/releases/tag/v1.0.0"},{"name":"v0.5.0","sha":"9164d0f3355d9abe8bbf86fb23bb37de4aba48ef","kind":"commit","published_at":"2022-12-06T07:54:32.000Z","download_url":"https://codeload.github.com/answerdev/answer/tar.gz/v0.5.0","html_url":"https://github.com/answerdev/answer/releases/tag/v0.5.0"},{"name":"v0.4.2","sha":"919ad47e4ad959958e2bd0d7de074673e87fdfed","kind":"commit","published_at":"2022-11-29T05:12:35.000Z","download_url":"https://codeload.github.com/answerdev/answer/tar.gz/v0.4.2","html_url":"https://github.com/answerdev/answer/releases/tag/v0.4.2"},{"name":"v0.4.1","sha":"88df9a4732569e75de289465e0ed25b15b93b7c0","kind":"commit","published_at":"2022-11-23T09:06:25.000Z","download_url":"https://codeload.github.com/answerdev/answer/tar.gz/v0.4.1","html_url":"https://github.com/answerdev/answer/releases/tag/v0.4.1"},{"name":"v0.4.0","sha":"661d8a7f8fec684a4b07fe5f4b67a53642fdf4d3","kind":"commit","published_at":"2022-11-21T06:33:47.000Z","download_url":"https://codeload.github.com/answerdev/answer/tar.gz/v0.4.0","html_url":"https://github.com/answerdev/answer/releases/tag/v0.4.0"},{"name":"v0.3.0","sha":"71a7145bda8a376a1c568da0f06aa2cf76b1af7f","kind":"commit","published_at":"2022-11-11T11:17:36.000Z","download_url":"https://codeload.github.com/answerdev/answer/tar.gz/v0.3.0","html_url":"https://github.com/answerdev/answer/releases/tag/v0.3.0"},{"name":"v0.2.0","sha":"73c170ca9c795ef266ebb5106479c18440e1995a","kind":"commit","published_at":"2022-11-01T10:09:48.000Z","download_url":"https://codeload.github.com/answerdev/answer/tar.gz/v0.2.0","html_url":"https://github.com/answerdev/answer/releases/tag/v0.2.0"}]},"repo_metadata_updated_at":"2023-03-22T07:41:41.894Z","dependent_packages_count":23,"downloads":null,"downloads_period":null,"dependent_repos_count":1,"rankings":{"downloads":null,"dependent_repos_count":4.719319222168304,"dependent_packages_count":1.0230678026304598,"stargazers_count":0.8175509469431834,"forks_count":1.544208891675391,"docker_downloads_count":null,"average":2.0260367158543344},"purl":"pkg:golang/github.com/answerdev/answer","advisories":[{"uuid":"GSA_kwCzR0hTQS1wajJoLTg1anEtZzV2Z84AA1v1","url":"https://github.com/advisories/GHSA-pj2h-85jq-g5vg","title":"Answer Missing Authentication for Critical Function","description":"Missing Authentication for Critical Function in GitHub repository answerdev/answer prior to v1.1.3.","origin":"UNSPECIFIED","severity":"HIGH","published_at":"2023-09-07T09:30:15.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":8.3,"cvss_vector":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L","references":["https://nvd.nist.gov/vuln/detail/CVE-2023-4815","https://github.com/answerdev/answer/commit/e75142a55546e01d8904f59db228422561f51666","https://huntr.dev/bounties/4cd3eeb4-57c9-4af2-ad19-2166c9e0fd2c","https://github.com/advisories/GHSA-pj2h-85jq-g5vg"],"source_kind":"github","identifiers":["GHSA-pj2h-85jq-g5vg","CVE-2023-4815"],"repository_url":"https://github.com/answerdev/answer","blast_radius":0.0,"created_at":"2023-09-08T13:05:41.313Z","updated_at":"2026-04-05T20:08:00.814Z","epss_percentage":0.0006,"epss_percentile":0.18804,"api_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1wajJoLTg1anEtZzV2Z84AA1v1","html_url":"https://advisories.ecosyste.ms/advisories/GSA_kwCzR0hTQS1wajJoLTg1anEtZzV2Z84AA1v1","packages":[{"ecosystem":"go","package_name":"github.com/answerdev/answer","versions":[{"first_patched_version":"1.1.3","vulnerable_version_range":"\u003c 1.1.3"}],"purl":"pkg:go/github.com%2Fanswerdev%2Fanswer"}],"related_packages_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1wajJoLTg1anEtZzV2Z84AA1v1/related_packages","related_advisories":[]},{"uuid":"GSA_kwCzR0hTQS01Mmg4LWM4NzYtOTg5Y84AA1BX","url":"https://github.com/advisories/GHSA-52h8-c876-989c","title":"Answer has Race Condition within a Thread","description":"Race Condition within a Thread in GitHub repository answerdev/answer prior to v1.1.1.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2023-08-03T06:30:23.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":6.5,"cvss_vector":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N","references":["https://nvd.nist.gov/vuln/detail/CVE-2023-4127","https://github.com/answerdev/answer/commit/47661dc8a356ce6aa7793f1bd950399292180182","https://huntr.dev/bounties/cf7d19e3-1318-4c77-8366-d8d04a0b41ba","https://github.com/advisories/GHSA-52h8-c876-989c"],"source_kind":"github","identifiers":["GHSA-52h8-c876-989c","CVE-2023-4127"],"repository_url":"https://github.com/answerdev/answer","blast_radius":0.0,"created_at":"2023-08-03T17:03:56.544Z","updated_at":"2026-04-14T17:08:15.242Z","epss_percentage":0.00115,"epss_percentile":0.30135,"api_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS01Mmg4LWM4NzYtOTg5Y84AA1BX","html_url":"https://advisories.ecosyste.ms/advisories/GSA_kwCzR0hTQS01Mmg4LWM4NzYtOTg5Y84AA1BX","packages":[{"ecosystem":"go","package_name":"github.com/answerdev/answer","versions":[{"first_patched_version":"1.1.1","vulnerable_version_range":"\u003c 1.1.1"}],"purl":"pkg:go/github.com%2Fanswerdev%2Fanswer"}],"related_packages_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS01Mmg4LWM4NzYtOTg5Y84AA1BX/related_packages","related_advisories":[]},{"uuid":"GSA_kwCzR0hTQS12OXZjLTd4NjktYzJ4OM4AA1BV","url":"https://github.com/advisories/GHSA-v9vc-7x69-c2x8","title":"Answer Missing Authorization vulnerability","description":"Missing Authorization in GitHub repository answerdev/answer prior to v1.1.1.","origin":"UNSPECIFIED","severity":"HIGH","published_at":"2023-08-03T06:30:22.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":8.1,"cvss_vector":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N","references":["https://nvd.nist.gov/vuln/detail/CVE-2023-4124","https://github.com/answerdev/answer/commit/964195fd859ee5d7171fac847374dfa31893e793","https://huntr.dev/bounties/2c684f99-d181-4106-8ee2-64a76ae6a348","https://github.com/advisories/GHSA-v9vc-7x69-c2x8"],"source_kind":"github","identifiers":["GHSA-v9vc-7x69-c2x8","CVE-2023-4124"],"repository_url":"https://github.com/answerdev/answer","blast_radius":0.0,"created_at":"2023-08-03T17:03:56.579Z","updated_at":"2026-04-05T20:08:29.503Z","epss_percentage":0.00135,"epss_percentile":0.33101,"api_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS12OXZjLTd4NjktYzJ4OM4AA1BV","html_url":"https://advisories.ecosyste.ms/advisories/GSA_kwCzR0hTQS12OXZjLTd4NjktYzJ4OM4AA1BV","packages":[{"ecosystem":"go","package_name":"github.com/answerdev/answer","versions":[{"first_patched_version":"1.1.1","vulnerable_version_range":"\u003c 1.1.1"}],"purl":"pkg:go/github.com%2Fanswerdev%2Fanswer"}],"related_packages_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS12OXZjLTd4NjktYzJ4OM4AA1BV/related_packages","related_advisories":[]},{"uuid":"GSA_kwCzR0hTQS1nZ2NmLWh3eHAtcmM3N84AA1BW","url":"https://github.com/advisories/GHSA-ggcf-hwxp-rc77","title":"Answer Insufficient Session Expiration vulnerability","description":"Insufficient Session Expiration in GitHub repository answerdev/answer prior to v1.1.0.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2023-08-03T06:30:22.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":4.1,"cvss_vector":"CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:L","references":["https://nvd.nist.gov/vuln/detail/CVE-2023-4126","https://github.com/answerdev/answer/commit/4f468b58d0dea51290bfbdd3e96332b0014c8730","https://huntr.dev/bounties/7f50bf1c-bcb9-46ca-8cec-211493d280c5","https://github.com/advisories/GHSA-ggcf-hwxp-rc77"],"source_kind":"github","identifiers":["GHSA-ggcf-hwxp-rc77","CVE-2023-4126"],"repository_url":"https://github.com/answerdev/answer","blast_radius":0.0,"created_at":"2023-08-03T17:03:56.560Z","updated_at":"2026-04-05T20:08:29.502Z","epss_percentage":0.00087,"epss_percentile":0.24975,"api_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1nZ2NmLWh3eHAtcmM3N84AA1BW","html_url":"https://advisories.ecosyste.ms/advisories/GSA_kwCzR0hTQS1nZ2NmLWh3eHAtcmM3N84AA1BW","packages":[{"ecosystem":"go","package_name":"github.com/answerdev/answer","versions":[{"first_patched_version":"1.1.0","vulnerable_version_range":"\u003c 1.1.0"}],"purl":"pkg:go/github.com%2Fanswerdev%2Fanswer"}],"related_packages_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1nZ2NmLWh3eHAtcmM3N84AA1BW/related_packages","related_advisories":[]},{"uuid":"GSA_kwCzR0hTQS1qNjN4LWY2NTctMm05Z84AA1Ba","url":"https://github.com/advisories/GHSA-j63x-f657-2m9g","title":"Answer has Weak Password Requirements","description":"Weak Password Requirements in GitHub repository answerdev/answer prior to v1.1.0.","origin":"UNSPECIFIED","severity":"HIGH","published_at":"2023-08-03T06:30:22.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":8.8,"cvss_vector":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","references":["https://nvd.nist.gov/vuln/detail/CVE-2023-4125","https://github.com/answerdev/answer/commit/7d23b17cdbbefcd2e7b5c3150f0b5ec908dc835f","https://huntr.dev/bounties/85bfd18f-8d3b-4154-8b7b-1f8fcf704e28","https://github.com/advisories/GHSA-j63x-f657-2m9g"],"source_kind":"github","identifiers":["GHSA-j63x-f657-2m9g","CVE-2023-4125"],"repository_url":"https://github.com/answerdev/answer","blast_radius":0.0,"created_at":"2023-08-08T23:05:00.306Z","updated_at":"2026-04-14T17:08:14.148Z","epss_percentage":0.0019,"epss_percentile":0.40978,"api_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1qNjN4LWY2NTctMm05Z84AA1Ba","html_url":"https://advisories.ecosyste.ms/advisories/GSA_kwCzR0hTQS1qNjN4LWY2NTctMm05Z84AA1Ba","packages":[{"ecosystem":"go","package_name":"github.com/answerdev/answer","versions":[{"first_patched_version":"1.1.0","vulnerable_version_range":"\u003c 1.1.0"}],"purl":"pkg:go/github.com%2Fanswerdev%2Fanswer"}],"related_packages_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1qNjN4LWY2NTctMm05Z84AA1Ba/related_packages","related_advisories":[]},{"uuid":"GSA_kwCzR0hTQS1xbXF3LXI0eDYtM3cycc4AAzLF","url":"https://github.com/advisories/GHSA-qmqw-r4x6-3w2q","title":"Answer Missing Authorization vulnerability","description":"A missing authorization in GitHub repository answerdev/answer prior to 1.0.9 can lead to a user rating their own answer as the best answer.","origin":"UNSPECIFIED","severity":"LOW","published_at":"2023-05-09T06:30:25.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":3.5,"cvss_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N","references":["https://nvd.nist.gov/vuln/detail/CVE-2023-2590","https://github.com/answerdev/answer/commit/51ac1e6b76ae9ab3ca2008ca4819c0cc3bd2fcd3","https://huntr.dev/bounties/a4238a30-3ddb-4415-9055-e179c3d4dea7","https://github.com/advisories/GHSA-qmqw-r4x6-3w2q"],"source_kind":"github","identifiers":["GHSA-qmqw-r4x6-3w2q","CVE-2023-2590"],"repository_url":"https://github.com/answerdev/answer","blast_radius":0.0,"created_at":"2023-05-11T21:03:21.277Z","updated_at":"2026-04-05T20:08:51.918Z","epss_percentage":0.00068,"epss_percentile":0.20891,"api_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1xbXF3LXI0eDYtM3cycc4AAzLF","html_url":"https://advisories.ecosyste.ms/advisories/GSA_kwCzR0hTQS1xbXF3LXI0eDYtM3cycc4AAzLF","packages":[{"ecosystem":"go","package_name":"github.com/answerdev/answer","versions":[{"first_patched_version":"1.0.9","vulnerable_version_range":"\u003c 1.0.9"}],"purl":"pkg:go/github.com%2Fanswerdev%2Fanswer"}],"related_packages_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1xbXF3LXI0eDYtM3cycc4AAzLF/related_packages","related_advisories":[]},{"uuid":"GSA_kwCzR0hTQS02NXY4LTZwdnctand2cc4AAyq3","url":"https://github.com/advisories/GHSA-65v8-6pvw-jwvq","title":"Answer vulnerable to Insertion of Sensitive Information Into Sent Data","description":"answerdev/answer is an open-source knowledge-based community software. Answer prior to 1.0.8 does not strip EXIF geolocation data from user-uploaded logos. As a result, anyone can get sensitive information like a user's device ID, geolocation, system information, system version, etc.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2023-04-11T12:30:26.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":6.5,"cvss_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","references":["https://nvd.nist.gov/vuln/detail/CVE-2023-1975","https://github.com/answerdev/answer/commit/ac3f2f047ee00b4edaea7530e570ab67ff87cd6a","https://huntr.dev/bounties/829cab7a-4ed7-465c-aa96-29f4f73dbfff","https://github.com/advisories/GHSA-65v8-6pvw-jwvq"],"source_kind":"github","identifiers":["GHSA-65v8-6pvw-jwvq","CVE-2023-1975"],"repository_url":"https://github.com/answerdev/answer","blast_radius":0.0,"created_at":"2023-04-11T22:03:18.194Z","updated_at":"2026-04-14T17:08:41.182Z","epss_percentage":0.00349,"epss_percentile":0.57429,"api_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS02NXY4LTZwdnctand2cc4AAyq3","html_url":"https://advisories.ecosyste.ms/advisories/GSA_kwCzR0hTQS02NXY4LTZwdnctand2cc4AAyq3","packages":[{"ecosystem":"go","package_name":"github.com/answerdev/answer","versions":[{"first_patched_version":"1.0.8","vulnerable_version_range":"\u003c 1.0.8"}],"purl":"pkg:go/github.com%2Fanswerdev%2Fanswer"}],"related_packages_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS02NXY4LTZwdnctand2cc4AAyq3/related_packages","related_advisories":[]},{"uuid":"GSA_kwCzR0hTQS04amczLXJ4NDMtM2Z2NM4AAyq4","url":"https://github.com/advisories/GHSA-8jg3-rx43-3fv4","title":"Answer vulnerable to Exposure of Sensitive Information Through Metadata","description":"answerdev/answer is an open-source knowledge-based community software. Answer prior to 1.0.8 may expose sensitive information, such as EXIF data and GPS coordatinates, via image metadata.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2023-04-11T12:30:26.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":6.5,"cvss_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","references":["https://nvd.nist.gov/vuln/detail/CVE-2023-1974","https://github.com/answerdev/answer/commit/ac3f2f047ee00b4edaea7530e570ab67ff87cd6a","https://huntr.dev/bounties/852781c6-9cc8-4d25-9336-bf3cb8ee3439","https://github.com/advisories/GHSA-8jg3-rx43-3fv4"],"source_kind":"github","identifiers":["GHSA-8jg3-rx43-3fv4","CVE-2023-1974"],"repository_url":"https://github.com/answerdev/answer","blast_radius":0.0,"created_at":"2023-04-11T22:03:18.207Z","updated_at":"2026-04-14T17:08:41.183Z","epss_percentage":0.00364,"epss_percentile":0.58474,"api_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS04amczLXJ4NDMtM2Z2NM4AAyq4","html_url":"https://advisories.ecosyste.ms/advisories/GSA_kwCzR0hTQS04amczLXJ4NDMtM2Z2NM4AAyq4","packages":[{"ecosystem":"go","package_name":"github.com/answerdev/answer","versions":[{"first_patched_version":"1.0.8","vulnerable_version_range":"\u003c 1.0.8"}],"purl":"pkg:go/github.com%2Fanswerdev%2Fanswer"}],"related_packages_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS04amczLXJ4NDMtM2Z2NM4AAyq4/related_packages","related_advisories":[]},{"uuid":"GSA_kwCzR0hTQS1qOTdnLTc3ZmotOWM0cM4AAyrA","url":"https://github.com/advisories/GHSA-j97g-77fj-9c4p","title":"Answer vulnerable to account takeover because password reset links do not expire","description":"answerdev/answer is an open-source knowledge-based community software. Answer prior to 1.0.6 is vulnerable to account takeover because the password reset link does not expire.","origin":"UNSPECIFIED","severity":"HIGH","published_at":"2023-04-11T12:30:25.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":8.8,"cvss_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","references":["https://nvd.nist.gov/vuln/detail/CVE-2023-1976","https://github.com/answerdev/answer/commit/813ad0b9894673b1bdd489a2e9ab60a44fe990af","https://huntr.dev/bounties/469bcabf-b315-4750-b63c-82ac86d153de","https://github.com/advisories/GHSA-j97g-77fj-9c4p"],"source_kind":"github","identifiers":["GHSA-j97g-77fj-9c4p","CVE-2023-1976"],"repository_url":"https://github.com/answerdev/answer","blast_radius":0.0,"created_at":"2023-04-11T22:03:18.220Z","updated_at":"2026-04-14T17:08:41.183Z","epss_percentage":0.00226,"epss_percentile":0.45356,"api_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1qOTdnLTc3ZmotOWM0cM4AAyrA","html_url":"https://advisories.ecosyste.ms/advisories/GSA_kwCzR0hTQS1qOTdnLTc3ZmotOWM0cM4AAyrA","packages":[{"ecosystem":"go","package_name":"github.com/answerdev/answer","versions":[{"first_patched_version":"1.0.6","vulnerable_version_range":"\u003c 1.0.6"}],"purl":"pkg:go/github.com%2Fanswerdev%2Fanswer"}],"related_packages_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1qOTdnLTc3ZmotOWM0cM4AAyrA/related_packages","related_advisories":[]},{"uuid":"GSA_kwCzR0hTQS04M3FyLWM3bTktd21nd84AAyMz","url":"https://github.com/advisories/GHSA-83qr-c7m9-wmgw","title":"Answer vulnerable to Stored Cross-site Scripting","description":"Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.7.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2023-03-21T06:30:17.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":5.4,"cvss_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N","references":["https://nvd.nist.gov/vuln/detail/CVE-2023-1535","https://github.com/answerdev/answer/commit/c3743bad4f2a69f69f8f1e1e5b4b6524fc03da25","https://huntr.dev/bounties/4d4b0caa-6d8c-4574-ae7e-e9ef5e2e1a40","https://github.com/advisories/GHSA-83qr-c7m9-wmgw"],"source_kind":"github","identifiers":["GHSA-83qr-c7m9-wmgw","CVE-2023-1535"],"repository_url":"https://github.com/answerdev/answer","blast_radius":0.0,"created_at":"2023-03-21T23:03:05.290Z","updated_at":"2026-04-14T17:08:46.301Z","epss_percentage":0.00261,"epss_percentile":0.49485,"api_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS04M3FyLWM3bTktd21nd84AAyMz","html_url":"https://advisories.ecosyste.ms/advisories/GSA_kwCzR0hTQS04M3FyLWM3bTktd21nd84AAyMz","packages":[{"ecosystem":"go","package_name":"github.com/answerdev/answer","versions":[{"first_patched_version":"1.0.7","vulnerable_version_range":"\u003c 1.0.7"}],"purl":"pkg:go/github.com%2Fanswerdev%2Fanswer"}],"related_packages_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS04M3FyLWM3bTktd21nd84AAyMz/related_packages","related_advisories":[]},{"uuid":"GSA_kwCzR0hTQS1od2o3LWZyZ2otNzgyOc4AAyM1","url":"https://github.com/advisories/GHSA-hwj7-frgj-7829","title":"Answer vulnerable to Authentication Bypass by Capture-replay","description":"Authentication Bypass by Capture-replay in GitHub repository answerdev/answer prior to 1.0.6.","origin":"UNSPECIFIED","severity":"CRITICAL","published_at":"2023-03-21T06:30:17.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":9.8,"cvss_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","references":["https://nvd.nist.gov/vuln/detail/CVE-2023-1537","https://github.com/answerdev/answer/commit/813ad0b9894673b1bdd489a2e9ab60a44fe990af","https://huntr.dev/bounties/171cde18-a447-446c-a9ab-297953ad9b86","https://github.com/advisories/GHSA-hwj7-frgj-7829"],"source_kind":"github","identifiers":["GHSA-hwj7-frgj-7829","CVE-2023-1537"],"repository_url":"https://github.com/answerdev/answer","blast_radius":0.0,"created_at":"2023-03-21T23:03:05.271Z","updated_at":"2026-04-14T17:08:46.300Z","epss_percentage":0.00262,"epss_percentile":0.49501,"api_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1od2o3LWZyZ2otNzgyOc4AAyM1","html_url":"https://advisories.ecosyste.ms/advisories/GSA_kwCzR0hTQS1od2o3LWZyZ2otNzgyOc4AAyM1","packages":[{"ecosystem":"go","package_name":"github.com/answerdev/answer","versions":[{"first_patched_version":"1.0.6","vulnerable_version_range":"\u003c 1.0.6"}],"purl":"pkg:go/github.com%2Fanswerdev%2Fanswer"}],"related_packages_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1od2o3LWZyZ2otNzgyOc4AAyM1/related_packages","related_advisories":[]},{"uuid":"GSA_kwCzR0hTQS14dmZqLTg0dmMtaHJtZs4AAyM2","url":"https://github.com/advisories/GHSA-xvfj-84vc-hrmf","title":"Answer vulnerable to Stored Cross-site Scripting","description":"Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.7.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2023-03-21T06:30:17.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":5.4,"cvss_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N","references":["https://nvd.nist.gov/vuln/detail/CVE-2023-1536","https://github.com/answerdev/answer/commit/c3743bad4f2a69f69f8f1e1e5b4b6524fc03da25","https://huntr.dev/bounties/538207f4-f805-419a-a314-51716643f05e","https://github.com/advisories/GHSA-xvfj-84vc-hrmf"],"source_kind":"github","identifiers":["GHSA-xvfj-84vc-hrmf","CVE-2023-1536"],"repository_url":"https://github.com/answerdev/answer","blast_radius":0.0,"created_at":"2023-03-21T23:03:05.281Z","updated_at":"2026-04-14T17:08:46.300Z","epss_percentage":0.00261,"epss_percentile":0.49485,"api_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS14dmZqLTg0dmMtaHJtZs4AAyM2","html_url":"https://advisories.ecosyste.ms/advisories/GSA_kwCzR0hTQS14dmZqLTg0dmMtaHJtZs4AAyM2","packages":[{"ecosystem":"go","package_name":"github.com/answerdev/answer","versions":[{"first_patched_version":"1.0.7","vulnerable_version_range":"\u003c 1.0.7"}],"purl":"pkg:go/github.com%2Fanswerdev%2Fanswer"}],"related_packages_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS14dmZqLTg0dmMtaHJtZs4AAyM2/related_packages","related_advisories":[]},{"uuid":"GSA_kwCzR0hTQS1oMndnLTgzZmMteHZtOc4AAyMw","url":"https://github.com/advisories/GHSA-h2wg-83fc-xvm9","title":"Answer vulnerable to Business Logic Errors","description":"Business Logic Errors in GitHub repository answerdev/answer prior to 1.0.6.","origin":"UNSPECIFIED","severity":"LOW","published_at":"2023-03-21T06:30:17.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":3.8,"cvss_vector":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L","references":["https://nvd.nist.gov/vuln/detail/CVE-2023-1541","https://github.com/answerdev/answer/commit/15390adbfcd5fd37af4661f992f8873ae5a6b840","https://huntr.dev/bounties/8fd891c6-b04e-4dac-818f-9ea30861cd92","https://github.com/advisories/GHSA-h2wg-83fc-xvm9"],"source_kind":"github","identifiers":["GHSA-h2wg-83fc-xvm9","CVE-2023-1541"],"repository_url":"https://github.com/answerdev/answer","blast_radius":0.0,"created_at":"2023-03-21T23:03:05.233Z","updated_at":"2026-04-05T20:09:03.550Z","epss_percentage":0.00406,"epss_percentile":0.60949,"api_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1oMndnLTgzZmMteHZtOc4AAyMw","html_url":"https://advisories.ecosyste.ms/advisories/GSA_kwCzR0hTQS1oMndnLTgzZmMteHZtOc4AAyMw","packages":[{"ecosystem":"go","package_name":"github.com/answerdev/answer","versions":[{"first_patched_version":"1.0.6","vulnerable_version_range":"\u003c 1.0.6"}],"purl":"pkg:go/github.com%2Fanswerdev%2Fanswer"}],"related_packages_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1oMndnLTgzZmMteHZtOc4AAyMw/related_packages","related_advisories":[]},{"uuid":"GSA_kwCzR0hTQS02eDV2LWN4cHAtcGM1eM4AAyMs","url":"https://github.com/advisories/GHSA-6x5v-cxpp-pc5x","title":"Answer has Observable Response Discrepancy","description":"Observable Response Discrepancy in GitHub repository answerdev/answer prior to 1.0.6.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2023-03-21T06:30:17.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":5.3,"cvss_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N","references":["https://nvd.nist.gov/vuln/detail/CVE-2023-1540","https://github.com/answerdev/answer/commit/1de3ec27e50ba7389c9449c59e8ea3a37a908ee4","https://huntr.dev/bounties/d8d6c259-a0f2-4209-a3b0-ecbf3eb092f4","https://github.com/advisories/GHSA-6x5v-cxpp-pc5x"],"source_kind":"github","identifiers":["GHSA-6x5v-cxpp-pc5x","CVE-2023-1540"],"repository_url":"https://github.com/answerdev/answer","blast_radius":0.0,"created_at":"2023-03-21T23:03:05.242Z","updated_at":"2026-04-05T20:09:03.551Z","epss_percentage":0.0022,"epss_percentile":0.44525,"api_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS02eDV2LWN4cHAtcGM1eM4AAyMs","html_url":"https://advisories.ecosyste.ms/advisories/GSA_kwCzR0hTQS02eDV2LWN4cHAtcGM1eM4AAyMs","packages":[{"ecosystem":"go","package_name":"github.com/answerdev/answer","versions":[{"first_patched_version":"1.0.6","vulnerable_version_range":"\u003c 1.0.6"}],"purl":"pkg:go/github.com%2Fanswerdev%2Fanswer"}],"related_packages_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS02eDV2LWN4cHAtcGM1eM4AAyMs/related_packages","related_advisories":[]},{"uuid":"GSA_kwCzR0hTQS1nNDR2LTZxZm0tZjZjaM4AAyMu","url":"https://github.com/advisories/GHSA-g44v-6qfm-f6ch","title":"Answer has Guessable CAPTCHA","description":"Guessable CAPTCHA in GitHub repository answerdev/answer prior to 1.0.6.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2023-03-21T06:30:17.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":5.3,"cvss_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N","references":["https://nvd.nist.gov/vuln/detail/CVE-2023-1539","https://github.com/answerdev/answer/commit/813ad0b9894673b1bdd489a2e9ab60a44fe990af","https://huntr.dev/bounties/b4df67f4-14ea-4051-97d4-26690c979a28","https://github.com/advisories/GHSA-g44v-6qfm-f6ch"],"source_kind":"github","identifiers":["GHSA-g44v-6qfm-f6ch","CVE-2023-1539"],"repository_url":"https://github.com/answerdev/answer","blast_radius":0.0,"created_at":"2023-03-21T23:03:05.252Z","updated_at":"2026-04-05T20:09:03.551Z","epss_percentage":0.00418,"epss_percentile":0.61657,"api_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1nNDR2LTZxZm0tZjZjaM4AAyMu","html_url":"https://advisories.ecosyste.ms/advisories/GSA_kwCzR0hTQS1nNDR2LTZxZm0tZjZjaM4AAyMu","packages":[{"ecosystem":"go","package_name":"github.com/answerdev/answer","versions":[{"first_patched_version":"1.0.6","vulnerable_version_range":"\u003c 1.0.6"}],"purl":"pkg:go/github.com%2Fanswerdev%2Fanswer"}],"related_packages_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1nNDR2LTZxZm0tZjZjaM4AAyMu/related_packages","related_advisories":[]},{"uuid":"GSA_kwCzR0hTQS1ydmpwLThxajQtOHAyOc4AAyMv","url":"https://github.com/advisories/GHSA-rvjp-8qj4-8p29","title":"Answer has Observable Timing Discrepancy","description":"Observable Timing Discrepancy in GitHub repository answerdev/answer prior to 1.0.6.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2023-03-21T06:30:17.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":5.3,"cvss_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N","references":["https://nvd.nist.gov/vuln/detail/CVE-2023-1538","https://github.com/answerdev/answer/commit/813ad0b9894673b1bdd489a2e9ab60a44fe990af","https://huntr.dev/bounties/ac0271eb-660f-4966-8b57-4bc660a9a1a0","https://github.com/advisories/GHSA-rvjp-8qj4-8p29"],"source_kind":"github","identifiers":["GHSA-rvjp-8qj4-8p29","CVE-2023-1538"],"repository_url":"https://github.com/answerdev/answer","blast_radius":0.0,"created_at":"2023-03-21T23:03:05.261Z","updated_at":"2026-04-05T20:09:03.551Z","epss_percentage":0.0022,"epss_percentile":0.44525,"api_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1ydmpwLThxajQtOHAyOc4AAyMv","html_url":"https://advisories.ecosyste.ms/advisories/GSA_kwCzR0hTQS1ydmpwLThxajQtOHAyOc4AAyMv","packages":[{"ecosystem":"go","package_name":"github.com/answerdev/answer","versions":[{"first_patched_version":"1.0.6","vulnerable_version_range":"\u003c 1.0.6"}],"purl":"pkg:go/github.com%2Fanswerdev%2Fanswer"}],"related_packages_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1ydmpwLThxajQtOHAyOc4AAyMv/related_packages","related_advisories":[]},{"uuid":"GSA_kwCzR0hTQS1yOTV3LTdjcHgtaDVteM4AAyMt","url":"https://github.com/advisories/GHSA-r95w-7cpx-h5mx","title":"Answer vulnerable to Business Logic Errors","description":"Business Logic Errors in GitHub repository answerdev/answer prior to 1.0.6.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2023-03-21T06:30:17.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":5.4,"cvss_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L","references":["https://nvd.nist.gov/vuln/detail/CVE-2023-1542","https://github.com/answerdev/answer/commit/4ca2429d190a6e614f5bbee1173c80a7cffcc568","https://huntr.dev/bounties/d947417c-5a12-407a-9a2f-fa696f65126f","https://github.com/advisories/GHSA-r95w-7cpx-h5mx"],"source_kind":"github","identifiers":["GHSA-r95w-7cpx-h5mx","CVE-2023-1542"],"repository_url":"https://github.com/answerdev/answer","blast_radius":0.0,"created_at":"2023-03-21T23:03:05.300Z","updated_at":"2026-04-05T20:09:03.552Z","epss_percentage":0.00309,"epss_percentile":0.53861,"api_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1yOTV3LTdjcHgtaDVteM4AAyMt","html_url":"https://advisories.ecosyste.ms/advisories/GSA_kwCzR0hTQS1yOTV3LTdjcHgtaDVteM4AAyMt","packages":[{"ecosystem":"go","package_name":"github.com/answerdev/answer","versions":[{"first_patched_version":"1.0.6","vulnerable_version_range":"\u003c 1.0.6"}],"purl":"pkg:go/github.com%2Fanswerdev%2Fanswer"}],"related_packages_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1yOTV3LTdjcHgtaDVteM4AAyMt/related_packages","related_advisories":[]},{"uuid":"GSA_kwCzR0hTQS03OWh4LWc0M3YteGZtcs4AAyMx","url":"https://github.com/advisories/GHSA-79hx-g43v-xfmr","title":"Answer vulnerable to Insufficient Session Expiration","description":"Insufficient Session Expiration in GitHub repository answerdev/answer prior to 1.0.6.","origin":"UNSPECIFIED","severity":"HIGH","published_at":"2023-03-21T06:30:16.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":8.8,"cvss_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","references":["https://nvd.nist.gov/vuln/detail/CVE-2023-1543","https://github.com/answerdev/answer/commit/cd742b75605c99776f32d271c0a60e0f468e181c","https://huntr.dev/bounties/f82388d6-dfc3-4fbc-bea6-eb40cf5b2683","https://github.com/advisories/GHSA-79hx-g43v-xfmr"],"source_kind":"github","identifiers":["GHSA-79hx-g43v-xfmr","CVE-2023-1543"],"repository_url":"https://github.com/answerdev/answer","blast_radius":0.0,"created_at":"2023-03-21T23:03:05.309Z","updated_at":"2026-04-14T17:08:46.302Z","epss_percentage":0.0034,"epss_percentile":0.56713,"api_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS03OWh4LWc0M3YteGZtcs4AAyMx","html_url":"https://advisories.ecosyste.ms/advisories/GSA_kwCzR0hTQS03OWh4LWc0M3YteGZtcs4AAyMx","packages":[{"ecosystem":"go","package_name":"github.com/answerdev/answer","versions":[{"first_patched_version":"1.0.6","vulnerable_version_range":"\u003c 1.0.6"}],"purl":"pkg:go/github.com%2Fanswerdev%2Fanswer"}],"related_packages_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS03OWh4LWc0M3YteGZtcs4AAyMx/related_packages","related_advisories":[]},{"uuid":"GSA_kwCzR0hTQS12eGhyLXAydnAtN2dmOM4AAx9y","url":"https://github.com/advisories/GHSA-vxhr-p2vp-7gf8","title":"Answer vulnerable to Cross-site Scripting","description":"Cross-site Scripting (XSS) - Reflected in GitHub repository answerdev/answer prior to 1.0.6.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2023-03-07T09:30:30.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":4.8,"cvss_vector":"CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N","references":["https://nvd.nist.gov/vuln/detail/CVE-2023-1239","https://github.com/answerdev/answer/commit/9870ed87fb24ed468aaf1e169c2d028e0f375106","https://huntr.dev/bounties/3a22c609-d2d8-4613-815d-58f5990b8bd8","https://github.com/advisories/GHSA-vxhr-p2vp-7gf8"],"source_kind":"github","identifiers":["GHSA-vxhr-p2vp-7gf8","CVE-2023-1239"],"repository_url":"https://github.com/answerdev/answer","blast_radius":0.0,"created_at":"2023-03-08T18:03:17.519Z","updated_at":"2026-04-05T20:09:04.910Z","epss_percentage":0.00299,"epss_percentile":0.52921,"api_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS12eGhyLXAydnAtN2dmOM4AAx9y","html_url":"https://advisories.ecosyste.ms/advisories/GSA_kwCzR0hTQS12eGhyLXAydnAtN2dmOM4AAx9y","packages":[{"ecosystem":"go","package_name":"github.com/answerdev/answer","versions":[{"first_patched_version":"1.0.6","vulnerable_version_range":"\u003c 1.0.6"}],"purl":"pkg:go/github.com%2Fanswerdev%2Fanswer"}],"related_packages_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS12eGhyLXAydnAtN2dmOM4AAx9y/related_packages","related_advisories":[]},{"uuid":"GSA_kwCzR0hTQS01NXZtLTN2cTMtNGpwY84AAx9x","url":"https://github.com/advisories/GHSA-55vm-3vq3-4jpc","title":"Answer vulnerable to Cross-site Scripting","description":"Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2023-03-07T09:30:30.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":5.4,"cvss_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N","references":["https://nvd.nist.gov/vuln/detail/CVE-2023-1240","https://github.com/answerdev/answer/commit/90bfa0dcc7b49482f1d1e31aee3ab073f3c13dd9","https://huntr.dev/bounties/a24f57a4-22e3-4a17-8227-6a410a11498a","https://github.com/advisories/GHSA-55vm-3vq3-4jpc"],"source_kind":"github","identifiers":["GHSA-55vm-3vq3-4jpc","CVE-2023-1240"],"repository_url":"https://github.com/answerdev/answer","blast_radius":0.0,"created_at":"2023-03-08T18:03:17.535Z","updated_at":"2026-04-05T20:09:04.910Z","epss_percentage":0.00337,"epss_percentile":0.56511,"api_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS01NXZtLTN2cTMtNGpwY84AAx9x","html_url":"https://advisories.ecosyste.ms/advisories/GSA_kwCzR0hTQS01NXZtLTN2cTMtNGpwY84AAx9x","packages":[{"ecosystem":"go","package_name":"github.com/answerdev/answer","versions":[{"first_patched_version":"1.0.6","vulnerable_version_range":"\u003c 1.0.6"}],"purl":"pkg:go/github.com%2Fanswerdev%2Fanswer"}],"related_packages_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS01NXZtLTN2cTMtNGpwY84AAx9x/related_packages","related_advisories":[]},{"uuid":"GSA_kwCzR0hTQS04amg4LTMzZjUtY2dmcM4AAx9v","url":"https://github.com/advisories/GHSA-8jh8-33f5-cgfp","title":"Answer vulnerable to Cross-site Scripting","description":"Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2023-03-07T09:30:30.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":4.8,"cvss_vector":"CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N","references":["https://nvd.nist.gov/vuln/detail/CVE-2023-1243","https://github.com/answerdev/answer/commit/9870ed87fb24ed468aaf1e169c2d028e0f375106","https://huntr.dev/bounties/1d62d35a-b096-4b76-a021-347c3f1c570c","https://github.com/advisories/GHSA-8jh8-33f5-cgfp"],"source_kind":"github","identifiers":["GHSA-8jh8-33f5-cgfp","CVE-2023-1243"],"repository_url":"https://github.com/answerdev/answer","blast_radius":0.0,"created_at":"2023-03-08T18:03:17.577Z","updated_at":"2026-04-05T20:09:04.911Z","epss_percentage":0.00299,"epss_percentile":0.52921,"api_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS04amg4LTMzZjUtY2dmcM4AAx9v","html_url":"https://advisories.ecosyste.ms/advisories/GSA_kwCzR0hTQS04amg4LTMzZjUtY2dmcM4AAx9v","packages":[{"ecosystem":"go","package_name":"github.com/answerdev/answer","versions":[{"first_patched_version":"1.0.6","vulnerable_version_range":"\u003c 1.0.6"}],"purl":"pkg:go/github.com%2Fanswerdev%2Fanswer"}],"related_packages_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS04amg4LTMzZjUtY2dmcM4AAx9v/related_packages","related_advisories":[]},{"uuid":"GSA_kwCzR0hTQS05djR2LTlmajUtcDk4Ms4AAx90","url":"https://github.com/advisories/GHSA-9v4v-9fj5-p982","title":"Answer vulnerable to Cross-site Scripting","description":"Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2023-03-07T09:30:30.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":5.4,"cvss_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N","references":["https://nvd.nist.gov/vuln/detail/CVE-2023-1237","https://github.com/answerdev/answer/commit/0566894a2c0e13cf07d877f41467e2e21529fee8","https://huntr.dev/bounties/cc2aa618-05da-495d-a5cd-51c40557d481","https://github.com/advisories/GHSA-9v4v-9fj5-p982"],"source_kind":"github","identifiers":["GHSA-9v4v-9fj5-p982","CVE-2023-1237"],"repository_url":"https://github.com/answerdev/answer","blast_radius":0.0,"created_at":"2023-03-08T18:03:17.500Z","updated_at":"2026-04-05T20:09:04.909Z","epss_percentage":0.00213,"epss_percentile":0.43652,"api_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS05djR2LTlmajUtcDk4Ms4AAx90","html_url":"https://advisories.ecosyste.ms/advisories/GSA_kwCzR0hTQS05djR2LTlmajUtcDk4Ms4AAx90","packages":[{"ecosystem":"go","package_name":"github.com/answerdev/answer","versions":[{"first_patched_version":"1.0.6","vulnerable_version_range":"\u003c 1.0.6"}],"purl":"pkg:go/github.com%2Fanswerdev%2Fanswer"}],"related_packages_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS05djR2LTlmajUtcDk4Ms4AAx90/related_packages","related_advisories":[]},{"uuid":"GSA_kwCzR0hTQS1mZjI3LWhybXItZ2dwas4AAx9w","url":"https://github.com/advisories/GHSA-ff27-hrmr-ggpj","title":"Answer vulnerable to Cross-site Scripting","description":"Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2023-03-07T09:30:30.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":5.4,"cvss_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N","references":["https://nvd.nist.gov/vuln/detail/CVE-2023-1241","https://github.com/answerdev/answer/commit/90bfa0dcc7b49482f1d1e31aee3ab073f3c13dd9","https://huntr.dev/bounties/e0e9b1bb-3025-4b9f-acb4-16a5da28aa3c","https://github.com/advisories/GHSA-ff27-hrmr-ggpj"],"source_kind":"github","identifiers":["GHSA-ff27-hrmr-ggpj","CVE-2023-1241"],"repository_url":"https://github.com/answerdev/answer","blast_radius":0.0,"created_at":"2023-03-08T18:03:17.552Z","updated_at":"2026-04-14T17:08:49.289Z","epss_percentage":0.00324,"epss_percentile":0.55488,"api_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1mZjI3LWhybXItZ2dwas4AAx9w","html_url":"https://advisories.ecosyste.ms/advisories/GSA_kwCzR0hTQS1mZjI3LWhybXItZ2dwas4AAx9w","packages":[{"ecosystem":"go","package_name":"github.com/answerdev/answer","versions":[{"first_patched_version":"1.0.6","vulnerable_version_range":"\u003c 1.0.6"}],"purl":"pkg:go/github.com%2Fanswerdev%2Fanswer"}],"related_packages_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1mZjI3LWhybXItZ2dwas4AAx9w/related_packages","related_advisories":[]},{"uuid":"GSA_kwCzR0hTQS1xcndtLXhxZnItNHZods4AAx9u","url":"https://github.com/advisories/GHSA-qrwm-xqfr-4vhv","title":"Answer vulnerable to Cross-site Scripting","description":"Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2023-03-07T09:30:30.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":5.4,"cvss_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N","references":["https://nvd.nist.gov/vuln/detail/CVE-2023-1242","https://github.com/answerdev/answer/commit/90bfa0dcc7b49482f1d1e31aee3ab073f3c13dd9","https://huntr.dev/bounties/71c24c5e-ceb2-45cf-bda7-fa195d37e289","https://github.com/advisories/GHSA-qrwm-xqfr-4vhv"],"source_kind":"github","identifiers":["GHSA-qrwm-xqfr-4vhv","CVE-2023-1242"],"repository_url":"https://github.com/answerdev/answer","blast_radius":0.0,"created_at":"2023-03-08T18:03:17.561Z","updated_at":"2026-04-05T20:09:04.911Z","epss_percentage":0.00337,"epss_percentile":0.56511,"api_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1xcndtLXhxZnItNHZods4AAx9u","html_url":"https://advisories.ecosyste.ms/advisories/GSA_kwCzR0hTQS1xcndtLXhxZnItNHZods4AAx9u","packages":[{"ecosystem":"go","package_name":"github.com/answerdev/answer","versions":[{"first_patched_version":"1.0.6","vulnerable_version_range":"\u003c 1.0.6"}],"purl":"pkg:go/github.com%2Fanswerdev%2Fanswer"}],"related_packages_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1xcndtLXhxZnItNHZods4AAx9u/related_packages","related_advisories":[]},{"uuid":"GSA_kwCzR0hTQS01dzc4LXY2ODgtY3g5cc4AAx9z","url":"https://github.com/advisories/GHSA-5w78-v688-cx9q","title":"Answer vulnerable to Cross-site Scripting","description":"Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2023-03-07T09:30:30.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":5.4,"cvss_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N","references":["https://nvd.nist.gov/vuln/detail/CVE-2023-1238","https://github.com/answerdev/answer/commit/0566894a2c0e13cf07d877f41467e2e21529fee8","https://huntr.dev/bounties/52f97267-1439-4bb6-862b-89b8fafce50d","https://github.com/advisories/GHSA-5w78-v688-cx9q"],"source_kind":"github","identifiers":["GHSA-5w78-v688-cx9q","CVE-2023-1238"],"repository_url":"https://github.com/answerdev/answer","blast_radius":0.0,"created_at":"2023-03-08T18:03:17.509Z","updated_at":"2026-04-05T20:09:04.909Z","epss_percentage":0.0025,"epss_percentile":0.48078,"api_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS01dzc4LXY2ODgtY3g5cc4AAx9z","html_url":"https://advisories.ecosyste.ms/advisories/GSA_kwCzR0hTQS01dzc4LXY2ODgtY3g5cc4AAx9z","packages":[{"ecosystem":"go","package_name":"github.com/answerdev/answer","versions":[{"first_patched_version":"1.0.6","vulnerable_version_range":"\u003c 1.0.6"}],"purl":"pkg:go/github.com%2Fanswerdev%2Fanswer"}],"related_packages_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS01dzc4LXY2ODgtY3g5cc4AAx9z/related_packages","related_advisories":[]},{"uuid":"GSA_kwCzR0hTQS02YzMyLTN4NDYtbTlyaM4AAx9s","url":"https://github.com/advisories/GHSA-6c32-3x46-m9rh","title":"Answer vulnerable to Cross-site Scripting","description":"Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2023-03-07T09:30:29.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":5.4,"cvss_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N","references":["https://nvd.nist.gov/vuln/detail/CVE-2023-1245","https://github.com/answerdev/answer/commit/71a4cdac81112975969129d308899edd155c0e80","https://huntr.dev/bounties/f8011bb3-8212-4937-aa58-79f4b73be004","https://github.com/advisories/GHSA-6c32-3x46-m9rh"],"source_kind":"github","identifiers":["GHSA-6c32-3x46-m9rh","CVE-2023-1245"],"repository_url":"https://github.com/answerdev/answer","blast_radius":0.0,"created_at":"2023-03-08T01:03:08.034Z","updated_at":"2026-04-05T20:09:06.367Z","epss_percentage":0.0023,"epss_percentile":0.45547,"api_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS02YzMyLTN4NDYtbTlyaM4AAx9s","html_url":"https://advisories.ecosyste.ms/advisories/GSA_kwCzR0hTQS02YzMyLTN4NDYtbTlyaM4AAx9s","packages":[{"ecosystem":"go","package_name":"github.com/answerdev/answer","versions":[{"first_patched_version":"1.0.6","vulnerable_version_range":"\u003c 1.0.6"}],"purl":"pkg:go/github.com%2Fanswerdev%2Fanswer"}],"related_packages_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS02YzMyLTN4NDYtbTlyaM4AAx9s/related_packages","related_advisories":[]},{"uuid":"GSA_kwCzR0hTQS1oODV2LWN4NW0tNzh3as4AAx9t","url":"https://github.com/advisories/GHSA-h85v-cx5m-78wj","title":"Answer vulnerable to Cross-site Scripting","description":"Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2023-03-07T09:30:29.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":5.4,"cvss_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N","references":["https://nvd.nist.gov/vuln/detail/CVE-2023-1244","https://github.com/answerdev/answer/commit/9870ed87fb24ed468aaf1e169c2d028e0f375106","https://huntr.dev/bounties/bcab9555-8a35-42b2-a7de-0a79fd710b52","https://github.com/advisories/GHSA-h85v-cx5m-78wj"],"source_kind":"github","identifiers":["GHSA-h85v-cx5m-78wj","CVE-2023-1244"],"repository_url":"https://github.com/answerdev/answer","blast_radius":0.0,"created_at":"2023-03-08T18:03:17.587Z","updated_at":"2026-04-14T17:08:49.290Z","epss_percentage":0.00261,"epss_percentile":0.49485,"api_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1oODV2LWN4NW0tNzh3as4AAx9t","html_url":"https://advisories.ecosyste.ms/advisories/GSA_kwCzR0hTQS1oODV2LWN4NW0tNzh3as4AAx9t","packages":[{"ecosystem":"go","package_name":"github.com/answerdev/answer","versions":[{"first_patched_version":"1.0.6","vulnerable_version_range":"\u003c 1.0.6"}],"purl":"pkg:go/github.com%2Fanswerdev%2Fanswer"}],"related_packages_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1oODV2LWN4NW0tNzh3as4AAx9t/related_packages","related_advisories":[]},{"uuid":"GSA_kwCzR0hTQS02Y3ZmLW01OHEtaDl3Zs4AAxwk","url":"https://github.com/advisories/GHSA-6cvf-m58q-h9wf","title":"Answer vulnerable to Cross-site Scripting","description":"Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.5.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2023-02-21T15:30:23.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":5.4,"cvss_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N","references":["https://nvd.nist.gov/vuln/detail/CVE-2023-0934","https://github.com/answerdev/answer/commit/edc06942d51fa8e56a134c5c7e5c8826d9260da0","https://huntr.dev/bounties/cd213098-5bab-487f-82c7-13698ad43b51","https://github.com/advisories/GHSA-6cvf-m58q-h9wf"],"source_kind":"github","identifiers":["GHSA-6cvf-m58q-h9wf","CVE-2023-0934"],"repository_url":"https://github.com/answerdev/answer","blast_radius":0.0,"created_at":"2023-02-22T01:02:59.738Z","updated_at":"2026-04-05T20:09:08.787Z","epss_percentage":0.00187,"epss_percentile":0.40513,"api_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS02Y3ZmLW01OHEtaDl3Zs4AAxwk","html_url":"https://advisories.ecosyste.ms/advisories/GSA_kwCzR0hTQS02Y3ZmLW01OHEtaDl3Zs4AAxwk","packages":[{"ecosystem":"go","package_name":"github.com/answerdev/answer","versions":[{"first_patched_version":"1.0.5","vulnerable_version_range":"\u003c 1.0.5"}],"purl":"pkg:go/github.com%2Fanswerdev%2Fanswer"}],"related_packages_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS02Y3ZmLW01OHEtaDl3Zs4AAxwk/related_packages","related_advisories":[]},{"uuid":"GSA_kwCzR0hTQS1oam1yLXhtMjUtMzZtaM4AAxfG","url":"https://github.com/advisories/GHSA-hjmr-xm25-36mh","title":"Answer subject to Cross-site Scripting vulnerability","description":"Cross-site Scripting (XSS) - Generic in GitHub repository answerdev/answer prior to 1.0.4.","origin":"UNSPECIFIED","severity":"CRITICAL","published_at":"2023-02-08T09:30:24.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":9.1,"cvss_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","references":["https://nvd.nist.gov/vuln/detail/CVE-2023-0743","https://github.com/answerdev/answer/commit/860b1a3bd8cfaa8827e6e6f50ab1d98fa4c2c816","https://huntr.dev/bounties/366cf8bb-19f6-4388-b089-d0a260efd863","https://github.com/advisories/GHSA-hjmr-xm25-36mh"],"source_kind":"github","identifiers":["GHSA-hjmr-xm25-36mh","CVE-2023-0743"],"repository_url":"https://github.com/answerdev/answer","blast_radius":0.0,"created_at":"2023-02-08T23:03:18.185Z","updated_at":"2026-04-05T20:09:11.218Z","epss_percentage":0.00286,"epss_percentile":0.51572,"api_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1oam1yLXhtMjUtMzZtaM4AAxfG","html_url":"https://advisories.ecosyste.ms/advisories/GSA_kwCzR0hTQS1oam1yLXhtMjUtMzZtaM4AAxfG","packages":[{"ecosystem":"go","package_name":"github.com/answerdev/answer","versions":[{"first_patched_version":"1.0.4","vulnerable_version_range":"\u003c 1.0.4"}],"purl":"pkg:go/github.com%2Fanswerdev%2Fanswer"}],"related_packages_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1oam1yLXhtMjUtMzZtaM4AAxfG/related_packages","related_advisories":[]},{"uuid":"GSA_kwCzR0hTQS1wN3dqLWM4NWYteHE5aM4AAxfD","url":"https://github.com/advisories/GHSA-p7wj-c85f-xq9h","title":"Answer has Cross-site Scripting vulnerability","description":"Cross-site Scripting (XSS) - DOM in GitHub repository answerdev/answer prior to 1.0.4.","origin":"UNSPECIFIED","severity":"CRITICAL","published_at":"2023-02-08T09:30:24.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":9.1,"cvss_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","references":["https://nvd.nist.gov/vuln/detail/CVE-2023-0741","https://github.com/answerdev/answer/commit/c3001de52af91f09c96e701facbce0b9fa0c98ad","https://huntr.dev/bounties/78233bfa-871d-45e1-815f-dee73e397809","https://github.com/advisories/GHSA-p7wj-c85f-xq9h"],"source_kind":"github","identifiers":["GHSA-p7wj-c85f-xq9h","CVE-2023-0741"],"repository_url":"https://github.com/answerdev/answer","blast_radius":0.0,"created_at":"2023-02-08T23:03:18.223Z","updated_at":"2026-04-14T17:08:54.613Z","epss_percentage":0.00448,"epss_percentile":0.63508,"api_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1wN3dqLWM4NWYteHE5aM4AAxfD","html_url":"https://advisories.ecosyste.ms/advisories/GSA_kwCzR0hTQS1wN3dqLWM4NWYteHE5aM4AAxfD","packages":[{"ecosystem":"go","package_name":"github.com/answerdev/answer","versions":[{"first_patched_version":"1.0.4","vulnerable_version_range":"\u003c 1.0.4"}],"purl":"pkg:go/github.com%2Fanswerdev%2Fanswer"}],"related_packages_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1wN3dqLWM4NWYteHE5aM4AAxfD/related_packages","related_advisories":[]},{"uuid":"GSA_kwCzR0hTQS1ybXc4LTc4MjMtd3A3Zs4AAxfE","url":"https://github.com/advisories/GHSA-rmw8-7823-wp7f","title":"Answer contains Cross-site Scripting vulnerability","description":"Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.4.","origin":"UNSPECIFIED","severity":"CRITICAL","published_at":"2023-02-08T09:30:24.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":9.1,"cvss_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","references":["https://nvd.nist.gov/vuln/detail/CVE-2023-0742","https://github.com/answerdev/answer/commit/c3001de52af91f09c96e701facbce0b9fa0c98ad","https://huntr.dev/bounties/d73a2c03-7035-453b-9c04-c733ace65544","https://github.com/advisories/GHSA-rmw8-7823-wp7f"],"source_kind":"github","identifiers":["GHSA-rmw8-7823-wp7f","CVE-2023-0742"],"repository_url":"https://github.com/answerdev/answer","blast_radius":0.0,"created_at":"2023-02-08T23:03:18.232Z","updated_at":"2026-04-14T17:08:54.613Z","epss_percentage":0.00448,"epss_percentile":0.63508,"api_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1ybXc4LTc4MjMtd3A3Zs4AAxfE","html_url":"https://advisories.ecosyste.ms/advisories/GSA_kwCzR0hTQS1ybXc4LTc4MjMtd3A3Zs4AAxfE","packages":[{"ecosystem":"go","package_name":"github.com/answerdev/answer","versions":[{"first_patched_version":"1.0.4","vulnerable_version_range":"\u003c 1.0.4"}],"purl":"pkg:go/github.com%2Fanswerdev%2Fanswer"}],"related_packages_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1ybXc4LTc4MjMtd3A3Zs4AAxfE/related_packages","related_advisories":[]},{"uuid":"GSA_kwCzR0hTQS02NXB4LTRjcGYtNjk3cs4AAxfH","url":"https://github.com/advisories/GHSA-65px-4cpf-697r","title":"Cross-site scripting vulnerability found in answerdev/answer","description":"Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.4.","origin":"UNSPECIFIED","severity":"CRITICAL","published_at":"2023-02-08T09:30:24.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":9.1,"cvss_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","references":["https://nvd.nist.gov/vuln/detail/CVE-2023-0740","https://github.com/answerdev/answer/commit/c3001de52af91f09c96e701facbce0b9fa0c98ad","https://huntr.dev/bounties/802ee76d-fe01-482b-a9a4-34699a7c9110","https://github.com/advisories/GHSA-65px-4cpf-697r"],"source_kind":"github","identifiers":["GHSA-65px-4cpf-697r","CVE-2023-0740"],"repository_url":"https://github.com/answerdev/answer","blast_radius":0.0,"created_at":"2023-02-08T19:03:16.124Z","updated_at":"2026-04-14T17:08:55.842Z","epss_percentage":0.00448,"epss_percentile":0.63508,"api_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS02NXB4LTRjcGYtNjk3cs4AAxfH","html_url":"https://advisories.ecosyste.ms/advisories/GSA_kwCzR0hTQS02NXB4LTRjcGYtNjk3cs4AAxfH","packages":[{"ecosystem":"go","package_name":"github.com/answerdev/answer","versions":[{"first_patched_version":"1.0.4","vulnerable_version_range":"\u003c 1.0.4"}],"purl":"pkg:go/github.com%2Fanswerdev%2Fanswer"}],"related_packages_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS02NXB4LTRjcGYtNjk3cs4AAxfH/related_packages","related_advisories":[]},{"uuid":"GSA_kwCzR0hTQS00Y3doLTh3NGctanh4aM4AAxfF","url":"https://github.com/advisories/GHSA-4cwh-8w4g-jxxh","title":"Answer contains Improper Access Control vulnerability","description":"Improper Access Control in GitHub repository answerdev/answer prior to 1.0.4.","origin":"UNSPECIFIED","severity":"CRITICAL","published_at":"2023-02-08T09:30:24.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":9.8,"cvss_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","references":["https://nvd.nist.gov/vuln/detail/CVE-2023-0744","https://github.com/answerdev/answer/commit/c1fa2b13f6b547b96da60b23350bbe2b29de542d","https://huntr.dev/bounties/35a0e12f-1d54-4fc0-8779-6a4949b7c434","http://packetstormsecurity.com/files/171733/Answerdev-1.0.3-Account-Takeover.html","https://github.com/advisories/GHSA-4cwh-8w4g-jxxh"],"source_kind":"github","identifiers":["GHSA-4cwh-8w4g-jxxh","CVE-2023-0744"],"repository_url":"https://github.com/answerdev/answer","blast_radius":0.0,"created_at":"2023-02-08T23:03:18.241Z","updated_at":"2026-04-14T17:08:54.613Z","epss_percentage":0.08519,"epss_percentile":0.92374,"api_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS00Y3doLTh3NGctanh4aM4AAxfF","html_url":"https://advisories.ecosyste.ms/advisories/GSA_kwCzR0hTQS00Y3doLTh3NGctanh4aM4AAxfF","packages":[{"ecosystem":"go","package_name":"github.com/answerdev/answer","versions":[{"first_patched_version":"1.0.4","vulnerable_version_range":"\u003c 1.0.4"}],"purl":"pkg:go/github.com%2Fanswerdev%2Fanswer"}],"related_packages_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS00Y3doLTh3NGctanh4aM4AAxfF/related_packages","related_advisories":[]},{"uuid":"GSA_kwCzR0hTQS1xeDM0LTQ3ZmMtdnY3Oc4AAxfC","url":"https://github.com/advisories/GHSA-qx34-47fc-vv79","title":"Answer vulnerable to Race Condition","description":"Race Condition in Switch in GitHub repository answerdev/answer prior to 1.0.4.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2023-02-08T06:30:33.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":6.8,"cvss_vector":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H","references":["https://nvd.nist.gov/vuln/detail/CVE-2023-0739","https://github.com/answerdev/answer/commit/1ee34b884b905d14d4db457563176b77a974b992","https://huntr.dev/bounties/93d7fac9-50be-4624-9096-45b89fbfd4ae","https://github.com/advisories/GHSA-qx34-47fc-vv79"],"source_kind":"github","identifiers":["GHSA-qx34-47fc-vv79","CVE-2023-0739"],"repository_url":"https://github.com/answerdev/answer","blast_radius":0.0,"created_at":"2023-02-08T23:03:18.251Z","updated_at":"2026-04-05T20:09:11.219Z","epss_percentage":0.00521,"epss_percentile":0.6651,"api_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1xeDM0LTQ3ZmMtdnY3Oc4AAxfC","html_url":"https://advisories.ecosyste.ms/advisories/GSA_kwCzR0hTQS1xeDM0LTQ3ZmMtdnY3Oc4AAxfC","packages":[{"ecosystem":"go","package_name":"github.com/answerdev/answer","versions":[{"first_patched_version":"1.0.4","vulnerable_version_range":"\u003c 1.0.4"}],"purl":"pkg:go/github.com%2Fanswerdev%2Fanswer"}],"related_packages_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1xeDM0LTQ3ZmMtdnY3Oc4AAxfC/related_packages","related_advisories":[]}],"docker_usage_url":"https://docker.ecosyste.ms/usage/go/github.com/answerdev/answer","docker_dependents_count":1,"docker_downloads_count":16,"usage_url":"https://repos.ecosyste.ms/usage/go/github.com/answerdev/answer","dependent_repositories_url":"https://repos.ecosyste.ms/api/v1/usage/go/github.com/answerdev/answer/dependencies","status":null,"funding_links":[],"critical":null,"issue_metadata":{"last_synced_at":"2023-08-10T21:55:32.786Z","issues_count":95,"pull_requests_count":94,"avg_time_to_close_issue":3643849.6,"avg_time_to_close_pull_request":480135.6808510638,"issues_closed_count":55,"pull_requests_closed_count":94,"pull_request_authors_count":16,"issue_authors_count":51,"avg_comments_per_issue":2.8842105263157896,"avg_comments_per_pull_request":0.22340425531914893,"merged_pull_requests_count":79,"bot_issues_count":0,"bot_pull_requests_count":0,"past_year_issues_count":95,"past_year_pull_requests_count":94,"past_year_avg_time_to_close_issue":3643849.6,"past_year_avg_time_to_close_pull_request":480135.6808510638,"past_year_issues_closed_count":55,"past_year_pull_requests_closed_count":94,"past_year_pull_request_authors_count":16,"past_year_issue_authors_count":51,"past_year_avg_comments_per_issue":2.8842105263157896,"past_year_avg_comments_per_pull_request":0.22340425531914893,"past_year_bot_issues_count":0,"past_year_bot_pull_requests_count":0,"past_year_merged_pull_requests_count":79},"versions_url":"https://packages.ecosyste.ms/api/v1/registries/proxy.golang.org/packages/github.com%2Fanswerdev%2Fanswer/versions","version_numbers_url":"https://packages.ecosyste.ms/api/v1/registries/proxy.golang.org/packages/github.com%2Fanswerdev%2Fanswer/version_numbers","dependent_packages_url":"https://packages.ecosyste.ms/api/v1/registries/proxy.golang.org/packages/github.com%2Fanswerdev%2Fanswer/dependent_packages","related_packages_url":"https://packages.ecosyste.ms/api/v1/registries/proxy.golang.org/packages/github.com%2Fanswerdev%2Fanswer/related_packages","codemeta_url":"https://packages.ecosyste.ms/api/v1/registries/proxy.golang.org/packages/github.com%2Fanswerdev%2Fanswer/codemeta","maintainers":[]}