Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:rpm/redhat/httpd@2.0.59-1.el4s1?arch=10

Type rpm

Namespace redhat

Name httpd

Version 2.0.59-1.el4s1

Qualifiers

arch	10

Subpath

Is_vulnerable true

Next_non_vulnerable_version null

Latest_non_vulnerable_version null

Affected_by_vulnerabilities

url

VCID-dqkp-f1my-dbg9

vulnerability_id

VCID-dqkp-f1my-dbg9

summary

A flaw was found in the mod_imagemap module. On sites where mod_imagemap is enabled and an imagemap file is publicly available, a cross-site scripting attack is possible.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-5000.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-5000.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2007-5000

reference_id

reference_type

scores

value	0.7731
scoring_system	epss
scoring_elements	0.98972
published_at	2026-04-04T12:55:00Z

value	0.7731
scoring_system	epss
scoring_elements	0.98975
published_at	2026-04-07T12:55:00Z

value	0.7731
scoring_system	epss
scoring_elements	0.98968
published_at	2026-04-01T12:55:00Z

value	0.7731
scoring_system	epss
scoring_elements	0.9897
published_at	2026-04-02T12:55:00Z

value	0.78073
scoring_system	epss
scoring_elements	0.99015
published_at	2026-04-13T12:55:00Z

value	0.78073
scoring_system	epss
scoring_elements	0.99016
published_at	2026-04-16T12:55:00Z

value	0.78073
scoring_system	epss
scoring_elements	0.99017
published_at	2026-04-21T12:55:00Z

value	0.78073
scoring_system	epss
scoring_elements	0.9902
published_at	2026-04-24T12:55:00Z

value	0.78073
scoring_system	epss
scoring_elements	0.99012
published_at	2026-04-09T12:55:00Z

value	0.78073
scoring_system	epss
scoring_elements	0.99013
published_at	2026-04-11T12:55:00Z

value	0.78073
scoring_system	epss
scoring_elements	0.99014
published_at	2026-04-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2007-5000

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5000
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5000

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=419931
reference_id	419931
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=419931

reference_url

https://httpd.apache.org/security/json/CVE-2007-5000.json

reference_id

CVE-2007-5000

reference_type

scores

value	moderate
scoring_system	apache_httpd
scoring_elements

url

https://httpd.apache.org/security/json/CVE-2007-5000.json

reference_url	https://access.redhat.com/errata/RHSA-2008:0004
reference_id	RHSA-2008:0004
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0004

reference_url	https://access.redhat.com/errata/RHSA-2008:0005
reference_id	RHSA-2008:0005
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0005

reference_url	https://access.redhat.com/errata/RHSA-2008:0006
reference_id	RHSA-2008:0006
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0006

reference_url	https://access.redhat.com/errata/RHSA-2008:0007
reference_id	RHSA-2008:0007
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0007

reference_url	https://access.redhat.com/errata/RHSA-2008:0008
reference_id	RHSA-2008:0008
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0008

reference_url	https://access.redhat.com/errata/RHSA-2008:0263
reference_id	RHSA-2008:0263
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0263

reference_url	https://access.redhat.com/errata/RHSA-2008:0523
reference_id	RHSA-2008:0523
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0523

reference_url	https://usn.ubuntu.com/575-1/
reference_id	USN-575-1
reference_type
scores
url	https://usn.ubuntu.com/575-1/

fixed_packages

aliases

CVE-2007-5000

risk_score

2.4

exploitability

0.5

weighted_severity

4.8

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-dqkp-f1my-dbg9

url

VCID-kgpj-aexq-7kah

vulnerability_id

VCID-kgpj-aexq-7kah

summary

A flaw was found in the mod_status module. On sites where mod_status is enabled and the status pages were publicly accessible, a cross-site scripting attack is possible. Note that the server-status page is not enabled by default and it is best practice to not make this publicly available.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-6388.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-6388.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2007-6388

reference_id

reference_type

scores

value	0.85047
scoring_system	epss
scoring_elements	0.99357
published_at	2026-04-24T12:55:00Z

value	0.85047
scoring_system	epss
scoring_elements	0.99344
published_at	2026-04-01T12:55:00Z

value	0.85047
scoring_system	epss
scoring_elements	0.99345
published_at	2026-04-02T12:55:00Z

value	0.85047
scoring_system	epss
scoring_elements	0.99347
published_at	2026-04-04T12:55:00Z

value	0.85047
scoring_system	epss
scoring_elements	0.99348
published_at	2026-04-07T12:55:00Z

value	0.85047
scoring_system	epss
scoring_elements	0.9935
published_at	2026-04-09T12:55:00Z

value	0.85047
scoring_system	epss
scoring_elements	0.99352
published_at	2026-04-11T12:55:00Z

value	0.85047
scoring_system	epss
scoring_elements	0.99353
published_at	2026-04-13T12:55:00Z

value	0.85047
scoring_system	epss
scoring_elements	0.99356
published_at	2026-04-18T12:55:00Z

value	0.85047
scoring_system	epss
scoring_elements	0.99355
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2007-6388

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6388
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6388

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=427228
reference_id	427228
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=427228

reference_url

https://httpd.apache.org/security/json/CVE-2007-6388.json

reference_id

CVE-2007-6388

reference_type

scores

value	moderate
scoring_system	apache_httpd
scoring_elements

url

https://httpd.apache.org/security/json/CVE-2007-6388.json

reference_url	https://access.redhat.com/errata/RHSA-2008:0004
reference_id	RHSA-2008:0004
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0004

reference_url	https://access.redhat.com/errata/RHSA-2008:0005
reference_id	RHSA-2008:0005
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0005

reference_url	https://access.redhat.com/errata/RHSA-2008:0006
reference_id	RHSA-2008:0006
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0006

reference_url	https://access.redhat.com/errata/RHSA-2008:0007
reference_id	RHSA-2008:0007
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0007

reference_url	https://access.redhat.com/errata/RHSA-2008:0008
reference_id	RHSA-2008:0008
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0008

reference_url	https://access.redhat.com/errata/RHSA-2008:0263
reference_id	RHSA-2008:0263
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0263

reference_url	https://access.redhat.com/errata/RHSA-2008:0523
reference_id	RHSA-2008:0523
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0523

reference_url	https://usn.ubuntu.com/575-1/
reference_id	USN-575-1
reference_type
scores
url	https://usn.ubuntu.com/575-1/

fixed_packages

aliases

CVE-2007-6388

risk_score

9.6

exploitability

2.0

weighted_severity

4.8

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-kgpj-aexq-7kah

url

VCID-ss79-kcpu-mqd5

vulnerability_id

VCID-ss79-kcpu-mqd5

summary

A workaround was added in the mod_proxy_ftp module. On sites where mod_proxy_ftp is enabled and a forward proxy is configured, a cross-site scripting attack is possible against Web browsers which do not correctly derive the response character set following the rules in RFC 2616.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-0005.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-0005.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2008-0005

reference_id

reference_type

scores

value	0.0265
scoring_system	epss
scoring_elements	0.85798
published_at	2026-04-24T12:55:00Z

value	0.0265
scoring_system	epss
scoring_elements	0.85683
published_at	2026-04-01T12:55:00Z

value	0.0265
scoring_system	epss
scoring_elements	0.85695
published_at	2026-04-02T12:55:00Z

value	0.0265
scoring_system	epss
scoring_elements	0.85713
published_at	2026-04-04T12:55:00Z

value	0.0265
scoring_system	epss
scoring_elements	0.8572
published_at	2026-04-07T12:55:00Z

value	0.0265
scoring_system	epss
scoring_elements	0.85739
published_at	2026-04-08T12:55:00Z

value	0.0265
scoring_system	epss
scoring_elements	0.8575
published_at	2026-04-09T12:55:00Z

value	0.0265
scoring_system	epss
scoring_elements	0.85765
published_at	2026-04-11T12:55:00Z

value	0.0265
scoring_system	epss
scoring_elements	0.85761
published_at	2026-04-12T12:55:00Z

value	0.0265
scoring_system	epss
scoring_elements	0.85758
published_at	2026-04-13T12:55:00Z

value	0.0265
scoring_system	epss
scoring_elements	0.85776
published_at	2026-04-16T12:55:00Z

value	0.0265
scoring_system	epss
scoring_elements	0.85781
published_at	2026-04-18T12:55:00Z

value	0.0265
scoring_system	epss
scoring_elements	0.85774
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2008-0005

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0005
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0005

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=427739
reference_id	427739
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=427739

reference_url

https://httpd.apache.org/security/json/CVE-2008-0005.json

reference_id

CVE-2008-0005

reference_type

scores

value	low
scoring_system	apache_httpd
scoring_elements

url

https://httpd.apache.org/security/json/CVE-2008-0005.json

reference_url	https://security.gentoo.org/glsa/200803-19
reference_id	GLSA-200803-19
reference_type
scores
url	https://security.gentoo.org/glsa/200803-19

reference_url	https://access.redhat.com/errata/RHSA-2008:0004
reference_id	RHSA-2008:0004
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0004

reference_url	https://access.redhat.com/errata/RHSA-2008:0005
reference_id	RHSA-2008:0005
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0005

reference_url	https://access.redhat.com/errata/RHSA-2008:0006
reference_id	RHSA-2008:0006
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0006

reference_url	https://access.redhat.com/errata/RHSA-2008:0007
reference_id	RHSA-2008:0007
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0007

reference_url	https://access.redhat.com/errata/RHSA-2008:0008
reference_id	RHSA-2008:0008
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0008

reference_url	https://usn.ubuntu.com/575-1/
reference_id	USN-575-1
reference_type
scores
url	https://usn.ubuntu.com/575-1/

fixed_packages

aliases

CVE-2008-0005

risk_score

1.1

exploitability

0.5

weighted_severity

2.1

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-ss79-kcpu-mqd5

Fixing_vulnerabilities

Risk_score 9.6

Resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/httpd@2.0.59-1.el4s1%3Farch=10

Package Instance