{
  "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
  "bomFormat": "CycloneDX",
  "specVersion": "1.6",
  "serialNumber": "urn:uuid:26f896d0-6667-50f1-a31e-b30e46e1afcf",
  "version": 1,
  "metadata": {
    "tools": [
      {
        "name": "tuxcare-vex-generator",
        "version": "1.0.0"
      }
    ]
  },
  "components": [
    {
      "bom-ref": "pkg:composer/craftcms/feed-me@3.1.17",
      "type": "library",
      "group": "craftcms",
      "name": "feed-me",
      "version": "3.1.17",
      "purl": "pkg:composer/craftcms/feed-me@3.1.17"
    }
  ],
  "vulnerabilities": [
    {
      "bom-ref": "urn:uuid:c619866d-6f75-5bcc-be93-d233e4b37163",
      "id": "CVE-2022-29248",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2022-29248 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:cd19f487-80cc-5b43-a807-aff2cfc3ad8e",
      "id": "CVE-2022-31042",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2022-31042 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:2e009ade-353f-57b4-a6ec-cb0d110e9401",
      "id": "CVE-2022-31043",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2022-31043 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:3da50496-126b-5f2f-b43e-b981c35e3121",
      "id": "CVE-2022-31090",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2022-31090 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:4ffeaca6-fe8b-594f-8f8e-b6067142fcaf",
      "id": "CVE-2022-31091",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2022-31091 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:b430dc63-97b5-5112-a12d-001e7e0f6f85",
      "id": "CVE-2022-37251",
      "analysis": {
        "state": "not_affected",
        "detail": "Vulnerability CVE-2022-37251 does not affect version 3.1.17 of craftcms/feed-me. CVE-2022-37251 in craftcms/cms 3.9.15 is not affected. Refer to craftcms/cms 3.9.15 for details."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:93cc42d9-0faa-50e8-bad6-8ec8b0cf51be",
      "id": "CVE-2023-31144",
      "analysis": {
        "state": "not_affected",
        "detail": "Vulnerability CVE-2023-31144 does not affect version 3.1.17 of craftcms/feed-me. CVE-2023-31144 in craftcms/cms 3.9.15 is not affected. Refer to craftcms/cms 3.9.15 for details."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:692218da-21b1-5206-931a-8a22538650b6",
      "id": "CVE-2023-33195",
      "analysis": {
        "state": "not_affected",
        "detail": "Vulnerability CVE-2023-33195 does not affect version 3.1.17 of craftcms/feed-me. CVE-2023-33195 in craftcms/cms 3.9.15 is not affected. Refer to craftcms/cms 3.9.15 for details."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:41194221-5132-5ffe-8e96-ea876292ba3a",
      "id": "CVE-2023-33196",
      "analysis": {
        "state": "not_affected",
        "detail": "Vulnerability CVE-2023-33196 does not affect version 3.1.17 of craftcms/feed-me. CVE-2023-33196 in craftcms/cms 3.9.15 is not affected. Refer to craftcms/cms 3.9.15 for details."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:07978110-ddeb-5db3-8bf7-55d44a7b1819",
      "id": "CVE-2023-33197",
      "analysis": {
        "state": "not_affected",
        "detail": "Vulnerability CVE-2023-33197 does not affect version 3.1.17 of craftcms/feed-me. CVE-2023-33197 in craftcms/cms 3.9.15 is not affected. Refer to craftcms/cms 3.9.15 for details."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:e86121c7-0d39-52a1-bcca-39b540f42b46",
      "id": "CVE-2023-33495",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2023-33495 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:086baa4b-2e65-57d6-9c5b-89d4f55f8975",
      "id": "CVE-2023-40035",
      "analysis": {
        "state": "not_affected",
        "detail": "Vulnerability CVE-2023-40035 does not affect version 3.1.17 of craftcms/feed-me. CVE-2023-40035 in craftcms/cms 3.9.15 is not affected. Refer to craftcms/cms 3.9.15 for details."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:211e9e4e-9dc3-5153-aa31-6bce3e0c523c",
      "id": "CVE-2023-41892",
      "analysis": {
        "state": "not_affected",
        "detail": "Vulnerability CVE-2023-41892 does not affect version 3.1.17 of craftcms/feed-me. CVE-2023-41892 in craftcms/cms 3.9.15 is not affected. Refer to craftcms/cms 3.9.15 for details."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:630a6c67-087f-5e9c-ac4a-0ff2937a3b46",
      "id": "CVE-2024-21622",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2024-21622 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:80038245-19ec-5a24-982f-237a3f71970b",
      "id": "CVE-2024-32877",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2024-32877 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:4900a6af-7174-51c4-a7cc-3012afa7b917",
      "id": "CVE-2024-41800",
      "analysis": {
        "state": "not_affected",
        "detail": "Vulnerability CVE-2024-41800 does not affect version 3.1.17 of craftcms/feed-me. CVE-2024-41800 in craftcms/cms 3.9.15 is not affected. Refer to craftcms/cms 3.9.15 for details."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:985b4eed-ed2c-5b2b-b063-6a6ec5bfdac2",
      "id": "CVE-2024-45411",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2024-45411 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:0256bcb1-ce46-524c-8839-608974172785",
      "id": "CVE-2024-51754",
      "analysis": {
        "state": "not_affected",
        "detail": "Vulnerability CVE-2024-51754 does not affect version 3.1.17 of craftcms/feed-me. CVE-2024-51754 in craftcms/cms 3.9.15 is not affected. Refer to craftcms/cms 3.9.15 for details."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:31b3e378-5ab7-5440-ac41-cb1f5d30ab19",
      "id": "CVE-2024-51755",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2024-51755 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:66701586-2631-5363-b61d-9389db4cec52",
      "id": "CVE-2024-52293",
      "analysis": {
        "state": "not_affected",
        "detail": "Vulnerability CVE-2024-52293 does not affect version 3.1.17 of craftcms/feed-me. CVE-2024-52293 in craftcms/cms 3.9.15 is not affected. Refer to craftcms/cms 3.9.15 for details."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:45657e36-250c-56b7-9aff-ad78f751a980",
      "id": "CVE-2025-23209",
      "analysis": {
        "state": "not_affected",
        "detail": "Vulnerability CVE-2025-23209 does not affect version 3.1.17 of craftcms/feed-me. CVE-2025-23209 in craftcms/cms 3.9.15 is not affected. Refer to craftcms/cms 3.9.15 for details."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:6d51a335-43f5-5893-bf62-51e8fad00e06",
      "id": "CVE-2025-32432",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-32432 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:443d7b29-e59d-54f1-90a1-016d37acbd31",
      "id": "CVE-2025-35939",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-35939 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:c573366d-4e66-5117-a4a6-72906b4231de",
      "id": "CVE-2025-46731",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-46731 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:a079a09e-4179-58d7-ac0b-cc91f77ae54c",
      "id": "CVE-2025-55166",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-55166 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:181dd810-e356-5c9b-94a8-192afd8cee47",
      "id": "CVE-2025-57811",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-57811 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:e58308d3-78ca-51b9-97a7-c4c2e3ab24eb",
      "id": "CVE-2025-68436",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-68436 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:a372fa27-60ce-5851-9f0e-d0110db85520",
      "id": "CVE-2025-68437",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-68437 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:655cd8d0-5173-5ed1-98f5-7613b4e0e0b8",
      "id": "CVE-2025-68454",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-68454 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:1171fc06-14d0-50fa-835f-2dee188c0d95",
      "id": "CVE-2025-68455",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-68455 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:e911a93a-59cf-5f26-90b8-57c443d08085",
      "id": "CVE-2025-68456",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-68456 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:f2a2b474-345e-5e70-a38c-8130134ba3c7",
      "id": "CVE-2026-25491",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-25491 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:602ac122-6ecd-5071-add5-ed4222dfefd4",
      "id": "CVE-2026-25493",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-25493 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:455ae00e-2edb-5fbb-bbed-08d42e69d5e3",
      "id": "CVE-2026-25494",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-25494 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:c7ff770c-df8a-52d6-9364-e1d730a84dea",
      "id": "CVE-2026-25495",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-25495 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:e1a05af0-e8d3-5d04-80cd-74d26d877d8c",
      "id": "CVE-2026-25496",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-25496 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:5012c797-d9fe-5751-872d-4e8403979000",
      "id": "CVE-2026-25498",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-25498 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:0d4392a0-2ee7-502d-9b41-c56793ec9fca",
      "id": "CVE-2026-27126",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-27126 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:d420d12f-2e27-598a-b66f-265403279f0b",
      "id": "CVE-2026-27127",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-27127 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:1c375959-e8c5-54f5-9bc8-fbadb9967a87",
      "id": "CVE-2026-27128",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-27128 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:43203636-3f35-592d-bd33-aacbbf55a167",
      "id": "CVE-2026-27129",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-27129 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:ce2cfd79-d336-5bc2-8558-5236ccf6a8ac",
      "id": "CVE-2026-29113",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-29113 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:8209b55e-1592-55d2-8d7f-9ec80253f466",
      "id": "CVE-2026-31857",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-31857 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:6107ee16-23a5-559a-abd3-3198737512c6",
      "id": "CVE-2026-31858",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-31858 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:ae816603-c197-5638-8883-dfcb0ff508a3",
      "id": "CVE-2026-31859",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-31859 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:321d820f-beb8-5df8-9448-00978aa0e4c7",
      "id": "CVE-2026-32262",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-32262 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:4d3ce8a1-0a31-5205-99eb-903553996f21",
      "id": "CVE-2026-32263",
      "analysis": {
        "state": "not_affected",
        "detail": "Vulnerability CVE-2026-32263 does not affect version 3.1.17 of craftcms/feed-me. CVE-2026-32263 in craftcms/cms 3.9.15 is not affected. Refer to craftcms/cms 3.9.15 for details."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:f2c0fdd9-8be8-5e2e-b2d5-78f5d3e80a93",
      "id": "CVE-2026-32264",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-32264 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:5a017aa6-92a7-51dc-b9e1-0d0e07b0a5ae",
      "id": "CVE-2026-32267",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-32267 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:bcc164ba-d680-5be1-ab9e-dcc3978a752b",
      "id": "CVE-2026-33051",
      "analysis": {
        "state": "not_affected",
        "detail": "Vulnerability CVE-2026-33051 does not affect version 3.1.17 of craftcms/feed-me. CVE-2026-33051 in craftcms/cms 3.9.15 is not affected. Refer to craftcms/cms 3.9.15 for details."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:f6423393-17f6-5f78-a26a-08385ab35d3c",
      "id": "CVE-2026-33157",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-33157 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:da131962-9c7d-5f08-a662-1215bbbbd60b",
      "id": "CVE-2026-33158",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-33158 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:9106c8f1-8c4d-5b5d-b35a-7764edfe59e1",
      "id": "CVE-2026-33159",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-33159 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:6e5ba4d4-4e88-5f08-8e27-4bc1b6e99eb4",
      "id": "CVE-2026-33160",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-33160 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:2672a14b-6a49-5219-8b96-afe34efd4e22",
      "id": "CVE-2026-33161",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-33161 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:790d38aa-3a26-5e19-a151-07bda35b71d1",
      "id": "CVE-2026-33162",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-33162 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:9254ec27-0c27-5f1e-a29c-cfebf60caeba",
      "id": "CVE-2026-40476",
      "analysis": {
        "state": "not_affected",
        "detail": "Vulnerability CVE-2026-40476 does not affect version 3.1.17 of craftcms/feed-me. CVE-2026-40476 in craftcms/cms 3.9.15 is not affected. Refer to craftcms/cms 3.9.15 for details."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:f59ac98b-11eb-5339-ade8-e7ab656034bd",
      "id": "CVE-2026-41129",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-41129 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:bc64ddb0-d9d6-5f09-91dc-fb0e368bd9c1",
      "id": "CVE-2026-41130",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-41130 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:8b4fc562-eb9c-50d1-96fc-769767e3cea1",
      "id": "GHSA-3m9m-24vh-39wx",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability GHSA-3m9m-24vh-39wx affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:006733bd-4541-5207-b604-7970391af4c6",
      "id": "GHSA-44px-qjjc-xrhq",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability GHSA-44px-qjjc-xrhq affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:4b32e3b3-91f2-5ff5-a1cf-019f9bafb697",
      "id": "GHSA-68jq-c3rv-pcrr",
      "analysis": {
        "state": "not_affected",
        "detail": "Vulnerability GHSA-68jq-c3rv-pcrr does not affect version 3.1.17 of craftcms/feed-me. GHSA-68jq-c3rv-pcrr in craftcms/cms 3.9.15 is not affected. Refer to craftcms/cms 3.9.15 for details."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:d4297dbb-e75a-5827-834c-1e8322b8355b",
      "id": "GHSA-6j87-m5qx-9fqp",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability GHSA-6j87-m5qx-9fqp affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:187c3fe0-2004-5720-ab9c-b924b28b86b3",
      "id": "GHSA-95wr-3f2v-v2wh",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability GHSA-95wr-3f2v-v2wh affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:60056751-dc87-5d1b-9830-458da1b256b8",
      "id": "GHSA-fc86-6rv6-2jpm",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability GHSA-fc86-6rv6-2jpm affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:ac0f18d4-6761-572c-a9fc-2893805ac4f1",
      "id": "GHSA-g3hp-vvqf-8vw6",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability GHSA-g3hp-vvqf-8vw6 affects version 3.1.17 of craftcms/feed-me."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:803bce95-8048-5d86-883d-310c33d301fb",
      "id": "GHSA-r7cg-qjjm-xhqq",
      "analysis": {
        "state": "not_affected",
        "detail": "Vulnerability GHSA-r7cg-qjjm-xhqq does not affect version 3.1.17 of craftcms/feed-me. GHSA-r7cg-qjjm-xhqq in craftcms/cms 3.9.15 is not affected. Refer to craftcms/cms 3.9.15 for details."
      },
      "affects": [
        {
          "ref": "pkg:composer/craftcms/feed-me@3.1.17"
        }
      ]
    }
  ],
  "dependencies": [
    {
      "ref": "pkg:composer/craftcms/feed-me@3.1.17"
    }
  ]
}