基础信息
项目名称:biosustain/potion
项目徽章:
仓库地址:https://github.com/pterodactyl/panel
检测报告地址:https://www.murphysec.com/console/report/1731235793693270016/1731235793756184576
此报告由Murphysec提供
漏洞列表
| 漏洞名称 | 漏洞类型 | MPS编号 | CVE编号 | 漏洞等级 |
|---|---|---|---|---|
| peewee 存在密码学问题漏洞 | 密码学问题 | MPS-2022-15026 | 低危 |
缺陷组件
| 组件名称 | 版本 | 最小修复版本 | 依赖关系 | 修复建议 |
|---|---|---|---|---|
| peewee | 2.7.3 | 2.10.0 | 间接依赖 | 可选修复 |
许可证风险
| 许可证类型 | 相关组件 | 许可证风险 |
|---|---|---|
| MIT | 4 | 低 |
| BSD-3-Clause | 1 | 低 |
| 自定义许可证 | 2 | 低 |
SBOM清单
| 组件名称 | 组件版本 | 是否直接依赖 | 仓库 |
|---|---|---|---|
| PotionException | 间接依赖 | pip | |
| ItemNotFound | 间接依赖 | pip | |
| Integer | 间接依赖 | pip | |
| flask-mongoengine | 0.7.4 | 间接依赖 | pip |
| sqlalchemy | 间接依赖 | pip | |
| Boolean | 间接依赖 | pip | |
| bson | 间接依赖 | pip | |
| FILTER_NAMES | 间接依赖 | pip | |
| Route | 间接依赖 | pip | |
| FloatField | 间接依赖 | pip | |
| backref | 间接依赖 | pip | |
| Blueprint | 间接依赖 | pip | |
| request | 间接依赖 | pip | |
| DuplicateKey | 间接依赖 | pip | |
| IntField | 间接依赖 | pip | |
| peewee | 2.7.3 | 间接依赖 | pip |
| CharField | 间接依赖 | pip | |
| Flask | 0.10 | 间接依赖 | pip |
| joinedload | 间接依赖 | pip | |
| flask | 间接依赖 | pip | |
| werkzeug | 间接依赖 | pip | |
| get_value | 间接依赖 | pip | |
| ValidationError | 间接依赖 | pip | |
| blinker | 1.3 | 间接依赖 | pip |
| flask_potion | 间接依赖 | pip | |
| fields | 间接依赖 | pip | |
| RoleNeed | 间接依赖 | pip | |
| Permission | 间接依赖 | pip | |
| playhouse | 间接依赖 | pip | |
| Flask-Principal | 0.4.0 | 间接依赖 | pip |
| String | 间接依赖 | pip | |
| Api | 间接依赖 | pip | |
| Flask-SQLAlchemy | 2.0 | 间接依赖 | pip |
| FILTERS_BY_TYPE | 间接依赖 | pip | |
| StringField | 间接依赖 | pip | |
| ToOne | 间接依赖 | pip | |
| ItemRoute | 间接依赖 | pip | |
| aniso8601 | 0.84 | 间接依赖 | pip |
| current_app | 间接依赖 | pip | |
| route_from | 间接依赖 | pip | |
| flask_mongoengine | 间接依赖 | pip | |
| IntegerField | 间接依赖 | pip | |
| six | 1.8.0 | 间接依赖 | pip |
| jsonschema | 2.4.0 | 间接依赖 | pip |