cvelist/2018/1000xxx/CVE-2018-1000023.json

{"data_version": "4.0","references": {"reference_data": [{"url": "https://github.com/bitpay/insight-api/issues/542"}]},"description": {"description_data": [{"lang": "eng","value": "Bitpay/insight-api Insight-api version 5.0.0 and earlier contains a CWE-20: input validation vulnerability in transaction broadcast endpoint that can result in Full Path Disclosure. This attack appear to be exploitable via Web request."}]},"data_type": "CVE","affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"version": {"version_data": [{"version_value": "5.0.0 and earlier"}]},"product_name": "Insight-api"}]},"vendor_name": "Bitpay/insight-api"}]}},"CVE_data_meta": {"DATE_ASSIGNED": "1/11/2018 18:25:05","ID": "CVE-2018-1000023","ASSIGNER": "kurt@seifried.org","REQUESTER": "shayanqwerty@gmail.com"},"data_format": "MITRE","problemtype": {"problemtype_data": [{"description": [{"lang": "eng","value": "CWE-20: input validation"}]}]}}