Download the PHP package security-database/cvss without Composer
On this page you can find all versions of the php package security-database/cvss. It is possible to download/install these versions without Composer. Possible dependencies are resolved automatically.
Download security-database/cvss
More information about security-database/cvss
Files in security-database/cvss
Package cvss
Short Description Common Vulnerability Scoring System Version 3.1
License Apache-2.0
Homepage https://github.com/security-database/cvssv3
FAQ
Example:
In general, it is recommended to use always a project to download your libraries. In an application normally there is more than one library needed.
- Some hosting areas are not accessible by a terminal or SSH. Then it is not possible to use Composer.
- To use Composer is sometimes complicated. Especially for beginners.
- Composer needs much resources. Sometimes they are not available on a simple webspace.
- If you are using private repositories you don't need to share your credentials. You can set up everything on our site and then you provide a simple download link to your team member.
- Simplify your Composer build process. Use our own command line tool to download the vendor folder as binary. This makes your build process faster and you don't need to expose your credentials for private repositories.
Informations about the package cvss
PHP Class for CVSS v3.0 / v3.1 Calculator
Version
dev-master
Identical to 2.2 actually
2.2
- Correction on MPR / PR calculation (could bewrong in some case)
- Added a test 8 to check
- Added optional and modification to X if not set (for better calculation)
- Correction of checkModified()
2.1.1
- Travis and Composer update : php 5.6 -> 7.3 phpunit
2.1.0
- CVSS 3.1 Upgrade
- Backward compatible with 3.0 -> accept 3.0 as input, output 3.1 vector
- Documentation upgrade to 3.1
- Our Cvss3::roundUp(), major upgrade in 3.1 from 3.0 seem to work fine (actually used in 3.0)
- Upgrade tests case to 3.1 and 3.0 vector in input give 3.1 vector in output
- Removed @version in Cvssv3.php
2.0.3
- EnvScore calcultation fix with MPR and Scope when MS is not set (again)
- Cleaner code push by @faynwol
- Add some UnitTest on vectors vs CVSSv3 website
2.0.2
- EnvScore calcultation fix with MPR and Scope when MS is not set
- EnvScore Formula, with now 2 RoundUp instead of One
- Add some UnitTest on vectors vs CVSSv3 website
2.0.1
- EnvScore calcultation fix when envModifiedImpactSubScore <= 0
- EnvScore Formula set to 0 in that case
- Change some props to static
- Change Clean method to handle static properties
2.0
- Change public vars to private vars
- Add getter to all private vars
- Add setter to locale vars
- Add locale validator in __constructor and setter
- Change phpUnit test case to reflect getter and setter
- Update documentation
- Update some DocBlock
-
Update to 2.0 since getters and setters are not backward compatible
- Todo more and more phpUnit test case ...
1.3.2
- Modify DocBlock with \Exception
- Add a Clean() function to be able to clean Object before register another one
- Add public vector_part (Base, Temp and Env vector part)
- Modify private to public base, env and tmp
- Change private to public some vars ($this->base, $this->env, $this->tmp)
- Fix \Exception()
- Add Code on some Exception (__construct && register && explodeVector)
- Change constructVector() to construct only mandatory vector (optional and modified are not put on vector if value is 'X' == No set)
- Fix check constant on language
- Fix modified metrics defaulting
- Add a constructor that load language files
- Add a reverse vector checker
1.3.1
- Fix envImpactSubScoreMultiplier
- Add Scores priority
1.3.0
- Fix - Errors on calculation, specific on Modified Scope
- Fix - Modified scores -> weight (float)
- Rework - Modified scores with normalized names - easy to read the code now
- Added - Multi language Label
Common Vulnerability Scoring System Version 3.1
Common Vulnerability Scoring System (CVSS) is a free and open industry standard for assessing the severity of computer system security vulnerabilities. It is under the custodianship of NIST. It attempts to establish a measure of how much concern a vulnerability warrants, compared to other vulnerabilities, so efforts can be prioritized. The scores are based on a series of measurements (called metrics) based on expert assessment. The scores range from 0 to 10. Vulnerabilities with a base score in the range 7.0-10.0 are High, those in the range 4.0-6.9 as Medium, and 0-3.9 as Low. Class try to follow PSR2 standard except for some 120chars on formula.
License
This piece of software is under Apache License 2.0
PHP Class
Initialization
Could be composer:
or traditional include class into your project, and include it.
After that, create a new vector.
Usage
You can now get some informations :
Get weight of every piece of the vector (array());
Get scores used in scores (array());
Get scores with label (en_US) used in scoresLabel (array());
Get sub scores used in sub_scores (array());
Get sub scores with label (en_US) used in sub_scoresLabel (array());
Get Severity Ratings used in severityRatings (array());
Get Formula with detail
Get the vector
Contribute
If you found any error on the class, please, fork it, push a PR or contact us at "info at security-database.com"
