Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:gem/actionpack@2.3.0.alpha0
Typegem
Namespace
Nameactionpack
Version2.3.0.alpha0
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version7.0.8.7
Latest_non_vulnerable_version8.1.2.1
Affected_by_vulnerabilities
0
url VCID-kr1b-uct1-7kf6
vulnerability_id VCID-kr1b-uct1-7kf6
summary 
Response Splitting Vulnerability in Ruby on Rails
A response splitting flaw can allow a remote attacker to inject arbitrary HTTP headers into a response due to insufficient sanitization of the values provided for response content types.
references
0
reference_url http://groups.google.com/group/rubyonrails-security/msg/bbe342e43abaa78c?dmode=source&output=gplain
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://groups.google.com/group/rubyonrails-security/msg/bbe342e43abaa78c?dmode=source&output=gplain
1
reference_url http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065137.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065137.html
2
reference_url https://api.first.org/data/v1/epss?cve=CVE-2011-3186
reference_id
reference_type
scores
0
value 0.00814
scoring_system epss
scoring_elements 0.74353
published_at 2026-04-29T12:55:00Z
1
value 0.00814
scoring_system epss
scoring_elements 0.74228
published_at 2026-04-01T12:55:00Z
2
value 0.00814
scoring_system epss
scoring_elements 0.74232
published_at 2026-04-07T12:55:00Z
3
value 0.00814
scoring_system epss
scoring_elements 0.74259
published_at 2026-04-04T12:55:00Z
4
value 0.00814
scoring_system epss
scoring_elements 0.74265
published_at 2026-04-08T12:55:00Z
5
value 0.00814
scoring_system epss
scoring_elements 0.7428
published_at 2026-04-09T12:55:00Z
6
value 0.00814
scoring_system epss
scoring_elements 0.74301
published_at 2026-04-11T12:55:00Z
7
value 0.00814
scoring_system epss
scoring_elements 0.74282
published_at 2026-04-12T12:55:00Z
8
value 0.00814
scoring_system epss
scoring_elements 0.74274
published_at 2026-04-13T12:55:00Z
9
value 0.00814
scoring_system epss
scoring_elements 0.74311
published_at 2026-04-16T12:55:00Z
10
value 0.00814
scoring_system epss
scoring_elements 0.7432
published_at 2026-04-18T12:55:00Z
11
value 0.00814
scoring_system epss
scoring_elements 0.74312
published_at 2026-04-21T12:55:00Z
12
value 0.00814
scoring_system epss
scoring_elements 0.74345
published_at 2026-04-24T12:55:00Z
13
value 0.00814
scoring_system epss
scoring_elements 0.74354
published_at 2026-04-26T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2011-3186
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=732156
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=732156
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3186
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3186
5
reference_url https://github.com/rails/rails
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/rails/rails
6
reference_url https://github.com/rails/rails/commit/11dafeaa7533be26441a63618be93a03869c83a9
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/rails/rails/commit/11dafeaa7533be26441a63618be93a03869c83a9
7
reference_url https://github.com/rails/rails/commit/11dafeaa7533be26441a63618be93a03869c83a9#diff-62558f372a46058cbab9309494d0fbb1
reference_id
reference_type
scores
url https://github.com/rails/rails/commit/11dafeaa7533be26441a63618be93a03869c83a9#diff-62558f372a46058cbab9309494d0fbb1
8
reference_url https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2011-3186.yml
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2011-3186.yml
9
reference_url https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/OSVDB-74616.yml
reference_id
reference_type
scores
url https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/OSVDB-74616.yml
10
reference_url https://groups.google.com/forum/#!topic/rubyonrails-security/b_yTveAph2g
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://groups.google.com/forum/#!topic/rubyonrails-security/b_yTveAph2g
11
reference_url https://nvd.nist.gov/vuln/detail/CVE-2011-3186
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2011-3186
12
reference_url https://web.archive.org/web/20150201000000*/http://secunia.com/advisories/45921
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20150201000000*/http://secunia.com/advisories/45921
13
reference_url http://www.debian.org/security/2011/dsa-2301
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.debian.org/security/2011/dsa-2301
14
reference_url http://www.openwall.com/lists/oss-security/2011/08/17/1
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.openwall.com/lists/oss-security/2011/08/17/1
15
reference_url http://www.openwall.com/lists/oss-security/2011/08/19/11
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.openwall.com/lists/oss-security/2011/08/19/11
16
reference_url http://www.openwall.com/lists/oss-security/2011/08/20/1
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.openwall.com/lists/oss-security/2011/08/20/1
17
reference_url http://www.openwall.com/lists/oss-security/2011/08/22/13
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.openwall.com/lists/oss-security/2011/08/22/13
18
reference_url http://www.openwall.com/lists/oss-security/2011/08/22/14
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.openwall.com/lists/oss-security/2011/08/22/14
19
reference_url http://www.openwall.com/lists/oss-security/2011/08/22/5
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.openwall.com/lists/oss-security/2011/08/22/5
20
reference_url https://github.com/advisories/GHSA-fcqf-h4h4-695m
reference_id GHSA-fcqf-h4h4-695m
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-fcqf-h4h4-695m
21
reference_url https://security.gentoo.org/glsa/201412-28
reference_id GLSA-201412-28
reference_type
scores
url https://security.gentoo.org/glsa/201412-28
fixed_packages
0
url pkg:gem/actionpack@2.3.13
purl pkg:gem/actionpack@2.3.13
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/actionpack@2.3.13
1
url pkg:gem/actionpack@2.3.14
purl pkg:gem/actionpack@2.3.14
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1rgy-k7a9-m7au
1
vulnerability VCID-1xgz-hwng-n3eq
2
vulnerability VCID-333w-aacz-mfcr
3
vulnerability VCID-3wtf-uu89-2qe5
4
vulnerability VCID-3x4p-t3yb-3yak
5
vulnerability VCID-3zdr-vasc-a7cn
6
vulnerability VCID-49pq-vg95-jkh2
7
vulnerability VCID-4epw-vk25-mfdw
8
vulnerability VCID-4he5-y1u4-gkd2
9
vulnerability VCID-5hqj-fxmk-cbcy
10
vulnerability VCID-63gy-6njy-kbd8
11
vulnerability VCID-6j55-bstz-yybj
12
vulnerability VCID-7f5r-9h1g-nuch
13
vulnerability VCID-9hq5-3usy-5fhq
14
vulnerability VCID-a6sp-18av-wya6
15
vulnerability VCID-awt1-8bxs-xffs
16
vulnerability VCID-bjwf-uhyk-63aj
17
vulnerability VCID-c1w4-z275-tqg7
18
vulnerability VCID-carc-ntrd-ebfe
19
vulnerability VCID-cdnw-t8n1-23ep
20
vulnerability VCID-cnqr-6e98-5kgk
21
vulnerability VCID-cwa7-9d2t-rfhb
22
vulnerability VCID-dd9p-x7k3-37ea
23
vulnerability VCID-ehbj-aezy-d7h4
24
vulnerability VCID-g3rk-djae-pkeh
25
vulnerability VCID-h8gs-ansa-9bd9
26
vulnerability VCID-h94p-ywve-y7h9
27
vulnerability VCID-hmp2-rmzv-wkhg
28
vulnerability VCID-hppf-a715-r7b2
29
vulnerability VCID-j24x-nhsb-yug6
30
vulnerability VCID-kcj2-v7av-47cv
31
vulnerability VCID-knsd-pv15-tydx
32
vulnerability VCID-mep3-6sub-ykdk
33
vulnerability VCID-mnkw-23eu-bkgc
34
vulnerability VCID-msda-xqbp-qfdd
35
vulnerability VCID-n8cc-3stk-97b5
36
vulnerability VCID-nf8s-2aaa-17fw
37
vulnerability VCID-p5mc-r1rg-5ff7
38
vulnerability VCID-phxs-zet8-ryh3
39
vulnerability VCID-pmrb-t3bm-zkb6
40
vulnerability VCID-rps2-k24p-9qgq
41
vulnerability VCID-sfyc-jewr-wuf5
42
vulnerability VCID-sgdb-985e-4uej
43
vulnerability VCID-tt6r-bytq-4fa4
44
vulnerability VCID-v3r3-bwp5-a3bn
45
vulnerability VCID-vgm2-8wjy-x7ed
46
vulnerability VCID-wg3a-j2dp-ayh4
47
vulnerability VCID-y8gn-9fat-e7d1
48
vulnerability VCID-ynqu-cjn9-fqf2
49
vulnerability VCID-zkvd-bfd6-t7dg
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/actionpack@2.3.14
2
url pkg:gem/actionpack@3.0.0.beta
purl pkg:gem/actionpack@3.0.0.beta
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1rgy-k7a9-m7au
1
vulnerability VCID-1xgz-hwng-n3eq
2
vulnerability VCID-333w-aacz-mfcr
3
vulnerability VCID-3wtf-uu89-2qe5
4
vulnerability VCID-3x4p-t3yb-3yak
5
vulnerability VCID-3zdr-vasc-a7cn
6
vulnerability VCID-49pq-vg95-jkh2
7
vulnerability VCID-4epw-vk25-mfdw
8
vulnerability VCID-4he5-y1u4-gkd2
9
vulnerability VCID-5hqj-fxmk-cbcy
10
vulnerability VCID-63gy-6njy-kbd8
11
vulnerability VCID-6j55-bstz-yybj
12
vulnerability VCID-7f5r-9h1g-nuch
13
vulnerability VCID-86jq-2md2-d7ah
14
vulnerability VCID-9hq5-3usy-5fhq
15
vulnerability VCID-a6sp-18av-wya6
16
vulnerability VCID-awt1-8bxs-xffs
17
vulnerability VCID-bjwf-uhyk-63aj
18
vulnerability VCID-c1w4-z275-tqg7
19
vulnerability VCID-carc-ntrd-ebfe
20
vulnerability VCID-cdnw-t8n1-23ep
21
vulnerability VCID-cnqr-6e98-5kgk
22
vulnerability VCID-cwa7-9d2t-rfhb
23
vulnerability VCID-dd9p-x7k3-37ea
24
vulnerability VCID-ehbj-aezy-d7h4
25
vulnerability VCID-g3rk-djae-pkeh
26
vulnerability VCID-h8gs-ansa-9bd9
27
vulnerability VCID-h94p-ywve-y7h9
28
vulnerability VCID-hmp2-rmzv-wkhg
29
vulnerability VCID-hppf-a715-r7b2
30
vulnerability VCID-j24x-nhsb-yug6
31
vulnerability VCID-kcj2-v7av-47cv
32
vulnerability VCID-knsd-pv15-tydx
33
vulnerability VCID-mep3-6sub-ykdk
34
vulnerability VCID-mnkw-23eu-bkgc
35
vulnerability VCID-msda-xqbp-qfdd
36
vulnerability VCID-n8cc-3stk-97b5
37
vulnerability VCID-nf8s-2aaa-17fw
38
vulnerability VCID-p5mc-r1rg-5ff7
39
vulnerability VCID-phxs-zet8-ryh3
40
vulnerability VCID-pmrb-t3bm-zkb6
41
vulnerability VCID-rps2-k24p-9qgq
42
vulnerability VCID-sfyc-jewr-wuf5
43
vulnerability VCID-sgdb-985e-4uej
44
vulnerability VCID-tt6r-bytq-4fa4
45
vulnerability VCID-v3r3-bwp5-a3bn
46
vulnerability VCID-vgm2-8wjy-x7ed
47
vulnerability VCID-wg3a-j2dp-ayh4
48
vulnerability VCID-y8gn-9fat-e7d1
49
vulnerability VCID-ynqu-cjn9-fqf2
50
vulnerability VCID-zkvd-bfd6-t7dg
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/actionpack@3.0.0.beta
aliases CVE-2011-3186, GHSA-fcqf-h4h4-695m, OSV-74616
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-kr1b-uct1-7kf6
Fixing_vulnerabilities
Risk_score3.1
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:gem/actionpack@2.3.0.alpha0