Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:ebuild/dev-python/django@1.6.5
Typeebuild
Namespacedev-python
Namedjango
Version1.6.5
Qualifiers
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version1.6.7
Latest_non_vulnerable_version5.2.1
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-2m9f-3cgw-ekdr
vulnerability_id VCID-2m9f-3cgw-ekdr
summary The caching framework in Django before 1.4.11, 1.5.x before 1.5.6, 1.6.x before 1.6.3, and 1.7.x before 1.7 beta 2 reuses a cached CSRF token for all anonymous users, which allows remote attackers to bypass CSRF protections by reading the CSRF cookie for anonymous users.
references
0
reference_url http://lists.opensuse.org/opensuse-updates/2014-09/msg00023.html
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url http://lists.opensuse.org/opensuse-updates/2014-09/msg00023.html
1
reference_url http://rhn.redhat.com/errata/RHSA-2014-0456.html
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2014-0456.html
2
reference_url http://rhn.redhat.com/errata/RHSA-2014-0457.html
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2014-0457.html
3
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0473.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0473.json
4
reference_url https://api.first.org/data/v1/epss?cve=CVE-2014-0473
reference_id
reference_type
scores
0
value 0.00298
scoring_system epss
scoring_elements 0.53085
published_at 2026-04-07T12:55:00Z
1
value 0.00298
scoring_system epss
scoring_elements 0.53117
published_at 2026-04-04T12:55:00Z
2
value 0.00298
scoring_system epss
scoring_elements 0.5318
published_at 2026-04-11T12:55:00Z
3
value 0.00298
scoring_system epss
scoring_elements 0.53178
published_at 2026-04-21T12:55:00Z
4
value 0.00298
scoring_system epss
scoring_elements 0.53196
published_at 2026-04-18T12:55:00Z
5
value 0.00298
scoring_system epss
scoring_elements 0.53188
published_at 2026-04-16T12:55:00Z
6
value 0.00298
scoring_system epss
scoring_elements 0.53149
published_at 2026-04-13T12:55:00Z
7
value 0.00298
scoring_system epss
scoring_elements 0.53165
published_at 2026-04-12T12:55:00Z
8
value 0.00298
scoring_system epss
scoring_elements 0.53066
published_at 2026-04-01T12:55:00Z
9
value 0.00298
scoring_system epss
scoring_elements 0.5313
published_at 2026-04-09T12:55:00Z
10
value 0.00298
scoring_system epss
scoring_elements 0.53136
published_at 2026-04-08T12:55:00Z
11
value 0.00298
scoring_system epss
scoring_elements 0.53093
published_at 2026-04-02T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2014-0473
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0472
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0472
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0473
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0473
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0474
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0474
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1418
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1418
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3730
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3730
10
reference_url http://secunia.com/advisories/61281
reference_id
reference_type
scores
url http://secunia.com/advisories/61281
11
reference_url https://github.com/django/django
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/django/django
12
reference_url https://github.com/django/django/commit/1170f285ddd6a94a65f911a27788ba49ca08c0b0
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/django/django/commit/1170f285ddd6a94a65f911a27788ba49ca08c0b0
13
reference_url https://github.com/django/django/commit/6872f42757d7ef6a97e0b6ec5db4d2615d8a2bd8
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/django/django/commit/6872f42757d7ef6a97e0b6ec5db4d2615d8a2bd8
14
reference_url https://github.com/django/django/commit/d63e20942f3024f24cb8cd85a49461ba8a9b6736
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/django/django/commit/d63e20942f3024f24cb8cd85a49461ba8a9b6736
15
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2014-2.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2014-2.yaml
16
reference_url https://www.djangoproject.com/weblog/2014/apr/21/security
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://www.djangoproject.com/weblog/2014/apr/21/security
17
reference_url https://www.djangoproject.com/weblog/2014/apr/21/security/
reference_id
reference_type
scores
url https://www.djangoproject.com/weblog/2014/apr/21/security/
18
reference_url http://www.debian.org/security/2014/dsa-2934
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url http://www.debian.org/security/2014/dsa-2934
19
reference_url http://www.ubuntu.com/usn/USN-2169-1
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url http://www.ubuntu.com/usn/USN-2169-1
20
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1090592
reference_id 1090592
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1090592
21
reference_url https://nvd.nist.gov/vuln/detail/CVE-2014-0473
reference_id CVE-2014-0473
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2014-0473
22
reference_url https://github.com/advisories/GHSA-89hj-xfx5-7q66
reference_id GHSA-89hj-xfx5-7q66
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-89hj-xfx5-7q66
23
reference_url https://security.gentoo.org/glsa/201406-26
reference_id GLSA-201406-26
reference_type
scores
url https://security.gentoo.org/glsa/201406-26
24
reference_url https://access.redhat.com/errata/RHSA-2014:0456
reference_id RHSA-2014:0456
reference_type
scores
url https://access.redhat.com/errata/RHSA-2014:0456
25
reference_url https://access.redhat.com/errata/RHSA-2014:0457
reference_id RHSA-2014:0457
reference_type
scores
url https://access.redhat.com/errata/RHSA-2014:0457
26
reference_url https://usn.ubuntu.com/2169-1/
reference_id USN-2169-1
reference_type
scores
url https://usn.ubuntu.com/2169-1/
fixed_packages
0
url pkg:ebuild/dev-python/django@1.6.5
purl pkg:ebuild/dev-python/django@1.6.5
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-python/django@1.6.5
aliases CVE-2014-0473, GHSA-89hj-xfx5-7q66, PYSEC-2014-2
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2m9f-3cgw-ekdr
1
url VCID-q64b-r7td-2yab
vulnerability_id VCID-q64b-r7td-2yab
summary Django 1.4 before 1.4.13, 1.5 before 1.5.8, 1.6 before 1.6.5, and 1.7 before 1.7b4 does not properly include the (1) Vary: Cookie or (2) Cache-Control header in responses, which allows remote attackers to obtain sensitive information or poison the cache via a request from certain browsers.
references
0
reference_url http://lists.opensuse.org/opensuse-updates/2014-09/msg00023.html
reference_id
reference_type
scores
0
value 7.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value 9.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url http://lists.opensuse.org/opensuse-updates/2014-09/msg00023.html
1
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-1418.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-1418.json
2
reference_url https://api.first.org/data/v1/epss?cve=CVE-2014-1418
reference_id
reference_type
scores
0
value 0.00512
scoring_system epss
scoring_elements 0.66528
published_at 2026-04-18T12:55:00Z
1
value 0.00512
scoring_system epss
scoring_elements 0.66511
published_at 2026-04-16T12:55:00Z
2
value 0.00512
scoring_system epss
scoring_elements 0.66475
published_at 2026-04-13T12:55:00Z
3
value 0.00512
scoring_system epss
scoring_elements 0.66506
published_at 2026-04-12T12:55:00Z
4
value 0.00512
scoring_system epss
scoring_elements 0.66519
published_at 2026-04-11T12:55:00Z
5
value 0.00512
scoring_system epss
scoring_elements 0.66499
published_at 2026-04-09T12:55:00Z
6
value 0.00512
scoring_system epss
scoring_elements 0.66513
published_at 2026-04-21T12:55:00Z
7
value 0.00512
scoring_system epss
scoring_elements 0.66437
published_at 2026-04-07T12:55:00Z
8
value 0.00512
scoring_system epss
scoring_elements 0.66466
published_at 2026-04-04T12:55:00Z
9
value 0.00512
scoring_system epss
scoring_elements 0.66485
published_at 2026-04-08T12:55:00Z
10
value 0.00512
scoring_system epss
scoring_elements 0.66439
published_at 2026-04-02T12:55:00Z
11
value 0.00512
scoring_system epss
scoring_elements 0.66401
published_at 2026-04-01T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2014-1418
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0472
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0472
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0473
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0473
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0474
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0474
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1418
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1418
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3730
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3730
8
reference_url http://secunia.com/advisories/61281
reference_id
reference_type
scores
url http://secunia.com/advisories/61281
9
reference_url https://github.com/django/django
reference_id
reference_type
scores
0
value 7.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value 9.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/django/django
10
reference_url https://github.com/django/django/commit/1abcf3a808b35abae5d425ed4d44cb6e886dc769
reference_id
reference_type
scores
0
value 7.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value 9.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/django/django/commit/1abcf3a808b35abae5d425ed4d44cb6e886dc769
11
reference_url https://github.com/django/django/commit/28e23306aa53bbbb8fb87db85f99d970b051026c
reference_id
reference_type
scores
0
value 7.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value 9.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/django/django/commit/28e23306aa53bbbb8fb87db85f99d970b051026c
12
reference_url https://github.com/django/django/commit/4001ec8698f577b973c5a540801d8a0bbea1205b
reference_id
reference_type
scores
0
value 7.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value 9.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/django/django/commit/4001ec8698f577b973c5a540801d8a0bbea1205b
13
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2014-19.yaml
reference_id
reference_type
scores
0
value 7.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value 9.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2014-19.yaml
14
reference_url https://www.djangoproject.com/weblog/2014/may/14/security-releases-issued
reference_id
reference_type
scores
0
value 7.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value 9.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://www.djangoproject.com/weblog/2014/may/14/security-releases-issued
15
reference_url https://www.djangoproject.com/weblog/2014/may/14/security-releases-issued/
reference_id
reference_type
scores
url https://www.djangoproject.com/weblog/2014/may/14/security-releases-issued/
16
reference_url http://ubuntu.com/usn/usn-2212-1
reference_id
reference_type
scores
0
value 7.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value 9.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url http://ubuntu.com/usn/usn-2212-1
17
reference_url http://www.debian.org/security/2014/dsa-2934
reference_id
reference_type
scores
0
value 7.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value 9.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url http://www.debian.org/security/2014/dsa-2934
18
reference_url http://www.openwall.com/lists/oss-security/2014/05/14/10
reference_id
reference_type
scores
0
value 7.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value 9.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url http://www.openwall.com/lists/oss-security/2014/05/14/10
19
reference_url http://www.openwall.com/lists/oss-security/2014/05/15/3
reference_id
reference_type
scores
0
value 7.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value 9.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url http://www.openwall.com/lists/oss-security/2014/05/15/3
20
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1097500
reference_id 1097500
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1097500
21
reference_url https://nvd.nist.gov/vuln/detail/CVE-2014-1418
reference_id CVE-2014-1418
reference_type
scores
0
value 7.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value 9.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2014-1418
22
reference_url https://github.com/advisories/GHSA-q7q2-qf2q-rw3w
reference_id GHSA-q7q2-qf2q-rw3w
reference_type
scores
0
value CRITICAL
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-q7q2-qf2q-rw3w
23
reference_url https://security.gentoo.org/glsa/201406-26
reference_id GLSA-201406-26
reference_type
scores
url https://security.gentoo.org/glsa/201406-26
24
reference_url https://usn.ubuntu.com/2212-1/
reference_id USN-2212-1
reference_type
scores
url https://usn.ubuntu.com/2212-1/
fixed_packages
0
url pkg:ebuild/dev-python/django@1.6.5
purl pkg:ebuild/dev-python/django@1.6.5
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-python/django@1.6.5
aliases CVE-2014-1418, GHSA-q7q2-qf2q-rw3w, PYSEC-2014-19
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-q64b-r7td-2yab
2
url VCID-qzba-9xmg-3qer
vulnerability_id VCID-qzba-9xmg-3qer
summary The django.core.urlresolvers.reverse function in Django before 1.4.11, 1.5.x before 1.5.6, 1.6.x before 1.6.3, and 1.7.x before 1.7 beta 2 allows remote attackers to import and execute arbitrary Python modules by leveraging a view that constructs URLs using user input and a "dotted Python path."
references
0
reference_url http://lists.opensuse.org/opensuse-updates/2014-09/msg00023.html
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url http://lists.opensuse.org/opensuse-updates/2014-09/msg00023.html
1
reference_url http://rhn.redhat.com/errata/RHSA-2014-0456.html
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2014-0456.html
2
reference_url http://rhn.redhat.com/errata/RHSA-2014-0457.html
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2014-0457.html
3
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0472.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0472.json
4
reference_url https://api.first.org/data/v1/epss?cve=CVE-2014-0472
reference_id
reference_type
scores
0
value 0.06894
scoring_system epss
scoring_elements 0.9137
published_at 2026-04-08T12:55:00Z
1
value 0.06894
scoring_system epss
scoring_elements 0.91357
published_at 2026-04-07T12:55:00Z
2
value 0.06894
scoring_system epss
scoring_elements 0.9135
published_at 2026-04-04T12:55:00Z
3
value 0.06894
scoring_system epss
scoring_elements 0.9134
published_at 2026-04-02T12:55:00Z
4
value 0.06894
scoring_system epss
scoring_elements 0.91336
published_at 2026-04-01T12:55:00Z
5
value 0.06894
scoring_system epss
scoring_elements 0.91408
published_at 2026-04-18T12:55:00Z
6
value 0.06894
scoring_system epss
scoring_elements 0.91411
published_at 2026-04-16T12:55:00Z
7
value 0.06894
scoring_system epss
scoring_elements 0.91386
published_at 2026-04-13T12:55:00Z
8
value 0.06894
scoring_system epss
scoring_elements 0.91383
published_at 2026-04-11T12:55:00Z
9
value 0.06894
scoring_system epss
scoring_elements 0.91377
published_at 2026-04-09T12:55:00Z
10
value 0.06894
scoring_system epss
scoring_elements 0.9141
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2014-0472
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0472
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0472
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0473
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0473
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0474
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0474
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1418
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1418
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3730
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3730
10
reference_url http://secunia.com/advisories/61281
reference_id
reference_type
scores
url http://secunia.com/advisories/61281
11
reference_url https://github.com/django/django
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/django/django
12
reference_url https://github.com/django/django/commit/2a5bcb69f42b84464b24b5c835dca6467b6aa7f1
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/django/django/commit/2a5bcb69f42b84464b24b5c835dca6467b6aa7f1
13
reference_url https://github.com/django/django/commit/4352a50871e239ebcdf64eee6f0b88e714015c1b
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/django/django/commit/4352a50871e239ebcdf64eee6f0b88e714015c1b
14
reference_url https://github.com/django/django/commit/c1a8c420fe4b27fb2caf5e46d23b5712fc0ac535
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/django/django/commit/c1a8c420fe4b27fb2caf5e46d23b5712fc0ac535
15
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2014-1.yaml
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2014-1.yaml
16
reference_url https://nvd.nist.gov/vuln/detail/CVE-2014-0472
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2014-0472
17
reference_url https://www.djangoproject.com/weblog/2014/apr/21/security
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://www.djangoproject.com/weblog/2014/apr/21/security
18
reference_url https://www.djangoproject.com/weblog/2014/apr/21/security/
reference_id
reference_type
scores
url https://www.djangoproject.com/weblog/2014/apr/21/security/
19
reference_url http://www.debian.org/security/2014/dsa-2934
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url http://www.debian.org/security/2014/dsa-2934
20
reference_url http://www.ubuntu.com/usn/USN-2169-1
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url http://www.ubuntu.com/usn/USN-2169-1
21
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1090588
reference_id 1090588
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1090588
22
reference_url https://github.com/advisories/GHSA-rvq6-mrpv-m6rm
reference_id GHSA-rvq6-mrpv-m6rm
reference_type
scores
0
value CRITICAL
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-rvq6-mrpv-m6rm
23
reference_url https://security.gentoo.org/glsa/201406-26
reference_id GLSA-201406-26
reference_type
scores
url https://security.gentoo.org/glsa/201406-26
24
reference_url https://access.redhat.com/errata/RHSA-2014:0456
reference_id RHSA-2014:0456
reference_type
scores
url https://access.redhat.com/errata/RHSA-2014:0456
25
reference_url https://access.redhat.com/errata/RHSA-2014:0457
reference_id RHSA-2014:0457
reference_type
scores
url https://access.redhat.com/errata/RHSA-2014:0457
26
reference_url https://usn.ubuntu.com/2169-1/
reference_id USN-2169-1
reference_type
scores
url https://usn.ubuntu.com/2169-1/
fixed_packages
0
url pkg:ebuild/dev-python/django@1.6.5
purl pkg:ebuild/dev-python/django@1.6.5
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-python/django@1.6.5
aliases CVE-2014-0472, GHSA-rvq6-mrpv-m6rm, PYSEC-2014-1
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-qzba-9xmg-3qer
3
url VCID-yemh-qd63-wuca
vulnerability_id VCID-yemh-qd63-wuca
summary The (1) FilePathField, (2) GenericIPAddressField, and (3) IPAddressField model field classes in Django before 1.4.11, 1.5.x before 1.5.6, 1.6.x before 1.6.3, and 1.7.x before 1.7 beta 2 do not properly perform type conversion, which allows remote attackers to have unspecified impact and vectors, related to "MySQL typecasting."
references
0
reference_url http://lists.opensuse.org/opensuse-updates/2014-09/msg00023.html
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 8.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U
2
value HIGH
scoring_system generic_textual
scoring_elements
url http://lists.opensuse.org/opensuse-updates/2014-09/msg00023.html
1
reference_url http://rhn.redhat.com/errata/RHSA-2014-0456.html
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 8.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U
2
value HIGH
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2014-0456.html
2
reference_url http://rhn.redhat.com/errata/RHSA-2014-0457.html
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 8.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U
2
value HIGH
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2014-0457.html
3
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0474.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0474.json
4
reference_url https://api.first.org/data/v1/epss?cve=CVE-2014-0474
reference_id
reference_type
scores
0
value 0.03963
scoring_system epss
scoring_elements 0.88361
published_at 2026-04-08T12:55:00Z
1
value 0.03963
scoring_system epss
scoring_elements 0.88342
published_at 2026-04-07T12:55:00Z
2
value 0.03963
scoring_system epss
scoring_elements 0.88337
published_at 2026-04-04T12:55:00Z
3
value 0.03963
scoring_system epss
scoring_elements 0.88322
published_at 2026-04-02T12:55:00Z
4
value 0.03963
scoring_system epss
scoring_elements 0.88314
published_at 2026-04-01T12:55:00Z
5
value 0.03963
scoring_system epss
scoring_elements 0.88381
published_at 2026-04-21T12:55:00Z
6
value 0.03963
scoring_system epss
scoring_elements 0.88378
published_at 2026-04-11T12:55:00Z
7
value 0.03963
scoring_system epss
scoring_elements 0.88367
published_at 2026-04-09T12:55:00Z
8
value 0.03963
scoring_system epss
scoring_elements 0.88384
published_at 2026-04-16T12:55:00Z
9
value 0.03963
scoring_system epss
scoring_elements 0.8837
published_at 2026-04-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2014-0474
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0472
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0472
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0473
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0473
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0474
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0474
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1418
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1418
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3730
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3730
10
reference_url http://secunia.com/advisories/61281
reference_id
reference_type
scores
url http://secunia.com/advisories/61281
11
reference_url https://github.com/django/django
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 8.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/django/django
12
reference_url https://github.com/django/django/commit/5f0829a27e85d89ad8c433f5c6a7a7d17c9e9292
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 8.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/django/django/commit/5f0829a27e85d89ad8c433f5c6a7a7d17c9e9292
13
reference_url https://github.com/django/django/commit/985434fb1d6bf2335bf96c6ebf91c3674f1f399f
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 8.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/django/django/commit/985434fb1d6bf2335bf96c6ebf91c3674f1f399f
14
reference_url https://github.com/django/django/commit/aa80f498de6d687e613860933ac58433ab71ea4b
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 8.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/django/django/commit/aa80f498de6d687e613860933ac58433ab71ea4b
15
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2014-3.yaml
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 8.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2014-3.yaml
16
reference_url https://nvd.nist.gov/vuln/detail/CVE-2014-0474
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 8.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2014-0474
17
reference_url https://www.djangoproject.com/weblog/2014/apr/21/security
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 8.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://www.djangoproject.com/weblog/2014/apr/21/security
18
reference_url https://www.djangoproject.com/weblog/2014/apr/21/security/
reference_id
reference_type
scores
url https://www.djangoproject.com/weblog/2014/apr/21/security/
19
reference_url http://www.debian.org/security/2014/dsa-2934
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 8.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U
2
value HIGH
scoring_system generic_textual
scoring_elements
url http://www.debian.org/security/2014/dsa-2934
20
reference_url http://www.ubuntu.com/usn/USN-2169-1
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 8.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U
2
value HIGH
scoring_system generic_textual
scoring_elements
url http://www.ubuntu.com/usn/USN-2169-1
21
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1090593
reference_id 1090593
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1090593
22
reference_url https://github.com/advisories/GHSA-wqjj-hx84-v449
reference_id GHSA-wqjj-hx84-v449
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-wqjj-hx84-v449
23
reference_url https://security.gentoo.org/glsa/201406-26
reference_id GLSA-201406-26
reference_type
scores
url https://security.gentoo.org/glsa/201406-26
24
reference_url https://access.redhat.com/errata/RHSA-2014:0456
reference_id RHSA-2014:0456
reference_type
scores
url https://access.redhat.com/errata/RHSA-2014:0456
25
reference_url https://access.redhat.com/errata/RHSA-2014:0457
reference_id RHSA-2014:0457
reference_type
scores
url https://access.redhat.com/errata/RHSA-2014:0457
26
reference_url https://usn.ubuntu.com/2169-1/
reference_id USN-2169-1
reference_type
scores
url https://usn.ubuntu.com/2169-1/
fixed_packages
0
url pkg:ebuild/dev-python/django@1.6.5
purl pkg:ebuild/dev-python/django@1.6.5
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-python/django@1.6.5
aliases CVE-2014-0474, GHSA-wqjj-hx84-v449, PYSEC-2014-3
risk_score 4.4
exploitability 0.5
weighted_severity 8.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-yemh-qd63-wuca
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:ebuild/dev-python/django@1.6.5