Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:pypi/moin@1.8.0
Typepypi
Namespace
Namemoin
Version1.8.0
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version1.8.1
Latest_non_vulnerable_version1.9.11
Affected_by_vulnerabilities
0
url VCID-5k2q-y419-qbcf
vulnerability_id VCID-5k2q-y419-qbcf
summary MoinMoin 1.7.x before 1.7.3 and 1.8.x before 1.8.3 checks parent ACLs in certain inappropriate circumstances during processing of hierarchical ACLs, which allows remote attackers to bypass intended access restrictions by requesting an item, a different vulnerability than CVE-2008-6603.
references
0
reference_url http://hg.moinmo.in/moin/1.7/rev/897cdbe9e8f2
reference_id
reference_type
scores
url http://hg.moinmo.in/moin/1.7/rev/897cdbe9e8f2
1
reference_url http://hg.moinmo.in/moin/1.8/rev/897cdbe9e8f2
reference_id
reference_type
scores
url http://hg.moinmo.in/moin/1.8/rev/897cdbe9e8f2
2
reference_url http://moinmo.in/SecurityFixes
reference_id
reference_type
scores
url http://moinmo.in/SecurityFixes
3
reference_url http://secunia.com/advisories/39887
reference_id
reference_type
scores
url http://secunia.com/advisories/39887
4
reference_url https://github.com/moinwiki/moin
reference_id
reference_type
scores
url https://github.com/moinwiki/moin
5
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/moin/PYSEC-2010-13.yaml
reference_id
reference_type
scores
url https://github.com/pypa/advisory-database/tree/main/vulns/moin/PYSEC-2010-13.yaml
6
reference_url https://web.archive.org/web/20140805132556/http://secunia.com/advisories/39887
reference_id
reference_type
scores
url https://web.archive.org/web/20140805132556/http://secunia.com/advisories/39887
7
reference_url https://web.archive.org/web/20200228153929/http://www.securityfocus.com/bid/35277
reference_id
reference_type
scores
url https://web.archive.org/web/20200228153929/http://www.securityfocus.com/bid/35277
8
reference_url http://ubuntu.com/usn/usn-941-1
reference_id
reference_type
scores
url http://ubuntu.com/usn/usn-941-1
9
reference_url http://www.debian.org/security/2010/dsa-2014
reference_id
reference_type
scores
url http://www.debian.org/security/2010/dsa-2014
10
reference_url http://www.securityfocus.com/bid/35277
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/35277
11
reference_url http://www.vupen.com/english/advisories/2010/0600
reference_id
reference_type
scores
url http://www.vupen.com/english/advisories/2010/0600
12
reference_url http://www.vupen.com/english/advisories/2010/1208
reference_id
reference_type
scores
url http://www.vupen.com/english/advisories/2010/1208
13
reference_url https://nvd.nist.gov/vuln/detail/CVE-2009-4762
reference_id CVE-2009-4762
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2009-4762
14
reference_url https://github.com/advisories/GHSA-jj23-fj2v-m872
reference_id GHSA-jj23-fj2v-m872
reference_type
scores
url https://github.com/advisories/GHSA-jj23-fj2v-m872
fixed_packages
0
url pkg:pypi/moin@1.8.3
purl pkg:pypi/moin@1.8.3
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/moin@1.8.3
aliases CVE-2009-4762, GHSA-jj23-fj2v-m872, PYSEC-2010-13
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5k2q-y419-qbcf
1
url VCID-8xsp-chsd-cfhp
vulnerability_id VCID-8xsp-chsd-cfhp
summary Cross-site scripting (XSS) vulnerability in action/Despam.py in the Despam action module in MoinMoin 1.8.7 and 1.9.2 allows remote authenticated users to inject arbitrary web script or HTML by creating a page with a crafted URI.
references
0
reference_url http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=575995
reference_id
reference_type
scores
url http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=575995
1
reference_url http://hg.moinmo.in/moin/1.9/rev/6e603e5411ca
reference_id
reference_type
scores
url http://hg.moinmo.in/moin/1.9/rev/6e603e5411ca
2
reference_url http://lists.fedoraproject.org/pipermail/package-announce/2010-April/038490.html
reference_id
reference_type
scores
url http://lists.fedoraproject.org/pipermail/package-announce/2010-April/038490.html
3
reference_url http://lists.fedoraproject.org/pipermail/package-announce/2010-April/038574.html
reference_id
reference_type
scores
url http://lists.fedoraproject.org/pipermail/package-announce/2010-April/038574.html
4
reference_url http://lists.fedoraproject.org/pipermail/package-announce/2010-April/038706.html
reference_id
reference_type
scores
url http://lists.fedoraproject.org/pipermail/package-announce/2010-April/038706.html
5
reference_url https://bugs.launchpad.net/ubuntu/+source/moin/+bug/538022
reference_id
reference_type
scores
url https://bugs.launchpad.net/ubuntu/+source/moin/+bug/538022
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=578801
reference_id
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=578801
7
reference_url http://secunia.com/advisories/39188
reference_id
reference_type
scores
url http://secunia.com/advisories/39188
8
reference_url http://secunia.com/advisories/39190
reference_id
reference_type
scores
url http://secunia.com/advisories/39190
9
reference_url http://secunia.com/advisories/39267
reference_id
reference_type
scores
url http://secunia.com/advisories/39267
10
reference_url http://secunia.com/advisories/39284
reference_id
reference_type
scores
url http://secunia.com/advisories/39284
11
reference_url https://exchange.xforce.ibmcloud.com/vulnerabilities/57435
reference_id
reference_type
scores
url https://exchange.xforce.ibmcloud.com/vulnerabilities/57435
12
reference_url https://github.com/moinwiki/moin
reference_id
reference_type
scores
url https://github.com/moinwiki/moin
13
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/moin/PYSEC-2010-28.yaml
reference_id
reference_type
scores
url https://github.com/pypa/advisory-database/tree/main/vulns/moin/PYSEC-2010-28.yaml
14
reference_url https://web.archive.org/web/20151017002542/http://secunia.com/advisories/39284
reference_id
reference_type
scores
url https://web.archive.org/web/20151017002542/http://secunia.com/advisories/39284
15
reference_url https://web.archive.org/web/20151017033127/http://secunia.com/advisories/39267
reference_id
reference_type
scores
url https://web.archive.org/web/20151017033127/http://secunia.com/advisories/39267
16
reference_url https://web.archive.org/web/20151017033557/http://secunia.com/advisories/39190
reference_id
reference_type
scores
url https://web.archive.org/web/20151017033557/http://secunia.com/advisories/39190
17
reference_url https://web.archive.org/web/20151104183344/http://secunia.com/advisories/39188
reference_id
reference_type
scores
url https://web.archive.org/web/20151104183344/http://secunia.com/advisories/39188
18
reference_url https://web.archive.org/web/20200228163431/http://www.securityfocus.com/bid/39110
reference_id
reference_type
scores
url https://web.archive.org/web/20200228163431/http://www.securityfocus.com/bid/39110
19
reference_url https://web.archive.org/web/20200228163432/http://hg.moinmo.in/moin/1.9/rev/6e603e5411ca
reference_id
reference_type
scores
url https://web.archive.org/web/20200228163432/http://hg.moinmo.in/moin/1.9/rev/6e603e5411ca
20
reference_url https://web.archive.org/web/20220927220946/http://hg.moinmo.in/moin/1.9/rev/689e2b04bd4d
reference_id
reference_type
scores
url https://web.archive.org/web/20220927220946/http://hg.moinmo.in/moin/1.9/rev/689e2b04bd4d
21
reference_url https://web.archive.org/web/20221003055226/http://hg.moinmo.in/moin/1.9/rev/788131dd21c3
reference_id
reference_type
scores
url https://web.archive.org/web/20221003055226/http://hg.moinmo.in/moin/1.9/rev/788131dd21c3
22
reference_url https://web.archive.org/web/20221025223621/http://hg.moinmo.in/moin/1.8
reference_id
reference_type
scores
url https://web.archive.org/web/20221025223621/http://hg.moinmo.in/moin/1.8
23
reference_url https://www.debian.org/security/2010/dsa-2024
reference_id
reference_type
scores
url https://www.debian.org/security/2010/dsa-2024
24
reference_url https://www.ubuntu.com/usn/USN-925-1
reference_id
reference_type
scores
url https://www.ubuntu.com/usn/USN-925-1
25
reference_url http://www.debian.org/security/2010/dsa-2024
reference_id
reference_type
scores
url http://www.debian.org/security/2010/dsa-2024
26
reference_url http://www.securityfocus.com/bid/39110
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/39110
27
reference_url http://www.ubuntu.com/usn/USN-925-1
reference_id
reference_type
scores
url http://www.ubuntu.com/usn/USN-925-1
28
reference_url http://www.vupen.com/english/advisories/2010/0767
reference_id
reference_type
scores
url http://www.vupen.com/english/advisories/2010/0767
29
reference_url http://www.vupen.com/english/advisories/2010/0831
reference_id
reference_type
scores
url http://www.vupen.com/english/advisories/2010/0831
30
reference_url http://www.vupen.com/english/advisories/2010/0834
reference_id
reference_type
scores
url http://www.vupen.com/english/advisories/2010/0834
31
reference_url https://nvd.nist.gov/vuln/detail/CVE-2010-0828
reference_id CVE-2010-0828
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2010-0828
32
reference_url https://github.com/advisories/GHSA-fc72-v54c-x9jg
reference_id GHSA-fc72-v54c-x9jg
reference_type
scores
url https://github.com/advisories/GHSA-fc72-v54c-x9jg
fixed_packages
0
url pkg:pypi/moin@1.8.8
purl pkg:pypi/moin@1.8.8
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/moin@1.8.8
1
url pkg:pypi/moin@1.9.3
purl pkg:pypi/moin@1.9.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1fak-dar5-tuet
1
vulnerability VCID-1kv8-4wn6-yydy
2
vulnerability VCID-2yaq-3m4p-q3bu
3
vulnerability VCID-3z75-azrr-2qac
4
vulnerability VCID-4fn8-ab2r-23dk
5
vulnerability VCID-4q2t-yhg6-k3dg
6
vulnerability VCID-5hn2-1bvq-jfdh
7
vulnerability VCID-h1wf-35g5-5ucz
8
vulnerability VCID-kjqq-u9hy-5yda
9
vulnerability VCID-qgm9-pnrw-p3ak
10
vulnerability VCID-tkp3-e758-suhx
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/moin@1.9.3
aliases CVE-2010-0828, GHSA-fc72-v54c-x9jg, PYSEC-2010-28
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8xsp-chsd-cfhp
Fixing_vulnerabilities
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:pypi/moin@1.8.0