Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:deb/debian/apache2@2.0.43-1?distro=trixie
Typedeb
Namespacedebian
Nameapache2
Version2.0.43-1
Qualifiers
distro trixie
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version2.0.45
Latest_non_vulnerable_version2.4.66-8
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-nkgw-gs9g-ckft
vulnerability_id VCID-nkgw-gs9g-ckft
summary Cross-site scripting (XSS) vulnerability in the default error page of Apache 2.0 before 2.0.43, and 1.3.x up to 1.3.26, when UseCanonicalName is "Off" and support for wildcard DNS is present, allows remote attackers to execute script as other web page visitors via the Host: header.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2002-0840.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2002-0840.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2002-0840
reference_id
reference_type
scores
0
value 0.91102
scoring_system epss
scoring_elements 0.99648
published_at 2026-04-21T12:55:00Z
1
value 0.91102
scoring_system epss
scoring_elements 0.99642
published_at 2026-04-04T12:55:00Z
2
value 0.91102
scoring_system epss
scoring_elements 0.99641
published_at 2026-04-02T12:55:00Z
3
value 0.91102
scoring_system epss
scoring_elements 0.99644
published_at 2026-04-11T12:55:00Z
4
value 0.91102
scoring_system epss
scoring_elements 0.99645
published_at 2026-04-13T12:55:00Z
5
value 0.91102
scoring_system epss
scoring_elements 0.99646
published_at 2026-04-16T12:55:00Z
6
value 0.91102
scoring_system epss
scoring_elements 0.99647
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2002-0840
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-0840
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-0840
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1616823
reference_id 1616823
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1616823
4
reference_url https://httpd.apache.org/security/json/CVE-2002-0840.json
reference_id CVE-2002-0840
reference_type
scores
0
value low
scoring_system apache_httpd
scoring_elements
url https://httpd.apache.org/security/json/CVE-2002-0840.json
5
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/21885.txt
reference_id CVE-2002-0840;OSVDB-862
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/21885.txt
6
reference_url https://www.securityfocus.com/bid/5847/info
reference_id CVE-2002-0840;OSVDB-862
reference_type exploit
scores
url https://www.securityfocus.com/bid/5847/info
7
reference_url https://access.redhat.com/errata/RHSA-2002:222
reference_id RHSA-2002:222
reference_type
scores
url https://access.redhat.com/errata/RHSA-2002:222
8
reference_url https://access.redhat.com/errata/RHSA-2002:243
reference_id RHSA-2002:243
reference_type
scores
url https://access.redhat.com/errata/RHSA-2002:243
9
reference_url https://access.redhat.com/errata/RHSA-2002:244
reference_id RHSA-2002:244
reference_type
scores
url https://access.redhat.com/errata/RHSA-2002:244
10
reference_url https://access.redhat.com/errata/RHSA-2002:248
reference_id RHSA-2002:248
reference_type
scores
url https://access.redhat.com/errata/RHSA-2002:248
11
reference_url https://access.redhat.com/errata/RHSA-2002:251
reference_id RHSA-2002:251
reference_type
scores
url https://access.redhat.com/errata/RHSA-2002:251
12
reference_url https://access.redhat.com/errata/RHSA-2003:106
reference_id RHSA-2003:106
reference_type
scores
url https://access.redhat.com/errata/RHSA-2003:106
fixed_packages
0
url pkg:deb/debian/apache2@2.0.43-1?distro=trixie
purl pkg:deb/debian/apache2@2.0.43-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.0.43-1%3Fdistro=trixie
1
url pkg:deb/debian/apache2@2.4.62-1~deb11u1?distro=trixie
purl pkg:deb/debian/apache2@2.4.62-1~deb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.62-1~deb11u1%3Fdistro=trixie
2
url pkg:deb/debian/apache2@2.4.66-1~deb12u1?distro=trixie
purl pkg:deb/debian/apache2@2.4.66-1~deb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.66-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/apache2@2.4.66-1~deb13u2?distro=trixie
purl pkg:deb/debian/apache2@2.4.66-1~deb13u2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.66-1~deb13u2%3Fdistro=trixie
4
url pkg:deb/debian/apache2@2.4.66-8?distro=trixie
purl pkg:deb/debian/apache2@2.4.66-8?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.66-8%3Fdistro=trixie
aliases CVE-2002-0840
risk_score 4.2
exploitability 2.0
weighted_severity 2.1
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-nkgw-gs9g-ckft
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.0.43-1%3Fdistro=trixie