User Interface

Search by packages

The search by packages is a very powerful feature of VulnerableCode. It allows you to search for packages by the package URL or purl prefix fragment such as pkg:pypi or by package name.

The search by packages is available at the following URL:

How to search by packages:

  1. Go to the URL: https://public.vulnerablecode.io/packages/search

  2. Enter the package URL or purl prefix fragment such as pkg:pypi or by package name in the search box.

  3. Click on the search button.

The search results will be displayed in the table below the search box.

_images/pkg_search.png

Click on the package URL to view the package details.

_images/pkg_details.png

Search by vulnerabilities

The search by vulnerabilities is a very powerful feature of VulnerableCode. It allows you to search for vulnerabilities by the VCID itself. It also allows you to search for vulnerabilities by the CVE, GHSA, CPEs etc or by the fragment of these identifiers like CVE-2021.

The search by vulnerabilities is available at the following URL:

How to search by vulnerabilities:

  1. Go to the URL: https://public.vulnerablecode.io/vulnerabilities/search

  2. Enter the VCID, CVE, GHSA, CPEs etc. in the search box.

  3. Click on the search button.

The search results will be displayed in the table below the search box.

_images/vuln_search.png

Click on the VCID to view the vulnerability details.

_images/vuln_details.png

Affected packages tab shows the list of packages affected by the vulnerability.

_images/vuln_affected_packages.png

Fixed by packages tab shows the list of packages that fix the vulnerability.

_images/vuln_fixed_packages.png