From 94ae33f4e0246b1ed82ddeb50df26b3ec79653cc Mon Sep 17 00:00:00 2001
From: Shrish0098 <shrish409@gmail.com>
Date: Mon, 17 Mar 2025 18:15:10 +0530
Subject: [PATCH] Chenged the Severity table

Signed-off-by: Shrish0098 <shrish409@gmail.com>
---
 .../templates/vulnerability_details.html      | 155 +++++++++++-------
 vulnerabilities/views.py                      |  43 +++++
 2 files changed, 140 insertions(+), 58 deletions(-)

diff --git a/vulnerabilities/templates/vulnerability_details.html b/vulnerabilities/templates/vulnerability_details.html
index 7001c8f3b..65c8a4e99 100644
--- a/vulnerabilities/templates/vulnerability_details.html
+++ b/vulnerabilities/templates/vulnerability_details.html
@@ -197,64 +197,103 @@
 
             <!-- New Severities Tab -->
             <div class="tab-div content" data-content="severities">
-                <table class="table is-bordered is-striped is-narrow is-hoverable is-fullwidth gray-header-border">
-                    <tr>
-                        <th style="width: 160px;"> System </th>
-                        <th style="width: 100px;"> Score </th>
-                        <th> Found at </th>
-                    </tr>
-                    {% for severity in severities %}
-                    <tr>
-                        <td class="wrap-strings">{{ severity.scoring_system }}</td>
-                        <td class="wrap-strings">{{ severity.value }}</td>
-                        <td class="wrap-strings"><a href="{{ severity.url }}" target="_blank">
-                                {{ severity.url }}<i class="fa fa-external-link fa_link_custom"></i></a>
-                        </td>
-                    </tr>
-                    {% empty %}
-                    <tr>
-                        <td colspan="3">
-                            There are no known severity scores.
-                        </td>
-                    </tr>
-                    {% endfor %}
-                </table>
-            </div>
-
-            <div class="tab-div content" data-content="references">
-                <table class="table is-bordered is-striped is-narrow is-hoverable is-fullwidth">
-                    <thead>
-                        <tr>
-                            <th style="width: 250px;"> Reference id </th>
-                            <th style="width: 250px;"> Reference type </th>
-                            <th> URL </th>
-                        </tr>
-                    </thead>
-                    {% for ref in references %}
-                    <tr>
-                        {% if ref.reference_id %}
-                        <td class="wrap-strings">{{ ref.reference_id }}</td>
-                        {% else %}
-                        <td></td>
-                        {% endif %}
-
-                        {% if ref.reference_type %}
-                        <td class="wrap-strings">{{ ref.get_reference_type_display }}</td>
-                        {% else %}
-                        <td></td>
-                        {% endif %}
-
-                        <td class="wrap-strings"><a href="{{ ref.url }}" target="_blank">{{ ref.url }}<i
-                                    class="fa fa-external-link fa_link_custom"></i></a></td>
-                    </tr>
-                    {% empty %}
-                    <tr>
-                        <td colspan="2">
-                            There are no known references.
-                        </td>
-                    </tr>
-                    {% endfor %}
-                </table>
+                <h3 class="title is-5">Severity Scores by Source</h3>
+                
+                {% regroup severities|dictsort:"url" by url as severities_by_url %}
+                
+                {% for url_group in severities_by_url %}
+                <div class="box mb-4">
+                    <h5 class="title is-6">
+                        <a href="{{ url_group.grouper }}" target="_blank" class="has-text-link">
+                            {{ url_group.grouper|default:"Unknown Source" }}
+                            <i class="fa fa-external-link fa_link_custom"></i>
+                        </a>
+                    </h5>
+                    
+                    <!-- CVSS scores section -->
+                    <div class="mb-3">
+                        <h6 class="title is-7">CVSS Scores</h6>
+                        <table class="table is-bordered is-narrow is-hoverable is-fullwidth">
+                            <thead>
+                                <tr>
+                                    <th>Source</th>
+                                    <th>CVSS Version</th>
+                                    <th>Score</th>
+                                    <th>Textual Severity</th>
+                                </tr>
+                            </thead>
+                            <tbody>
+                                {% for entry in cvss_entries %}
+                                <tr>
+                                    <td>
+                                        <a href="{{ entry.reference }}" title="{{ entry.reference }}">
+                                            {{ entry.reference|truncatechars:40 }}
+                                        </a>
+                                    </td>
+                                    <td>{{ entry.version }}</td>
+                                    <td>{{ entry.score|default:"-" }}</td>
+                                    <td>{{ entry.text|default:"-" }}</td>
+                                </tr>
+                                {% endfor %}
+                            </tbody>
+                        </table>
+                    </div>
+                    
+                    <!-- EPSS scores section -->
+                    {% if epss_entries %}
+                    <div class="mb-3">
+                        <h6 class="title is-7">EPSS Scores</h6>
+                        <table class="table is-bordered is-narrow is-hoverable is-fullwidth">
+                            <thead>
+                                <tr>
+                                    <th>Source</th>
+                                    <th>Score</th>
+                                 </tr>
+                            </thead>
+                            <tbody>
+                                {% for entry in epss_entries %}
+                                <tr>
+                                    <td>
+                                        <a href="{{ entry.reference }}" title="{{ entry.reference }}">
+                                            {{ entry.reference|truncatechars:40 }}
+                                        </a>
+                                    </td>
+                                    <td>{{ entry.score }}</td>
+                                </tr>
+                                {% endfor %}
+                            </tbody>
+                        </table>
+                    </div>
+                    {% endif %}
+                    
+                    <!-- Other scores section -->
+                    <div class="mb-3">
+                        <h6 class="title is-7">Other Scores</h6>
+                        <table class="table is-bordered is-narrow is-hoverable is-fullwidth">
+                            <thead>
+                                <tr>
+                                    <th>Scoring System</th>
+                                    <th>Score</th>
+                                </tr>
+                            </thead>
+                            <tbody>
+                                {% for severity in url_group.list %}
+                                    {% if "cvss" not in severity.scoring_system and severity.scoring_system != "epss" %}
+                                    <tr>
+                                        <td>{{ severity.scoring_system }}</td>
+                                        <td>{{ severity.value }}</td>
+                                    </tr>
+                                    {% endif %}
+                                {% endfor %}
+                            </tbody>
+                        </table>
+                    </div>
+                </div>
+                {% empty %}
+                <div class="notification">
+                    There are no known severity scores.
+                </div>
+                {% endfor %}
             </div>
 
             <div class="tab-div content" data-content="exploits">
diff --git a/vulnerabilities/views.py b/vulnerabilities/views.py
index a2df48634..506f7cef8 100644
--- a/vulnerabilities/views.py
+++ b/vulnerabilities/views.py
@@ -38,6 +38,49 @@
 PAGE_SIZE = 20
 
 
+def vulnerability_details(request, vulnerability_id):
+    vulnerability = get_object_or_404(Vulnerability, pk=vulnerability_id)
+    severities = vulnerability.severities.all()
+
+    # Process CVSS entries
+    cvss_entries = {}
+    for sev in severities:
+        system_lower = sev.system.lower()
+        if system_lower.startswith("cvss"):
+            version = system_lower.replace("cvssv", "").upper()
+            key = (sev.reference, version)
+            if key not in cvss_entries:
+                cvss_entries[key] = {"score": None, "text": None}
+            # Check if value is numerical or textual
+            try:
+                float(sev.value)
+                cvss_entries[key]["score"] = sev.value
+            except ValueError:
+                cvss_entries[key]["text"] = sev.value
+
+    cvss_list = [
+        {"reference": key[0], "version": key[1], "score": entry["score"], "text": entry["text"]}
+        for key, entry in cvss_entries.items()
+    ]
+
+    # Process EPSS entries, deduplicate
+    epss_entries = {}
+    for sev in severities:
+        if sev.system.lower() == "epss":
+            key = (sev.reference, sev.value)
+            if key not in epss_entries:
+                epss_entries[key] = sev.value
+
+    epss_list = [{"reference": key[0], "score": key[1]} for key in epss_entries]
+
+    context = {
+        "vulnerability": vulnerability,
+        "cvss_entries": cvss_list,
+        "epss_entries": epss_list,
+    }
+    return render(request, "vulnerability_details.html", context)
+
+
 class PackageSearch(ListView):
     model = models.Package
     template_name = "packages.html"