Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:deb/debian/otrs2@3.3.5-1?distro=bullseye
Typedeb
Namespacedebian
Nameotrs2
Version3.3.5-1
Qualifiers
distro bullseye
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version3.3.6-1
Latest_non_vulnerable_version6.0.32-6
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-vswx-e9p8-1ugn
vulnerability_id VCID-vswx-e9p8-1ugn
summary Cross-site scripting (XSS) vulnerability in Open Ticket Request System (OTRS) 3.1.x before 3.1.20, 3.2.x before 3.2.15, and 3.3.x before 3.3.5 allows remote attackers to inject arbitrary web script or HTML via a crafted HTML email.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2014-1695
reference_id
reference_type
scores
0
value 0.03629
scoring_system epss
scoring_elements 0.87772
published_at 2026-04-01T12:55:00Z
1
value 0.03629
scoring_system epss
scoring_elements 0.87782
published_at 2026-04-02T12:55:00Z
2
value 0.03629
scoring_system epss
scoring_elements 0.87794
published_at 2026-04-04T12:55:00Z
3
value 0.03629
scoring_system epss
scoring_elements 0.87797
published_at 2026-04-07T12:55:00Z
4
value 0.03629
scoring_system epss
scoring_elements 0.87819
published_at 2026-04-08T12:55:00Z
5
value 0.03629
scoring_system epss
scoring_elements 0.87825
published_at 2026-04-09T12:55:00Z
6
value 0.03629
scoring_system epss
scoring_elements 0.87837
published_at 2026-04-11T12:55:00Z
7
value 0.03629
scoring_system epss
scoring_elements 0.87832
published_at 2026-04-12T12:55:00Z
8
value 0.03629
scoring_system epss
scoring_elements 0.8783
published_at 2026-04-13T12:55:00Z
9
value 0.03629
scoring_system epss
scoring_elements 0.87844
published_at 2026-04-16T12:55:00Z
10
value 0.03629
scoring_system epss
scoring_elements 0.87843
published_at 2026-04-18T12:55:00Z
11
value 0.03629
scoring_system epss
scoring_elements 0.8784
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2014-1695
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1695
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1695
2
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/36842.pl
reference_id CVE-2014-1695;OSVDB-103781
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/36842.pl
fixed_packages
0
url pkg:deb/debian/otrs2@3.3.5-1?distro=bullseye
purl pkg:deb/debian/otrs2@3.3.5-1?distro=bullseye
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/otrs2@3.3.5-1%3Fdistro=bullseye
1
url pkg:deb/debian/otrs2@6.0.32-6?distro=bullseye
purl pkg:deb/debian/otrs2@6.0.32-6?distro=bullseye
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/otrs2@6.0.32-6%3Fdistro=bullseye
aliases CVE-2014-1695
risk_score null
exploitability 2.0
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vswx-e9p8-1ugn
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:deb/debian/otrs2@3.3.5-1%3Fdistro=bullseye