Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/wordpress@5.5.3%2Bdfsg1-1?distro=trixie

Type deb

Namespace debian

Name wordpress

Version 5.5.3+dfsg1-1

Qualifiers

distro	trixie

Subpath

Is_vulnerable false

Next_non_vulnerable_version 5.7.1+dfsg1-1

Latest_non_vulnerable_version 6.9.4+dfsg1-1

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-14aw-pv9d-ekhs

vulnerability_id VCID-14aw-pv9d-ekhs

summary multiple issues

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-28037

reference_id

reference_type

scores

value	0.1405
scoring_system	epss
scoring_elements	0.94479
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-28037

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28032
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28032

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28033
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28033

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28034
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28034

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28035
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28035

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28036
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28036

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28037
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28037

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28038
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28038

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28039
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28039

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28040
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28040

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=973562
reference_id	973562
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=973562

reference_url	https://security.archlinux.org/ASA-202011-3
reference_id	ASA-202011-3
reference_type
scores
url	https://security.archlinux.org/ASA-202011-3

reference_url

https://security.archlinux.org/AVG-1257

reference_id

AVG-1257

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1257

fixed_packages

url	pkg:deb/debian/wordpress@5.5.3%2Bdfsg1-1?distro=trixie
purl	pkg:deb/debian/wordpress@5.5.3%2Bdfsg1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@5.5.3%252Bdfsg1-1%3Fdistro=trixie

url pkg:deb/debian/wordpress@5.7.11%2Bdfsg1-0%2Bdeb11u1?distro=trixie

purl pkg:deb/debian/wordpress@5.7.11%2Bdfsg1-0%2Bdeb11u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-eg3u-uaqx-m7f2

vulnerability	VCID-sjsv-4uy2-aqct

vulnerability	VCID-v95d-ak24-uqbz

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@5.7.11%252Bdfsg1-0%252Bdeb11u1%3Fdistro=trixie

url pkg:deb/debian/wordpress@6.1.9%2Bdfsg1-0%2Bdeb12u1?distro=trixie

purl pkg:deb/debian/wordpress@6.1.9%2Bdfsg1-0%2Bdeb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-sjsv-4uy2-aqct

vulnerability	VCID-v95d-ak24-uqbz

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.1.9%252Bdfsg1-0%252Bdeb12u1%3Fdistro=trixie

url	pkg:deb/debian/wordpress@6.8.3%2Bdfsg1-0%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/wordpress@6.8.3%2Bdfsg1-0%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.8.3%252Bdfsg1-0%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/wordpress@6.9.4%2Bdfsg1-1?distro=trixie
purl	pkg:deb/debian/wordpress@6.9.4%2Bdfsg1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.9.4%252Bdfsg1-1%3Fdistro=trixie

aliases CVE-2020-28037

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-14aw-pv9d-ekhs

url VCID-2d1x-n1xx-abdy

vulnerability_id VCID-2d1x-n1xx-abdy

summary multiple issues

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-28040

reference_id

reference_type

scores

value	0.00306
scoring_system	epss
scoring_elements	0.5414
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-28040

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28032
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28032

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28033
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28033

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28034
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28034

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28035
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28035

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28036
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28036

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28037
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28037

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28038
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28038

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28039
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28039

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28040
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28040

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=973562
reference_id	973562
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=973562

reference_url	https://security.archlinux.org/ASA-202011-3
reference_id	ASA-202011-3
reference_type
scores
url	https://security.archlinux.org/ASA-202011-3

reference_url

https://security.archlinux.org/AVG-1257

reference_id

AVG-1257

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1257

fixed_packages

url	pkg:deb/debian/wordpress@5.5.3%2Bdfsg1-1?distro=trixie
purl	pkg:deb/debian/wordpress@5.5.3%2Bdfsg1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@5.5.3%252Bdfsg1-1%3Fdistro=trixie

url pkg:deb/debian/wordpress@5.7.11%2Bdfsg1-0%2Bdeb11u1?distro=trixie

purl pkg:deb/debian/wordpress@5.7.11%2Bdfsg1-0%2Bdeb11u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-eg3u-uaqx-m7f2

vulnerability	VCID-sjsv-4uy2-aqct

vulnerability	VCID-v95d-ak24-uqbz

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@5.7.11%252Bdfsg1-0%252Bdeb11u1%3Fdistro=trixie

url pkg:deb/debian/wordpress@6.1.9%2Bdfsg1-0%2Bdeb12u1?distro=trixie

purl pkg:deb/debian/wordpress@6.1.9%2Bdfsg1-0%2Bdeb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-sjsv-4uy2-aqct

vulnerability	VCID-v95d-ak24-uqbz

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.1.9%252Bdfsg1-0%252Bdeb12u1%3Fdistro=trixie

url	pkg:deb/debian/wordpress@6.8.3%2Bdfsg1-0%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/wordpress@6.8.3%2Bdfsg1-0%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.8.3%252Bdfsg1-0%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/wordpress@6.9.4%2Bdfsg1-1?distro=trixie
purl	pkg:deb/debian/wordpress@6.9.4%2Bdfsg1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.9.4%252Bdfsg1-1%3Fdistro=trixie

aliases CVE-2020-28040

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2d1x-n1xx-abdy

url VCID-45r4-tvap-93hq

vulnerability_id VCID-45r4-tvap-93hq

summary

Deserialization of Untrusted Data
Requests is a HTTP library written in PHP. Requests mishandles deserialization in FilteredIterator. The issue has been patched and users of `Requests` 1.6.0, 1.6.1 and 1.7.0 should update to version 1.8.0.

references

reference_url

https://2018.zeronights.ru/wp-content/uploads/materials/9%20ZN2018%20WV%20-%20PHP%20unserialize.pdf

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://2018.zeronights.ru/wp-content/uploads/materials/9%20ZN2018%20WV%20-%20PHP%20unserialize.pdf

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-29476

reference_id

reference_type

scores

value	0.02219
scoring_system	epss
scoring_elements	0.84792
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-29476

reference_url

https://blog.detectify.com/2019/07/23/improving-wordpress-plugin-security

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://blog.detectify.com/2019/07/23/improving-wordpress-plugin-security

reference_url	https://blog.detectify.com/2019/07/23/improving-wordpress-plugin-security/
reference_id
reference_type
scores
url	https://blog.detectify.com/2019/07/23/improving-wordpress-plugin-security/

reference_url

https://cdn2.hubspot.net/hubfs/3853213/us-18-Thomas-It%27s-A-PHP-Unserialization-Vulnerability-Jim-But-Not-As-We-....pdf

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://cdn2.hubspot.net/hubfs/3853213/us-18-Thomas-It%27s-A-PHP-Unserialization-Vulnerability-Jim-But-Not-As-We-....pdf

reference_url

https://dannewitz.ninja/posts/php-unserialize-object-injection-yet-another-stars-rating-wordpress

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://dannewitz.ninja/posts/php-unserialize-object-injection-yet-another-stars-rating-wordpress

reference_url

https://github.com/ambionics/phpggc/issues/52

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/ambionics/phpggc/issues/52

reference_url

https://github.com/rmccue/Requests/pull/421

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/rmccue/Requests/pull/421

reference_url

https://github.com/WordPress/wordpress-develop/commit/add6bedf3a53b647d0ebda2970057912d3cd79d3

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/WordPress/wordpress-develop/commit/add6bedf3a53b647d0ebda2970057912d3cd79d3

reference_url

https://i.blackhat.com/us-18/Thu-August-9/us-18-Thomas-Its-A-PHP-Unserialization-Vulnerability-Jim-But-Not-As-We-Know-It.pdf

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://i.blackhat.com/us-18/Thu-August-9/us-18-Thomas-Its-A-PHP-Unserialization-Vulnerability-Jim-But-Not-As-We-Know-It.pdf

reference_url

https://medium.com/@knownsec404team/extend-the-attack-surface-of-php-deserialization-vulnerability-via-phar-d6455c6a1066#3c0f

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://medium.com/@knownsec404team/extend-the-attack-surface-of-php-deserialization-vulnerability-via-phar-d6455c6a1066#3c0f

reference_url

https://wordpress.org/news/2020/10/wordpress-5-5-2-security-and-maintenance-release

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://wordpress.org/news/2020/10/wordpress-5-5-2-security-and-maintenance-release

reference_url	https://wordpress.org/news/2020/10/wordpress-5-5-2-security-and-maintenance-release/
reference_id
reference_type
scores
url	https://wordpress.org/news/2020/10/wordpress-5-5-2-security-and-maintenance-release/

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2021-29476

reference_id

CVE-2021-29476

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2021-29476

reference_url

https://github.com/FriendsOfPHP/security-advisories/blob/master/rmccue/requests/CVE-2021-29476.yaml

reference_id

CVE-2021-29476.YAML

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/FriendsOfPHP/security-advisories/blob/master/rmccue/requests/CVE-2021-29476.yaml

reference_url	https://github.com/advisories/GHSA-52qp-jpq7-6c54
reference_id	GHSA-52qp-jpq7-6c54
reference_type
scores
url	https://github.com/advisories/GHSA-52qp-jpq7-6c54

reference_url

https://github.com/WordPress/Requests/security/advisories/GHSA-52qp-jpq7-6c54

reference_id

GHSA-52qp-jpq7-6c54

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/WordPress/Requests/security/advisories/GHSA-52qp-jpq7-6c54

fixed_packages

url	pkg:deb/debian/wordpress@5.5.3%2Bdfsg1-1?distro=trixie
purl	pkg:deb/debian/wordpress@5.5.3%2Bdfsg1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@5.5.3%252Bdfsg1-1%3Fdistro=trixie

url pkg:deb/debian/wordpress@5.7.11%2Bdfsg1-0%2Bdeb11u1?distro=trixie

purl pkg:deb/debian/wordpress@5.7.11%2Bdfsg1-0%2Bdeb11u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-eg3u-uaqx-m7f2

vulnerability	VCID-sjsv-4uy2-aqct

vulnerability	VCID-v95d-ak24-uqbz

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@5.7.11%252Bdfsg1-0%252Bdeb11u1%3Fdistro=trixie

url pkg:deb/debian/wordpress@6.1.9%2Bdfsg1-0%2Bdeb12u1?distro=trixie

purl pkg:deb/debian/wordpress@6.1.9%2Bdfsg1-0%2Bdeb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-sjsv-4uy2-aqct

vulnerability	VCID-v95d-ak24-uqbz

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.1.9%252Bdfsg1-0%252Bdeb12u1%3Fdistro=trixie

url	pkg:deb/debian/wordpress@6.8.3%2Bdfsg1-0%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/wordpress@6.8.3%2Bdfsg1-0%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.8.3%252Bdfsg1-0%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/wordpress@6.9.4%2Bdfsg1-1?distro=trixie
purl	pkg:deb/debian/wordpress@6.9.4%2Bdfsg1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.9.4%252Bdfsg1-1%3Fdistro=trixie

aliases CVE-2021-29476, GHSA-52qp-jpq7-6c54

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-45r4-tvap-93hq

url VCID-dpk1-runp-pbfm

vulnerability_id VCID-dpk1-runp-pbfm

summary multiple issues

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-28038

reference_id

reference_type

scores

value	0.176
scoring_system	epss
scoring_elements	0.95218
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-28038

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28032
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28032

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28033
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28033

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28034
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28034

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28035
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28035

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28036
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28036

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28037
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28037

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28038
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28038

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28039
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28039

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28040
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28040

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=973562
reference_id	973562
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=973562

reference_url	https://security.archlinux.org/ASA-202011-3
reference_id	ASA-202011-3
reference_type
scores
url	https://security.archlinux.org/ASA-202011-3

reference_url

https://security.archlinux.org/AVG-1257

reference_id

AVG-1257

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1257

fixed_packages

url	pkg:deb/debian/wordpress@5.5.3%2Bdfsg1-1?distro=trixie
purl	pkg:deb/debian/wordpress@5.5.3%2Bdfsg1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@5.5.3%252Bdfsg1-1%3Fdistro=trixie

url pkg:deb/debian/wordpress@5.7.11%2Bdfsg1-0%2Bdeb11u1?distro=trixie

purl pkg:deb/debian/wordpress@5.7.11%2Bdfsg1-0%2Bdeb11u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-eg3u-uaqx-m7f2

vulnerability	VCID-sjsv-4uy2-aqct

vulnerability	VCID-v95d-ak24-uqbz

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@5.7.11%252Bdfsg1-0%252Bdeb11u1%3Fdistro=trixie

url pkg:deb/debian/wordpress@6.1.9%2Bdfsg1-0%2Bdeb12u1?distro=trixie

purl pkg:deb/debian/wordpress@6.1.9%2Bdfsg1-0%2Bdeb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-sjsv-4uy2-aqct

vulnerability	VCID-v95d-ak24-uqbz

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.1.9%252Bdfsg1-0%252Bdeb12u1%3Fdistro=trixie

url	pkg:deb/debian/wordpress@6.8.3%2Bdfsg1-0%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/wordpress@6.8.3%2Bdfsg1-0%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.8.3%252Bdfsg1-0%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/wordpress@6.9.4%2Bdfsg1-1?distro=trixie
purl	pkg:deb/debian/wordpress@6.9.4%2Bdfsg1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.9.4%252Bdfsg1-1%3Fdistro=trixie

aliases CVE-2020-28038

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dpk1-runp-pbfm

url VCID-eu98-xttk-pbbj

vulnerability_id VCID-eu98-xttk-pbbj

summary multiple issues

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-28032

reference_id

reference_type

scores

value	0.27967
scoring_system	epss
scoring_elements	0.9656
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-28032

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28032
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28032

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28033
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28033

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28034
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28034

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28035
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28035

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28036
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28036

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28037
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28037

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28038
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28038

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28039
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28039

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28040
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28040

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=973562
reference_id	973562
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=973562

reference_url	https://security.archlinux.org/ASA-202011-3
reference_id	ASA-202011-3
reference_type
scores
url	https://security.archlinux.org/ASA-202011-3

reference_url

https://security.archlinux.org/AVG-1257

reference_id

AVG-1257

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1257

fixed_packages

url	pkg:deb/debian/wordpress@5.5.3%2Bdfsg1-1?distro=trixie
purl	pkg:deb/debian/wordpress@5.5.3%2Bdfsg1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@5.5.3%252Bdfsg1-1%3Fdistro=trixie

url pkg:deb/debian/wordpress@5.7.11%2Bdfsg1-0%2Bdeb11u1?distro=trixie

purl pkg:deb/debian/wordpress@5.7.11%2Bdfsg1-0%2Bdeb11u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-eg3u-uaqx-m7f2

vulnerability	VCID-sjsv-4uy2-aqct

vulnerability	VCID-v95d-ak24-uqbz

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@5.7.11%252Bdfsg1-0%252Bdeb11u1%3Fdistro=trixie

url pkg:deb/debian/wordpress@6.1.9%2Bdfsg1-0%2Bdeb12u1?distro=trixie

purl pkg:deb/debian/wordpress@6.1.9%2Bdfsg1-0%2Bdeb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-sjsv-4uy2-aqct

vulnerability	VCID-v95d-ak24-uqbz

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.1.9%252Bdfsg1-0%252Bdeb12u1%3Fdistro=trixie

url	pkg:deb/debian/wordpress@6.8.3%2Bdfsg1-0%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/wordpress@6.8.3%2Bdfsg1-0%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.8.3%252Bdfsg1-0%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/wordpress@6.9.4%2Bdfsg1-1?distro=trixie
purl	pkg:deb/debian/wordpress@6.9.4%2Bdfsg1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.9.4%252Bdfsg1-1%3Fdistro=trixie

aliases CVE-2020-28032

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-eu98-xttk-pbbj

url VCID-fh3e-9a4w-4uc7

vulnerability_id VCID-fh3e-9a4w-4uc7

summary multiple issues

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-28034

reference_id

reference_type

scores

value	0.02678
scoring_system	epss
scoring_elements	0.86113
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-28034

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28032
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28032

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28033
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28033

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28034
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28034

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28035
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28035

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28036
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28036

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28037
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28037

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28038
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28038

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28039
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28039

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28040
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28040

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=973562
reference_id	973562
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=973562

reference_url	https://security.archlinux.org/ASA-202011-3
reference_id	ASA-202011-3
reference_type
scores
url	https://security.archlinux.org/ASA-202011-3

reference_url

https://security.archlinux.org/AVG-1257

reference_id

AVG-1257

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1257

fixed_packages

url	pkg:deb/debian/wordpress@5.5.3%2Bdfsg1-1?distro=trixie
purl	pkg:deb/debian/wordpress@5.5.3%2Bdfsg1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@5.5.3%252Bdfsg1-1%3Fdistro=trixie

url pkg:deb/debian/wordpress@5.7.11%2Bdfsg1-0%2Bdeb11u1?distro=trixie

purl pkg:deb/debian/wordpress@5.7.11%2Bdfsg1-0%2Bdeb11u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-eg3u-uaqx-m7f2

vulnerability	VCID-sjsv-4uy2-aqct

vulnerability	VCID-v95d-ak24-uqbz

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@5.7.11%252Bdfsg1-0%252Bdeb11u1%3Fdistro=trixie

url pkg:deb/debian/wordpress@6.1.9%2Bdfsg1-0%2Bdeb12u1?distro=trixie

purl pkg:deb/debian/wordpress@6.1.9%2Bdfsg1-0%2Bdeb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-sjsv-4uy2-aqct

vulnerability	VCID-v95d-ak24-uqbz

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.1.9%252Bdfsg1-0%252Bdeb12u1%3Fdistro=trixie

url	pkg:deb/debian/wordpress@6.8.3%2Bdfsg1-0%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/wordpress@6.8.3%2Bdfsg1-0%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.8.3%252Bdfsg1-0%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/wordpress@6.9.4%2Bdfsg1-1?distro=trixie
purl	pkg:deb/debian/wordpress@6.9.4%2Bdfsg1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.9.4%252Bdfsg1-1%3Fdistro=trixie

aliases CVE-2020-28034

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fh3e-9a4w-4uc7

url VCID-mxrj-1czt-zqd8

vulnerability_id VCID-mxrj-1czt-zqd8

summary multiple issues

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-28035

reference_id

reference_type

scores

value	0.06561
scoring_system	epss
scoring_elements	0.91308
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-28035

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28032
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28032

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28033
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28033

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28034
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28034

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28035
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28035

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28036
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28036

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28037
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28037

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28038
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28038

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28039
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28039

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28040
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28040

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=973562
reference_id	973562
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=973562

reference_url	https://security.archlinux.org/ASA-202011-3
reference_id	ASA-202011-3
reference_type
scores
url	https://security.archlinux.org/ASA-202011-3

reference_url

https://security.archlinux.org/AVG-1257

reference_id

AVG-1257

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1257

fixed_packages

url	pkg:deb/debian/wordpress@5.5.3%2Bdfsg1-1?distro=trixie
purl	pkg:deb/debian/wordpress@5.5.3%2Bdfsg1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@5.5.3%252Bdfsg1-1%3Fdistro=trixie

url pkg:deb/debian/wordpress@5.7.11%2Bdfsg1-0%2Bdeb11u1?distro=trixie

purl pkg:deb/debian/wordpress@5.7.11%2Bdfsg1-0%2Bdeb11u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-eg3u-uaqx-m7f2

vulnerability	VCID-sjsv-4uy2-aqct

vulnerability	VCID-v95d-ak24-uqbz

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@5.7.11%252Bdfsg1-0%252Bdeb11u1%3Fdistro=trixie

url pkg:deb/debian/wordpress@6.1.9%2Bdfsg1-0%2Bdeb12u1?distro=trixie

purl pkg:deb/debian/wordpress@6.1.9%2Bdfsg1-0%2Bdeb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-sjsv-4uy2-aqct

vulnerability	VCID-v95d-ak24-uqbz

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.1.9%252Bdfsg1-0%252Bdeb12u1%3Fdistro=trixie

url	pkg:deb/debian/wordpress@6.8.3%2Bdfsg1-0%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/wordpress@6.8.3%2Bdfsg1-0%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.8.3%252Bdfsg1-0%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/wordpress@6.9.4%2Bdfsg1-1?distro=trixie
purl	pkg:deb/debian/wordpress@6.9.4%2Bdfsg1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.9.4%252Bdfsg1-1%3Fdistro=trixie

aliases CVE-2020-28035

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mxrj-1czt-zqd8

url VCID-scs7-a2fa-xqad

vulnerability_id VCID-scs7-a2fa-xqad

summary multiple issues

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-28039

reference_id

reference_type

scores

value	0.06686
scoring_system	epss
scoring_elements	0.91402
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-28039

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28032
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28032

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28033
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28033

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28034
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28034

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28035
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28035

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28036
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28036

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28037
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28037

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28038
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28038

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28039
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28039

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28040
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28040

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=973562
reference_id	973562
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=973562

reference_url	https://security.archlinux.org/ASA-202011-3
reference_id	ASA-202011-3
reference_type
scores
url	https://security.archlinux.org/ASA-202011-3

reference_url

https://security.archlinux.org/AVG-1257

reference_id

AVG-1257

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1257

fixed_packages

url	pkg:deb/debian/wordpress@5.5.3%2Bdfsg1-1?distro=trixie
purl	pkg:deb/debian/wordpress@5.5.3%2Bdfsg1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@5.5.3%252Bdfsg1-1%3Fdistro=trixie

url pkg:deb/debian/wordpress@5.7.11%2Bdfsg1-0%2Bdeb11u1?distro=trixie

purl pkg:deb/debian/wordpress@5.7.11%2Bdfsg1-0%2Bdeb11u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-eg3u-uaqx-m7f2

vulnerability	VCID-sjsv-4uy2-aqct

vulnerability	VCID-v95d-ak24-uqbz

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@5.7.11%252Bdfsg1-0%252Bdeb11u1%3Fdistro=trixie

url pkg:deb/debian/wordpress@6.1.9%2Bdfsg1-0%2Bdeb12u1?distro=trixie

purl pkg:deb/debian/wordpress@6.1.9%2Bdfsg1-0%2Bdeb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-sjsv-4uy2-aqct

vulnerability	VCID-v95d-ak24-uqbz

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.1.9%252Bdfsg1-0%252Bdeb12u1%3Fdistro=trixie

url	pkg:deb/debian/wordpress@6.8.3%2Bdfsg1-0%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/wordpress@6.8.3%2Bdfsg1-0%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.8.3%252Bdfsg1-0%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/wordpress@6.9.4%2Bdfsg1-1?distro=trixie
purl	pkg:deb/debian/wordpress@6.9.4%2Bdfsg1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.9.4%252Bdfsg1-1%3Fdistro=trixie

aliases CVE-2020-28039

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-scs7-a2fa-xqad

url VCID-t78k-a5p3-ekd3

vulnerability_id VCID-t78k-a5p3-ekd3

summary multiple issues

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-28033

reference_id

reference_type

scores

value	0.01258
scoring_system	epss
scoring_elements	0.79732
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-28033

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28032
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28032

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28033
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28033

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28034
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28034

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28035
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28035

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28036
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28036

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28037
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28037

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28038
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28038

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28039
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28039

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28040
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28040

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=973562
reference_id	973562
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=973562

reference_url	https://security.archlinux.org/ASA-202011-3
reference_id	ASA-202011-3
reference_type
scores
url	https://security.archlinux.org/ASA-202011-3

reference_url

https://security.archlinux.org/AVG-1257

reference_id

AVG-1257

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1257

fixed_packages

url	pkg:deb/debian/wordpress@5.5.3%2Bdfsg1-1?distro=trixie
purl	pkg:deb/debian/wordpress@5.5.3%2Bdfsg1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@5.5.3%252Bdfsg1-1%3Fdistro=trixie

url pkg:deb/debian/wordpress@5.7.11%2Bdfsg1-0%2Bdeb11u1?distro=trixie

purl pkg:deb/debian/wordpress@5.7.11%2Bdfsg1-0%2Bdeb11u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-eg3u-uaqx-m7f2

vulnerability	VCID-sjsv-4uy2-aqct

vulnerability	VCID-v95d-ak24-uqbz

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@5.7.11%252Bdfsg1-0%252Bdeb11u1%3Fdistro=trixie

url pkg:deb/debian/wordpress@6.1.9%2Bdfsg1-0%2Bdeb12u1?distro=trixie

purl pkg:deb/debian/wordpress@6.1.9%2Bdfsg1-0%2Bdeb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-sjsv-4uy2-aqct

vulnerability	VCID-v95d-ak24-uqbz

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.1.9%252Bdfsg1-0%252Bdeb12u1%3Fdistro=trixie

url	pkg:deb/debian/wordpress@6.8.3%2Bdfsg1-0%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/wordpress@6.8.3%2Bdfsg1-0%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.8.3%252Bdfsg1-0%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/wordpress@6.9.4%2Bdfsg1-1?distro=trixie
purl	pkg:deb/debian/wordpress@6.9.4%2Bdfsg1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.9.4%252Bdfsg1-1%3Fdistro=trixie

aliases CVE-2020-28033

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-t78k-a5p3-ekd3

url VCID-ws42-mg4c-4kga

vulnerability_id VCID-ws42-mg4c-4kga

summary multiple issues

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-28036

reference_id

reference_type

scores

value	0.06383
scoring_system	epss
scoring_elements	0.91176
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-28036

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28032
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28032

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28033
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28033

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28034
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28034

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28035
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28035

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28036
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28036

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28037
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28037

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28038
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28038

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28039
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28039

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28040
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28040

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=973562
reference_id	973562
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=973562

reference_url	https://security.archlinux.org/ASA-202011-3
reference_id	ASA-202011-3
reference_type
scores
url	https://security.archlinux.org/ASA-202011-3

reference_url

https://security.archlinux.org/AVG-1257

reference_id

AVG-1257

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1257

fixed_packages

url	pkg:deb/debian/wordpress@5.5.3%2Bdfsg1-1?distro=trixie
purl	pkg:deb/debian/wordpress@5.5.3%2Bdfsg1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@5.5.3%252Bdfsg1-1%3Fdistro=trixie

url pkg:deb/debian/wordpress@5.7.11%2Bdfsg1-0%2Bdeb11u1?distro=trixie

purl pkg:deb/debian/wordpress@5.7.11%2Bdfsg1-0%2Bdeb11u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-eg3u-uaqx-m7f2

vulnerability	VCID-sjsv-4uy2-aqct

vulnerability	VCID-v95d-ak24-uqbz

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@5.7.11%252Bdfsg1-0%252Bdeb11u1%3Fdistro=trixie

url pkg:deb/debian/wordpress@6.1.9%2Bdfsg1-0%2Bdeb12u1?distro=trixie

purl pkg:deb/debian/wordpress@6.1.9%2Bdfsg1-0%2Bdeb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-sjsv-4uy2-aqct

vulnerability	VCID-v95d-ak24-uqbz

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.1.9%252Bdfsg1-0%252Bdeb12u1%3Fdistro=trixie

url	pkg:deb/debian/wordpress@6.8.3%2Bdfsg1-0%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/wordpress@6.8.3%2Bdfsg1-0%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.8.3%252Bdfsg1-0%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/wordpress@6.9.4%2Bdfsg1-1?distro=trixie
purl	pkg:deb/debian/wordpress@6.9.4%2Bdfsg1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.9.4%252Bdfsg1-1%3Fdistro=trixie

aliases CVE-2020-28036

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ws42-mg4c-4kga

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@5.5.3%252Bdfsg1-1%3Fdistro=trixie

Package Instance