https
GET
api.github.com
None
/advisories/GHSA-cx3j-qqxj-9597
{'Authorization': 'Basic login_and_password_removed', 'User-Agent': 'PyGithub/Python'}
None
200
[('Server', 'GitHub.com'), ('Date', 'Fri, 11 Aug 2023 20:52:33 GMT'), ('Content-Type', 'application/json; charset=utf-8'), ('Transfer-Encoding', 'chunked'), ('Cache-Control', 'private, max-age=60, s-maxage=60'), ('Vary', 'Accept, Authorization, Cookie, X-GitHub-OTP, Accept-Encoding, Accept, X-Requested-With'), ('ETag', 'W/"e32239d940bc2b370ba81f10e8e3002739d5132adea1caa84148b98475fe7d4e"'), ('Last-Modified', 'Fri, 11 Aug 2023 18:57:54 GMT'), ('X-OAuth-Scopes', 'gist, read:org, repo'), ('X-Accepted-OAuth-Scopes', ''), ('github-authentication-token-expiration', '2023-08-25 20:47:49 UTC'), ('X-GitHub-Media-Type', 'github.v3; format=json'), ('x-github-api-version-selected', '2022-11-28'), ('X-RateLimit-Limit', '5000'), ('X-RateLimit-Remaining', '4993'), ('X-RateLimit-Reset', '1691789072'), ('X-RateLimit-Used', '7'), ('X-RateLimit-Resource', 'core'), ('Access-Control-Expose-Headers', 'ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset'), ('Access-Control-Allow-Origin', '*'), ('Strict-Transport-Security', 'max-age=31536000; includeSubdomains; preload'), ('X-Frame-Options', 'deny'), ('X-Content-Type-Options', 'nosniff'), ('X-XSS-Protection', '0'), ('Referrer-Policy', 'origin-when-cross-origin, strict-origin-when-cross-origin'), ('Content-Security-Policy', "default-src 'none'"), ('Content-Encoding', 'gzip'), ('X-GitHub-Request-Id', '86FA:9C0A:1F6A7B4:4032C2B:64D69F91')]
{"ghsa_id":"GHSA-cx3j-qqxj-9597","cve_id":"CVE-2023-3481","url":"https://api.github.com/advisories/GHSA-cx3j-qqxj-9597","html_url":"https://github.com/advisories/GHSA-cx3j-qqxj-9597","summary":"Critters Cross-site Scripting Vulnerability","description":"### Impact\nCritters version 0.0.17-0.0.19 have an issue when parsing...","type":"reviewed","severity":"high","repository_advisory_url":"https://api.github.com/repos/GoogleChromeLabs/critters/security-advisories/GHSA-cx3j-qqxj-9597","source_code_location":"https://github.com/GoogleChromeLabs/critters","identifiers":[{"value":"GHSA-cx3j-qqxj-9597","type":"GHSA"},{"value":"CVE-2023-3481","type":"CVE"}],"references":["https://github.com/GoogleChromeLabs/critters/security/advisories/GHSA-cx3j-qqxj-9597","https://github.com/GoogleChromeLabs/critters/pull/133","https://github.com/GoogleChromeLabs/critters/commit/7757902c9e0b3285d516359b3cb602cd9d50d80e","https://github.com/advisories/GHSA-cx3j-qqxj-9597"],"published_at":"2023-08-11T18:57:53Z","updated_at":"2023-08-11T18:57:54Z","github_reviewed_at":"2023-08-11T18:57:53Z","nvd_published_at":null,"withdrawn_at":null,"vulnerabilities":[{"package":{"ecosystem":"npm","name":"critters"},"vulnerable_version_range":">= 0.0.17, <= 0.0.19","first_patched_version":"0.0.20","vulnerable_functions":[]}],"cvss":{"vector_string":null,"score":null},"cwes":[{"cwe_id":"CWE-80","name":"Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)"},{"cwe_id":"CWE-116","name":"Improper Encoding or Escaping of Output"}],"credits":[]}