Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:composer/phpmailer/phpmailer@6.0.0-rc5
Typecomposer
Namespacephpmailer
Namephpmailer
Version6.0.0-rc5
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version6.5.0
Latest_non_vulnerable_version6.5.0
Affected_by_vulnerabilities
0
url VCID-zju7-7wax-zfhz
vulnerability_id VCID-zju7-7wax-zfhz
summary 
XSS vulnerability in code example
The `code_generator.phps` example does not filter user input prior to output. This file is distributed with a `.phps` extension, so it it not normally executable unless it is explicitly renamed, so it is safe by default. There's also an undisclosed potential XSS vulnerability in the default exception handler (unused by default).
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2017-11503
reference_id
reference_type
scores
0
value 0.02226
scoring_system epss
scoring_elements 0.84507
published_at 2026-04-09T12:55:00Z
1
value 0.02226
scoring_system epss
scoring_elements 0.84538
published_at 2026-04-21T12:55:00Z
2
value 0.02226
scoring_system epss
scoring_elements 0.84537
published_at 2026-04-18T12:55:00Z
3
value 0.02226
scoring_system epss
scoring_elements 0.84516
published_at 2026-04-13T12:55:00Z
4
value 0.02226
scoring_system epss
scoring_elements 0.84525
published_at 2026-04-11T12:55:00Z
5
value 0.02226
scoring_system epss
scoring_elements 0.84501
published_at 2026-04-08T12:55:00Z
6
value 0.02226
scoring_system epss
scoring_elements 0.84443
published_at 2026-04-01T12:55:00Z
7
value 0.02226
scoring_system epss
scoring_elements 0.84458
published_at 2026-04-02T12:55:00Z
8
value 0.02226
scoring_system epss
scoring_elements 0.84478
published_at 2026-04-04T12:55:00Z
9
value 0.02226
scoring_system epss
scoring_elements 0.8448
published_at 2026-04-07T12:55:00Z
10
value 0.02226
scoring_system epss
scoring_elements 0.8452
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2017-11503
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11503
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11503
2
reference_url https://cxsecurity.com/issue/WLB-2017060181
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://cxsecurity.com/issue/WLB-2017060181
3
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/phpmailer/phpmailer/CVE-2017-11503.yaml
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/phpmailer/phpmailer/CVE-2017-11503.yaml
4
reference_url https://github.com/PHPMailer/PHPMailer/commit/dbbc1397c41de56aa3a57c8188d19a345dea5c63
reference_id
reference_type
scores
url https://github.com/PHPMailer/PHPMailer/commit/dbbc1397c41de56aa3a57c8188d19a345dea5c63
5
reference_url https://github.com/PHPMailer/PHPMailer/releases/tag/v5.2.24
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/PHPMailer/PHPMailer/releases/tag/v5.2.24
6
reference_url https://github.com/PHPMailer/PHPMailer/security/advisories/GHSA-58mj-pw57-4vm2
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/PHPMailer/PHPMailer/security/advisories/GHSA-58mj-pw57-4vm2
7
reference_url https://nvd.nist.gov/vuln/detail/CVE-2017-11503
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2017-11503
8
reference_url https://packetstormsecurity.com/files/143138/phpmailer-xss.txt
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://packetstormsecurity.com/files/143138/phpmailer-xss.txt
9
reference_url http://www.securityfocus.com/bid/99293
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.securityfocus.com/bid/99293
10
reference_url http://www.securityfocus.com/bid/99293/
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/99293/
11
reference_url http://www.securitytracker.com/id/1039026
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.securitytracker.com/id/1039026
12
reference_url https://github.com/advisories/GHSA-58mj-pw57-4vm2
reference_id GHSA-58mj-pw57-4vm2
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-58mj-pw57-4vm2
13
reference_url https://usn.ubuntu.com/5956-1/
reference_id USN-5956-1
reference_type
scores
url https://usn.ubuntu.com/5956-1/
14
reference_url https://usn.ubuntu.com/5956-2/
reference_id USN-5956-2
reference_type
scores
url https://usn.ubuntu.com/5956-2/
fixed_packages
aliases CVE-2017-11503, GHSA-58mj-pw57-4vm2
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zju7-7wax-zfhz
Fixing_vulnerabilities
Risk_score3.1
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:composer/phpmailer/phpmailer@6.0.0-rc5