Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:alpm/archlinux/mediawiki@1.31.1-1
Typealpm
Namespacearchlinux
Namemediawiki
Version1.31.1-1
Qualifiers
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version1.35.1-1
Latest_non_vulnerable_version1.38.3-1
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-35t3-tu86-nugv
vulnerability_id VCID-35t3-tu86-nugv
summary 
Mediawiki tarball is missing .htaccess files
Mediawiki 1.31 before 1.31.1 misses .htaccess files in the provided tarball used to protect some directories that shouldn't be web accessible.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-13258
reference_id
reference_type
scores
0
value 0.00136
scoring_system epss
scoring_elements 0.33438
published_at 2026-04-04T12:55:00Z
1
value 0.00136
scoring_system epss
scoring_elements 0.33121
published_at 2026-04-24T12:55:00Z
2
value 0.00136
scoring_system epss
scoring_elements 0.33273
published_at 2026-04-21T12:55:00Z
3
value 0.00136
scoring_system epss
scoring_elements 0.33309
published_at 2026-04-18T12:55:00Z
4
value 0.00136
scoring_system epss
scoring_elements 0.33333
published_at 2026-04-16T12:55:00Z
5
value 0.00136
scoring_system epss
scoring_elements 0.33271
published_at 2026-04-01T12:55:00Z
6
value 0.00136
scoring_system epss
scoring_elements 0.33319
published_at 2026-04-08T12:55:00Z
7
value 0.00136
scoring_system epss
scoring_elements 0.33407
published_at 2026-04-02T12:55:00Z
8
value 0.00136
scoring_system epss
scoring_elements 0.33277
published_at 2026-04-07T12:55:00Z
9
value 0.00136
scoring_system epss
scoring_elements 0.33293
published_at 2026-04-13T12:55:00Z
10
value 0.00136
scoring_system epss
scoring_elements 0.33315
published_at 2026-04-12T12:55:00Z
11
value 0.00136
scoring_system epss
scoring_elements 0.33357
published_at 2026-04-11T12:55:00Z
12
value 0.00136
scoring_system epss
scoring_elements 0.33354
published_at 2026-04-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-13258
1
reference_url https://github.com/wikimedia/mediawiki
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/wikimedia/mediawiki
2
reference_url https://lists.wikimedia.org/pipermail/wikitech-l/2018-September/090849.html
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.wikimedia.org/pipermail/wikitech-l/2018-September/090849.html
3
reference_url https://phabricator.wikimedia.org/T199029
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://phabricator.wikimedia.org/T199029
4
reference_url http://www.securitytracker.com/id/1041695
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.securitytracker.com/id/1041695
5
reference_url https://security.archlinux.org/ASA-201809-5
reference_id ASA-201809-5
reference_type
scores
url https://security.archlinux.org/ASA-201809-5
6
reference_url https://security.archlinux.org/AVG-765
reference_id AVG-765
reference_type
scores
0
value Medium
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-765
7
reference_url https://nvd.nist.gov/vuln/detail/CVE-2018-13258
reference_id CVE-2018-13258
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2018-13258
8
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/mediawiki/core/CVE-2018-13258.yaml
reference_id CVE-2018-13258.YAML
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/mediawiki/core/CVE-2018-13258.yaml
9
reference_url https://github.com/advisories/GHSA-2c28-7gwv-cpgf
reference_id GHSA-2c28-7gwv-cpgf
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-2c28-7gwv-cpgf
fixed_packages
0
url pkg:alpm/archlinux/mediawiki@1.31.1-1
purl pkg:alpm/archlinux/mediawiki@1.31.1-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/mediawiki@1.31.1-1
aliases CVE-2018-13258, GHSA-2c28-7gwv-cpgf
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-35t3-tu86-nugv
1
url VCID-sf61-byhw-17gv
vulnerability_id VCID-sf61-byhw-17gv
summary 
Mediawiki Improper Privilege Management
Mediawiki 1.31 before 1.31.1, 1.30.1, 1.29.3 and 1.27.5 contains a flaw where contrary to the documentation, $wgRateLimits entry for 'user' overrides that for 'newbie'.
references
0
reference_url https://access.redhat.com/errata/RHSA-2019:3142
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2019:3142
1
reference_url https://access.redhat.com/errata/RHSA-2019:3238
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2019:3238
2
reference_url https://access.redhat.com/errata/RHSA-2019:3813
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2019:3813
3
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-0503.json
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-0503.json
4
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-0503
reference_id
reference_type
scores
0
value 0.00383
scoring_system epss
scoring_elements 0.59566
published_at 2026-04-02T12:55:00Z
1
value 0.00383
scoring_system epss
scoring_elements 0.59601
published_at 2026-04-24T12:55:00Z
2
value 0.00383
scoring_system epss
scoring_elements 0.59631
published_at 2026-04-21T12:55:00Z
3
value 0.00383
scoring_system epss
scoring_elements 0.59647
published_at 2026-04-18T12:55:00Z
4
value 0.00383
scoring_system epss
scoring_elements 0.5964
published_at 2026-04-16T12:55:00Z
5
value 0.00383
scoring_system epss
scoring_elements 0.59607
published_at 2026-04-13T12:55:00Z
6
value 0.00383
scoring_system epss
scoring_elements 0.59611
published_at 2026-04-08T12:55:00Z
7
value 0.00383
scoring_system epss
scoring_elements 0.5956
published_at 2026-04-07T12:55:00Z
8
value 0.00383
scoring_system epss
scoring_elements 0.59493
published_at 2026-04-01T12:55:00Z
9
value 0.00383
scoring_system epss
scoring_elements 0.59591
published_at 2026-04-04T12:55:00Z
10
value 0.00383
scoring_system epss
scoring_elements 0.59627
published_at 2026-04-12T12:55:00Z
11
value 0.00383
scoring_system epss
scoring_elements 0.59643
published_at 2026-04-11T12:55:00Z
12
value 0.00383
scoring_system epss
scoring_elements 0.59624
published_at 2026-04-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-0503
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0503
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0503
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0504
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0504
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0505
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0505
8
reference_url https://github.com/wikimedia/mediawiki
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/wikimedia/mediawiki
9
reference_url https://lists.wikimedia.org/pipermail/wikitech-l/2018-September/090849.html
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.wikimedia.org/pipermail/wikitech-l/2018-September/090849.html
10
reference_url https://phabricator.wikimedia.org/T169545
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://phabricator.wikimedia.org/T169545
11
reference_url https://www.debian.org/security/2018/dsa-4301
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.debian.org/security/2018/dsa-4301
12
reference_url http://www.securitytracker.com/id/1041695
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.securitytracker.com/id/1041695
13
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1634161
reference_id 1634161
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1634161
14
reference_url https://security.archlinux.org/ASA-201809-5
reference_id ASA-201809-5
reference_type
scores
url https://security.archlinux.org/ASA-201809-5
15
reference_url https://security.archlinux.org/AVG-765
reference_id AVG-765
reference_type
scores
0
value Medium
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-765
16
reference_url https://nvd.nist.gov/vuln/detail/CVE-2018-0503
reference_id CVE-2018-0503
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2018-0503
17
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/mediawiki/core/CVE-2018-0503.yaml
reference_id CVE-2018-0503.YAML
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/mediawiki/core/CVE-2018-0503.yaml
18
reference_url https://github.com/advisories/GHSA-mhfv-9h99-jwg7
reference_id GHSA-mhfv-9h99-jwg7
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-mhfv-9h99-jwg7
fixed_packages
0
url pkg:alpm/archlinux/mediawiki@1.31.1-1
purl pkg:alpm/archlinux/mediawiki@1.31.1-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/mediawiki@1.31.1-1
aliases CVE-2018-0503, GHSA-mhfv-9h99-jwg7
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-sf61-byhw-17gv
2
url VCID-v27j-4pnt-n7h9
vulnerability_id VCID-v27j-4pnt-n7h9
summary 
Mediawiki BotPassword can bypass CentralAuth's account lock
Mediawiki 1.31 before 1.31.1, 1.30.1, 1.29.3 and 1.27.5 contains a flaw where BotPasswords can bypass CentralAuth's account lock
references
0
reference_url https://access.redhat.com/errata/RHSA-2019:3142
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2019:3142
1
reference_url https://access.redhat.com/errata/RHSA-2019:3238
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2019:3238
2
reference_url https://access.redhat.com/errata/RHSA-2019:3813
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2019:3813
3
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-0505.json
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-0505.json
4
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-0505
reference_id
reference_type
scores
0
value 0.00427
scoring_system epss
scoring_elements 0.62309
published_at 2026-04-01T12:55:00Z
1
value 0.00427
scoring_system epss
scoring_elements 0.6245
published_at 2026-04-21T12:55:00Z
2
value 0.00427
scoring_system epss
scoring_elements 0.62466
published_at 2026-04-18T12:55:00Z
3
value 0.00427
scoring_system epss
scoring_elements 0.6246
published_at 2026-04-24T12:55:00Z
4
value 0.00427
scoring_system epss
scoring_elements 0.62415
published_at 2026-04-13T12:55:00Z
5
value 0.00427
scoring_system epss
scoring_elements 0.62437
published_at 2026-04-12T12:55:00Z
6
value 0.00427
scoring_system epss
scoring_elements 0.62411
published_at 2026-04-08T12:55:00Z
7
value 0.00427
scoring_system epss
scoring_elements 0.62362
published_at 2026-04-07T12:55:00Z
8
value 0.00427
scoring_system epss
scoring_elements 0.62397
published_at 2026-04-04T12:55:00Z
9
value 0.00427
scoring_system epss
scoring_elements 0.62367
published_at 2026-04-02T12:55:00Z
10
value 0.00427
scoring_system epss
scoring_elements 0.62447
published_at 2026-04-11T12:55:00Z
11
value 0.00427
scoring_system epss
scoring_elements 0.62428
published_at 2026-04-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-0505
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0503
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0503
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0504
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0504
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0505
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0505
8
reference_url https://github.com/wikimedia/mediawiki
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/wikimedia/mediawiki
9
reference_url https://lists.wikimedia.org/pipermail/wikitech-l/2018-September/090849.html
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.wikimedia.org/pipermail/wikitech-l/2018-September/090849.html
10
reference_url https://phabricator.wikimedia.org/T194605
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://phabricator.wikimedia.org/T194605
11
reference_url https://www.debian.org/security/2018/dsa-4301
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.debian.org/security/2018/dsa-4301
12
reference_url http://www.securitytracker.com/id/1041695
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.securitytracker.com/id/1041695
13
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1634166
reference_id 1634166
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1634166
14
reference_url https://security.archlinux.org/ASA-201809-5
reference_id ASA-201809-5
reference_type
scores
url https://security.archlinux.org/ASA-201809-5
15
reference_url https://security.archlinux.org/AVG-765
reference_id AVG-765
reference_type
scores
0
value Medium
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-765
16
reference_url https://nvd.nist.gov/vuln/detail/CVE-2018-0505
reference_id CVE-2018-0505
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2018-0505
17
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/mediawiki/core/CVE-2018-0505.yaml
reference_id CVE-2018-0505.YAML
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/mediawiki/core/CVE-2018-0505.yaml
18
reference_url https://github.com/advisories/GHSA-5c6w-f4w2-2grp
reference_id GHSA-5c6w-f4w2-2grp
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-5c6w-f4w2-2grp
fixed_packages
0
url pkg:alpm/archlinux/mediawiki@1.31.1-1
purl pkg:alpm/archlinux/mediawiki@1.31.1-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/mediawiki@1.31.1-1
aliases CVE-2018-0505, GHSA-5c6w-f4w2-2grp
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-v27j-4pnt-n7h9
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/mediawiki@1.31.1-1