Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:alpm/archlinux/drupal@8.2.3-1
Typealpm
Namespacearchlinux
Namedrupal
Version8.2.3-1
Qualifiers
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version8.5.1-1
Latest_non_vulnerable_version9.2.9-1
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-sktb-khbq-cuaq
vulnerability_id VCID-sktb-khbq-cuaq
summary 
Incorrect cache context on password reset page
The user password reset form does not specify a proper cache context, which can lead to cache poisoning and unwanted content on the page.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2016-9450
reference_id
reference_type
scores
0
value 0.00227
scoring_system epss
scoring_elements 0.45449
published_at 2026-04-21T12:55:00Z
1
value 0.00227
scoring_system epss
scoring_elements 0.45365
published_at 2026-04-01T12:55:00Z
2
value 0.00227
scoring_system epss
scoring_elements 0.45439
published_at 2026-04-02T12:55:00Z
3
value 0.00227
scoring_system epss
scoring_elements 0.4546
published_at 2026-04-09T12:55:00Z
4
value 0.00227
scoring_system epss
scoring_elements 0.45405
published_at 2026-04-07T12:55:00Z
5
value 0.00227
scoring_system epss
scoring_elements 0.45459
published_at 2026-04-08T12:55:00Z
6
value 0.00227
scoring_system epss
scoring_elements 0.45481
published_at 2026-04-11T12:55:00Z
7
value 0.00227
scoring_system epss
scoring_elements 0.45451
published_at 2026-04-12T12:55:00Z
8
value 0.00227
scoring_system epss
scoring_elements 0.45452
published_at 2026-04-13T12:55:00Z
9
value 0.00227
scoring_system epss
scoring_elements 0.45503
published_at 2026-04-16T12:55:00Z
10
value 0.00227
scoring_system epss
scoring_elements 0.45499
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2016-9450
1
reference_url https://github.com/drupal/core
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/drupal/core
2
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/drupal/core/CVE-2016-9450.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/drupal/core/CVE-2016-9450.yaml
3
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/drupal/drupal/CVE-2016-9450.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/drupal/drupal/CVE-2016-9450.yaml
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2016-9450
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2016-9450
5
reference_url https://www.drupal.org/SA-CORE-2016-005
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://www.drupal.org/SA-CORE-2016-005
6
reference_url http://www.securityfocus.com/bid/94367
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url http://www.securityfocus.com/bid/94367
7
reference_url https://security.archlinux.org/ASA-201611-20
reference_id ASA-201611-20
reference_type
scores
url https://security.archlinux.org/ASA-201611-20
8
reference_url https://security.archlinux.org/AVG-74
reference_id AVG-74
reference_type
scores
0
value Medium
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-74
9
reference_url https://github.com/advisories/GHSA-98w5-wqp9-w466
reference_id GHSA-98w5-wqp9-w466
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-98w5-wqp9-w466
fixed_packages
0
url pkg:alpm/archlinux/drupal@8.2.3-1
purl pkg:alpm/archlinux/drupal@8.2.3-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/drupal@8.2.3-1
aliases CVE-2016-9450, GHSA-98w5-wqp9-w466
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-sktb-khbq-cuaq
1
url VCID-vy1y-zkf3-4ue4
vulnerability_id VCID-vy1y-zkf3-4ue4
summary 
Denial of service via transliterate mechanism
A specially crafted URL can cause a denial of service via the transliterate mechanism.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2016-9452
reference_id
reference_type
scores
0
value 0.00378
scoring_system epss
scoring_elements 0.59245
published_at 2026-04-01T12:55:00Z
1
value 0.00378
scoring_system epss
scoring_elements 0.59375
published_at 2026-04-21T12:55:00Z
2
value 0.00378
scoring_system epss
scoring_elements 0.59394
published_at 2026-04-18T12:55:00Z
3
value 0.00378
scoring_system epss
scoring_elements 0.59388
published_at 2026-04-16T12:55:00Z
4
value 0.00378
scoring_system epss
scoring_elements 0.59356
published_at 2026-04-13T12:55:00Z
5
value 0.00378
scoring_system epss
scoring_elements 0.59374
published_at 2026-04-12T12:55:00Z
6
value 0.00378
scoring_system epss
scoring_elements 0.5939
published_at 2026-04-11T12:55:00Z
7
value 0.00378
scoring_system epss
scoring_elements 0.59319
published_at 2026-04-02T12:55:00Z
8
value 0.00378
scoring_system epss
scoring_elements 0.59371
published_at 2026-04-09T12:55:00Z
9
value 0.00378
scoring_system epss
scoring_elements 0.59358
published_at 2026-04-08T12:55:00Z
10
value 0.00378
scoring_system epss
scoring_elements 0.59307
published_at 2026-04-07T12:55:00Z
11
value 0.00378
scoring_system epss
scoring_elements 0.59343
published_at 2026-04-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2016-9452
1
reference_url https://github.com/drupal/core
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/drupal/core
2
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/drupal/core/CVE-2016-9452.yaml
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/drupal/core/CVE-2016-9452.yaml
3
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/drupal/drupal/CVE-2016-9452.yaml
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/drupal/drupal/CVE-2016-9452.yaml
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2016-9452
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2016-9452
5
reference_url https://www.drupal.org/SA-CORE-2016-005
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.drupal.org/SA-CORE-2016-005
6
reference_url http://www.securityfocus.com/bid/94367
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.securityfocus.com/bid/94367
7
reference_url https://security.archlinux.org/ASA-201611-20
reference_id ASA-201611-20
reference_type
scores
url https://security.archlinux.org/ASA-201611-20
8
reference_url https://security.archlinux.org/AVG-74
reference_id AVG-74
reference_type
scores
0
value Medium
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-74
9
reference_url https://github.com/advisories/GHSA-jpj8-49hr-wcwv
reference_id GHSA-jpj8-49hr-wcwv
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-jpj8-49hr-wcwv
fixed_packages
0
url pkg:alpm/archlinux/drupal@8.2.3-1
purl pkg:alpm/archlinux/drupal@8.2.3-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/drupal@8.2.3-1
aliases CVE-2016-9452, GHSA-jpj8-49hr-wcwv
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vy1y-zkf3-4ue4
2
url VCID-yrzt-3m97-53ce
vulnerability_id VCID-yrzt-3m97-53ce
summary 
Unprivileged access to taxonomy terms
Modules wishing to restrict access to taxonomy terms may be incompatible with queries generated both by Drupal core as well as those generated by contributed modules like Entity Reference. As a result, information on taxonomy terms may be disclosed to unprivileged users.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2016-9449
reference_id
reference_type
scores
0
value 0.00215
scoring_system epss
scoring_elements 0.44037
published_at 2026-04-02T12:55:00Z
1
value 0.00215
scoring_system epss
scoring_elements 0.43997
published_at 2026-04-21T12:55:00Z
2
value 0.00215
scoring_system epss
scoring_elements 0.44063
published_at 2026-04-18T12:55:00Z
3
value 0.00215
scoring_system epss
scoring_elements 0.44072
published_at 2026-04-16T12:55:00Z
4
value 0.00215
scoring_system epss
scoring_elements 0.4406
published_at 2026-04-11T12:55:00Z
5
value 0.00215
scoring_system epss
scoring_elements 0.43989
published_at 2026-04-01T12:55:00Z
6
value 0.00215
scoring_system epss
scoring_elements 0.44011
published_at 2026-04-13T12:55:00Z
7
value 0.00215
scoring_system epss
scoring_elements 0.44027
published_at 2026-04-12T12:55:00Z
8
value 0.00215
scoring_system epss
scoring_elements 0.44045
published_at 2026-04-09T12:55:00Z
9
value 0.00215
scoring_system epss
scoring_elements 0.44042
published_at 2026-04-08T12:55:00Z
10
value 0.00215
scoring_system epss
scoring_elements 0.43991
published_at 2026-04-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2016-9449
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9449
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9449
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9451
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9451
3
reference_url https://github.com/drupal/core
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/drupal/core
4
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/drupal/core/CVE-2016-9449.yaml
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/drupal/core/CVE-2016-9449.yaml
5
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/drupal/drupal/CVE-2016-9449.yaml
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/drupal/drupal/CVE-2016-9449.yaml
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2016-9449
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2016-9449
7
reference_url https://www.drupal.org/SA-CORE-2016-005
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.drupal.org/SA-CORE-2016-005
8
reference_url http://www.debian.org/security/2016/dsa-3718
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.debian.org/security/2016/dsa-3718
9
reference_url http://www.securityfocus.com/bid/94367
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.securityfocus.com/bid/94367
10
reference_url https://security.archlinux.org/ASA-201611-20
reference_id ASA-201611-20
reference_type
scores
url https://security.archlinux.org/ASA-201611-20
11
reference_url https://security.archlinux.org/AVG-74
reference_id AVG-74
reference_type
scores
0
value Medium
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-74
12
reference_url https://github.com/advisories/GHSA-p745-347h-hjfw
reference_id GHSA-p745-347h-hjfw
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-p745-347h-hjfw
fixed_packages
0
url pkg:alpm/archlinux/drupal@8.2.3-1
purl pkg:alpm/archlinux/drupal@8.2.3-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/drupal@8.2.3-1
aliases CVE-2016-9449, GHSA-p745-347h-hjfw
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-yrzt-3m97-53ce
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/drupal@8.2.3-1