Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:deb/debian/wordpress@4.9.1%2Bdfsg-1?distro=trixie
Typedeb
Namespacedebian
Namewordpress
Version4.9.1+dfsg-1
Qualifiers
distro trixie
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version4.9.2+dfsg-1
Latest_non_vulnerable_version6.9.4+dfsg1-1
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-7twj-axjh-rudj
vulnerability_id VCID-7twj-axjh-rudj
summary security update
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2017-17094
reference_id
reference_type
scores
0
value 0.06615
scoring_system epss
scoring_elements 0.9121
published_at 2026-04-21T12:55:00Z
1
value 0.06615
scoring_system epss
scoring_elements 0.91207
published_at 2026-04-18T12:55:00Z
2
value 0.06615
scoring_system epss
scoring_elements 0.91132
published_at 2026-04-01T12:55:00Z
3
value 0.06615
scoring_system epss
scoring_elements 0.91138
published_at 2026-04-02T12:55:00Z
4
value 0.06615
scoring_system epss
scoring_elements 0.91146
published_at 2026-04-04T12:55:00Z
5
value 0.06615
scoring_system epss
scoring_elements 0.91154
published_at 2026-04-07T12:55:00Z
6
value 0.06615
scoring_system epss
scoring_elements 0.91167
published_at 2026-04-08T12:55:00Z
7
value 0.06615
scoring_system epss
scoring_elements 0.91173
published_at 2026-04-09T12:55:00Z
8
value 0.06615
scoring_system epss
scoring_elements 0.91181
published_at 2026-04-11T12:55:00Z
9
value 0.06615
scoring_system epss
scoring_elements 0.91183
published_at 2026-04-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2017-17094
1
reference_url https://codex.wordpress.org/Version_4.9.1
reference_id
reference_type
scores
url https://codex.wordpress.org/Version_4.9.1
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16510
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16510
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17091
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17091
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17092
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17092
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17093
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17093
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17094
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17094
7
reference_url https://github.com/WordPress/WordPress/commit/f1de7e42df29395c3314bf85bff3d1f4f90541de
reference_id
reference_type
scores
url https://github.com/WordPress/WordPress/commit/f1de7e42df29395c3314bf85bff3d1f4f90541de
8
reference_url https://lists.debian.org/debian-lts-announce/2017/12/msg00019.html
reference_id
reference_type
scores
url https://lists.debian.org/debian-lts-announce/2017/12/msg00019.html
9
reference_url https://wordpress.org/news/2017/11/wordpress-4-9-1-security-and-maintenance-release/
reference_id
reference_type
scores
url https://wordpress.org/news/2017/11/wordpress-4-9-1-security-and-maintenance-release/
10
reference_url https://wpvulndb.com/vulnerabilities/8967
reference_id
reference_type
scores
url https://wpvulndb.com/vulnerabilities/8967
11
reference_url https://www.debian.org/security/2018/dsa-4090
reference_id
reference_type
scores
url https://www.debian.org/security/2018/dsa-4090
12
reference_url http://www.securityfocus.com/bid/102024
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/102024
13
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=883314
reference_id 883314
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=883314
14
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*
reference_id cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*
15
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
16
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
17
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
18
reference_url https://nvd.nist.gov/vuln/detail/CVE-2017-17094
reference_id CVE-2017-17094
reference_type
scores
0
value 3.5
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:S/C:N/I:P/A:N
1
value 5.4
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
url https://nvd.nist.gov/vuln/detail/CVE-2017-17094
fixed_packages
0
url pkg:deb/debian/wordpress@4.9.1%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/wordpress@4.9.1%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@4.9.1%252Bdfsg-1%3Fdistro=trixie
1
url pkg:deb/debian/wordpress@5.7.11%2Bdfsg1-0%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/wordpress@5.7.11%2Bdfsg1-0%2Bdeb11u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-gyaq-8pvh-p7gg
1
vulnerability VCID-jghn-eujf-zbdn
2
vulnerability VCID-yqam-kpce-dfg7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@5.7.11%252Bdfsg1-0%252Bdeb11u1%3Fdistro=trixie
2
url pkg:deb/debian/wordpress@6.1.9%2Bdfsg1-0%2Bdeb12u1?distro=trixie
purl pkg:deb/debian/wordpress@6.1.9%2Bdfsg1-0%2Bdeb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-gyaq-8pvh-p7gg
1
vulnerability VCID-jghn-eujf-zbdn
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.1.9%252Bdfsg1-0%252Bdeb12u1%3Fdistro=trixie
3
url pkg:deb/debian/wordpress@6.8.3%2Bdfsg1-0%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/wordpress@6.8.3%2Bdfsg1-0%2Bdeb13u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.8.3%252Bdfsg1-0%252Bdeb13u1%3Fdistro=trixie
4
url pkg:deb/debian/wordpress@6.9.4%2Bdfsg1-1?distro=trixie
purl pkg:deb/debian/wordpress@6.9.4%2Bdfsg1-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.9.4%252Bdfsg1-1%3Fdistro=trixie
aliases CVE-2017-17094
risk_score 2.5
exploitability 0.5
weighted_severity 4.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7twj-axjh-rudj
1
url VCID-cwud-1n3k-rfcs
vulnerability_id VCID-cwud-1n3k-rfcs
summary security update
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2017-17092
reference_id
reference_type
scores
0
value 0.03307
scoring_system epss
scoring_elements 0.87189
published_at 2026-04-01T12:55:00Z
1
value 0.03307
scoring_system epss
scoring_elements 0.87253
published_at 2026-04-11T12:55:00Z
2
value 0.03307
scoring_system epss
scoring_elements 0.87247
published_at 2026-04-12T12:55:00Z
3
value 0.03307
scoring_system epss
scoring_elements 0.87242
published_at 2026-04-13T12:55:00Z
4
value 0.03307
scoring_system epss
scoring_elements 0.87257
published_at 2026-04-16T12:55:00Z
5
value 0.03307
scoring_system epss
scoring_elements 0.87199
published_at 2026-04-02T12:55:00Z
6
value 0.03307
scoring_system epss
scoring_elements 0.87216
published_at 2026-04-04T12:55:00Z
7
value 0.03307
scoring_system epss
scoring_elements 0.87213
published_at 2026-04-07T12:55:00Z
8
value 0.03307
scoring_system epss
scoring_elements 0.87233
published_at 2026-04-08T12:55:00Z
9
value 0.03307
scoring_system epss
scoring_elements 0.8724
published_at 2026-04-09T12:55:00Z
10
value 0.04064
scoring_system epss
scoring_elements 0.88541
published_at 2026-04-21T12:55:00Z
11
value 0.04179
scoring_system epss
scoring_elements 0.88716
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2017-17092
1
reference_url https://codex.wordpress.org/Version_4.9.1
reference_id
reference_type
scores
url https://codex.wordpress.org/Version_4.9.1
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16510
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16510
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17091
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17091
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17092
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17092
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17093
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17093
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17094
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17094
7
reference_url https://github.com/WordPress/WordPress/commit/67d03a98c2cae5f41843c897f206adde299b0509
reference_id
reference_type
scores
url https://github.com/WordPress/WordPress/commit/67d03a98c2cae5f41843c897f206adde299b0509
8
reference_url https://lists.debian.org/debian-lts-announce/2017/12/msg00019.html
reference_id
reference_type
scores
url https://lists.debian.org/debian-lts-announce/2017/12/msg00019.html
9
reference_url https://wordpress.org/news/2017/11/wordpress-4-9-1-security-and-maintenance-release/
reference_id
reference_type
scores
url https://wordpress.org/news/2017/11/wordpress-4-9-1-security-and-maintenance-release/
10
reference_url https://wpvulndb.com/vulnerabilities/8966
reference_id
reference_type
scores
url https://wpvulndb.com/vulnerabilities/8966
11
reference_url https://www.debian.org/security/2018/dsa-4090
reference_id
reference_type
scores
url https://www.debian.org/security/2018/dsa-4090
12
reference_url http://www.securityfocus.com/bid/102024
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/102024
13
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=883314
reference_id 883314
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=883314
14
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*
reference_id cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*
15
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
16
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
17
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
18
reference_url https://nvd.nist.gov/vuln/detail/CVE-2017-17092
reference_id CVE-2017-17092
reference_type
scores
0
value 3.5
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:S/C:N/I:P/A:N
1
value 5.4
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
url https://nvd.nist.gov/vuln/detail/CVE-2017-17092
fixed_packages
0
url pkg:deb/debian/wordpress@4.9.1%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/wordpress@4.9.1%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@4.9.1%252Bdfsg-1%3Fdistro=trixie
1
url pkg:deb/debian/wordpress@5.7.11%2Bdfsg1-0%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/wordpress@5.7.11%2Bdfsg1-0%2Bdeb11u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-gyaq-8pvh-p7gg
1
vulnerability VCID-jghn-eujf-zbdn
2
vulnerability VCID-yqam-kpce-dfg7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@5.7.11%252Bdfsg1-0%252Bdeb11u1%3Fdistro=trixie
2
url pkg:deb/debian/wordpress@6.1.9%2Bdfsg1-0%2Bdeb12u1?distro=trixie
purl pkg:deb/debian/wordpress@6.1.9%2Bdfsg1-0%2Bdeb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-gyaq-8pvh-p7gg
1
vulnerability VCID-jghn-eujf-zbdn
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.1.9%252Bdfsg1-0%252Bdeb12u1%3Fdistro=trixie
3
url pkg:deb/debian/wordpress@6.8.3%2Bdfsg1-0%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/wordpress@6.8.3%2Bdfsg1-0%2Bdeb13u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.8.3%252Bdfsg1-0%252Bdeb13u1%3Fdistro=trixie
4
url pkg:deb/debian/wordpress@6.9.4%2Bdfsg1-1?distro=trixie
purl pkg:deb/debian/wordpress@6.9.4%2Bdfsg1-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.9.4%252Bdfsg1-1%3Fdistro=trixie
aliases CVE-2017-17092
risk_score 2.5
exploitability 0.5
weighted_severity 4.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-cwud-1n3k-rfcs
2
url VCID-fd51-1hat-v3ee
vulnerability_id VCID-fd51-1hat-v3ee
summary security update
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2017-17091
reference_id
reference_type
scores
0
value 0.04478
scoring_system epss
scoring_elements 0.89111
published_at 2026-04-21T12:55:00Z
1
value 0.04478
scoring_system epss
scoring_elements 0.89115
published_at 2026-04-18T12:55:00Z
2
value 0.04478
scoring_system epss
scoring_elements 0.89047
published_at 2026-04-01T12:55:00Z
3
value 0.04478
scoring_system epss
scoring_elements 0.89056
published_at 2026-04-02T12:55:00Z
4
value 0.04478
scoring_system epss
scoring_elements 0.89071
published_at 2026-04-04T12:55:00Z
5
value 0.04478
scoring_system epss
scoring_elements 0.89073
published_at 2026-04-07T12:55:00Z
6
value 0.04478
scoring_system epss
scoring_elements 0.89091
published_at 2026-04-08T12:55:00Z
7
value 0.04478
scoring_system epss
scoring_elements 0.89096
published_at 2026-04-09T12:55:00Z
8
value 0.04478
scoring_system epss
scoring_elements 0.89107
published_at 2026-04-11T12:55:00Z
9
value 0.04478
scoring_system epss
scoring_elements 0.89103
published_at 2026-04-12T12:55:00Z
10
value 0.04478
scoring_system epss
scoring_elements 0.89101
published_at 2026-04-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2017-17091
1
reference_url https://codex.wordpress.org/Version_4.9.1
reference_id
reference_type
scores
url https://codex.wordpress.org/Version_4.9.1
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16510
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16510
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17091
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17091
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17092
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17092
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17093
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17093
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17094
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17094
7
reference_url https://github.com/WordPress/WordPress/commit/eaf1cfdc1fe0bdffabd8d879c591b864d833326c
reference_id
reference_type
scores
url https://github.com/WordPress/WordPress/commit/eaf1cfdc1fe0bdffabd8d879c591b864d833326c
8
reference_url https://lists.debian.org/debian-lts-announce/2017/12/msg00019.html
reference_id
reference_type
scores
url https://lists.debian.org/debian-lts-announce/2017/12/msg00019.html
9
reference_url https://wordpress.org/news/2017/11/wordpress-4-9-1-security-and-maintenance-release/
reference_id
reference_type
scores
url https://wordpress.org/news/2017/11/wordpress-4-9-1-security-and-maintenance-release/
10
reference_url https://wpvulndb.com/vulnerabilities/8969
reference_id
reference_type
scores
url https://wpvulndb.com/vulnerabilities/8969
11
reference_url https://www.debian.org/security/2018/dsa-4090
reference_id
reference_type
scores
url https://www.debian.org/security/2018/dsa-4090
12
reference_url http://www.securityfocus.com/bid/102024
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/102024
13
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=883314
reference_id 883314
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=883314
14
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*
reference_id cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*
15
reference_url https://nvd.nist.gov/vuln/detail/CVE-2017-17091
reference_id CVE-2017-17091
reference_type
scores
0
value 6.5
scoring_system cvssv2
scoring_elements AV:N/AC:L/Au:S/C:P/I:P/A:P
1
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://nvd.nist.gov/vuln/detail/CVE-2017-17091
fixed_packages
0
url pkg:deb/debian/wordpress@4.9.1%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/wordpress@4.9.1%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@4.9.1%252Bdfsg-1%3Fdistro=trixie
1
url pkg:deb/debian/wordpress@5.7.11%2Bdfsg1-0%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/wordpress@5.7.11%2Bdfsg1-0%2Bdeb11u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-gyaq-8pvh-p7gg
1
vulnerability VCID-jghn-eujf-zbdn
2
vulnerability VCID-yqam-kpce-dfg7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@5.7.11%252Bdfsg1-0%252Bdeb11u1%3Fdistro=trixie
2
url pkg:deb/debian/wordpress@6.1.9%2Bdfsg1-0%2Bdeb12u1?distro=trixie
purl pkg:deb/debian/wordpress@6.1.9%2Bdfsg1-0%2Bdeb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-gyaq-8pvh-p7gg
1
vulnerability VCID-jghn-eujf-zbdn
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.1.9%252Bdfsg1-0%252Bdeb12u1%3Fdistro=trixie
3
url pkg:deb/debian/wordpress@6.8.3%2Bdfsg1-0%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/wordpress@6.8.3%2Bdfsg1-0%2Bdeb13u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.8.3%252Bdfsg1-0%252Bdeb13u1%3Fdistro=trixie
4
url pkg:deb/debian/wordpress@6.9.4%2Bdfsg1-1?distro=trixie
purl pkg:deb/debian/wordpress@6.9.4%2Bdfsg1-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.9.4%252Bdfsg1-1%3Fdistro=trixie
aliases CVE-2017-17091
risk_score 4.0
exploitability 0.5
weighted_severity 7.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fd51-1hat-v3ee
3
url VCID-qu9h-p3s6-8bd2
vulnerability_id VCID-qu9h-p3s6-8bd2
summary security update
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2017-17093
reference_id
reference_type
scores
0
value 0.06276
scoring_system epss
scoring_elements 0.9095
published_at 2026-04-21T12:55:00Z
1
value 0.06276
scoring_system epss
scoring_elements 0.90952
published_at 2026-04-16T12:55:00Z
2
value 0.06276
scoring_system epss
scoring_elements 0.90877
published_at 2026-04-01T12:55:00Z
3
value 0.06276
scoring_system epss
scoring_elements 0.90882
published_at 2026-04-02T12:55:00Z
4
value 0.06276
scoring_system epss
scoring_elements 0.90892
published_at 2026-04-04T12:55:00Z
5
value 0.06276
scoring_system epss
scoring_elements 0.90901
published_at 2026-04-07T12:55:00Z
6
value 0.06276
scoring_system epss
scoring_elements 0.90913
published_at 2026-04-08T12:55:00Z
7
value 0.06276
scoring_system epss
scoring_elements 0.9092
published_at 2026-04-09T12:55:00Z
8
value 0.06276
scoring_system epss
scoring_elements 0.90928
published_at 2026-04-11T12:55:00Z
9
value 0.06276
scoring_system epss
scoring_elements 0.90929
published_at 2026-04-12T12:55:00Z
10
value 0.06276
scoring_system epss
scoring_elements 0.90927
published_at 2026-04-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2017-17093
1
reference_url https://codex.wordpress.org/Version_4.9.1
reference_id
reference_type
scores
url https://codex.wordpress.org/Version_4.9.1
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16510
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16510
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17091
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17091
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17092
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17092
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17093
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17093
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17094
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17094
7
reference_url https://github.com/WordPress/WordPress/commit/3713ac5ebc90fb2011e98dfd691420f43da6c09a
reference_id
reference_type
scores
url https://github.com/WordPress/WordPress/commit/3713ac5ebc90fb2011e98dfd691420f43da6c09a
8
reference_url https://lists.debian.org/debian-lts-announce/2017/12/msg00019.html
reference_id
reference_type
scores
url https://lists.debian.org/debian-lts-announce/2017/12/msg00019.html
9
reference_url https://wordpress.org/news/2017/11/wordpress-4-9-1-security-and-maintenance-release/
reference_id
reference_type
scores
url https://wordpress.org/news/2017/11/wordpress-4-9-1-security-and-maintenance-release/
10
reference_url https://wpvulndb.com/vulnerabilities/8968
reference_id
reference_type
scores
url https://wpvulndb.com/vulnerabilities/8968
11
reference_url https://www.debian.org/security/2018/dsa-4090
reference_id
reference_type
scores
url https://www.debian.org/security/2018/dsa-4090
12
reference_url http://www.securityfocus.com/bid/102024
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/102024
13
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=883314
reference_id 883314
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=883314
14
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*
reference_id cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*
15
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
16
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
17
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
18
reference_url https://nvd.nist.gov/vuln/detail/CVE-2017-17093
reference_id CVE-2017-17093
reference_type
scores
0
value 3.5
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:S/C:N/I:P/A:N
1
value 5.4
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
url https://nvd.nist.gov/vuln/detail/CVE-2017-17093
fixed_packages
0
url pkg:deb/debian/wordpress@4.9.1%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/wordpress@4.9.1%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@4.9.1%252Bdfsg-1%3Fdistro=trixie
1
url pkg:deb/debian/wordpress@5.7.11%2Bdfsg1-0%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/wordpress@5.7.11%2Bdfsg1-0%2Bdeb11u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-gyaq-8pvh-p7gg
1
vulnerability VCID-jghn-eujf-zbdn
2
vulnerability VCID-yqam-kpce-dfg7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@5.7.11%252Bdfsg1-0%252Bdeb11u1%3Fdistro=trixie
2
url pkg:deb/debian/wordpress@6.1.9%2Bdfsg1-0%2Bdeb12u1?distro=trixie
purl pkg:deb/debian/wordpress@6.1.9%2Bdfsg1-0%2Bdeb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-gyaq-8pvh-p7gg
1
vulnerability VCID-jghn-eujf-zbdn
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.1.9%252Bdfsg1-0%252Bdeb12u1%3Fdistro=trixie
3
url pkg:deb/debian/wordpress@6.8.3%2Bdfsg1-0%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/wordpress@6.8.3%2Bdfsg1-0%2Bdeb13u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.8.3%252Bdfsg1-0%252Bdeb13u1%3Fdistro=trixie
4
url pkg:deb/debian/wordpress@6.9.4%2Bdfsg1-1?distro=trixie
purl pkg:deb/debian/wordpress@6.9.4%2Bdfsg1-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.9.4%252Bdfsg1-1%3Fdistro=trixie
aliases CVE-2017-17093
risk_score 2.5
exploitability 0.5
weighted_severity 4.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-qu9h-p3s6-8bd2
4
url VCID-x733-wwnx-c7fv
vulnerability_id VCID-x733-wwnx-c7fv
summary WordPress version <4.9 contains a CWE-20 Input Validation vulnerability in thumbnail processing that can result in remote code execution. This attack appears to be exploitable via thumbnail upload by an authenticated user and may require additional plugins in order to be exploited however this has not been confirmed at this time. This issue appears to have been partially, but not completely fixed in WordPress 4.9
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2017-1000600
reference_id
reference_type
scores
0
value 0.19822
scoring_system epss
scoring_elements 0.95412
published_at 2026-04-01T12:55:00Z
1
value 0.19822
scoring_system epss
scoring_elements 0.95421
published_at 2026-04-02T12:55:00Z
2
value 0.19822
scoring_system epss
scoring_elements 0.95427
published_at 2026-04-04T12:55:00Z
3
value 0.19822
scoring_system epss
scoring_elements 0.95431
published_at 2026-04-07T12:55:00Z
4
value 0.19822
scoring_system epss
scoring_elements 0.95438
published_at 2026-04-08T12:55:00Z
5
value 0.19822
scoring_system epss
scoring_elements 0.9544
published_at 2026-04-09T12:55:00Z
6
value 0.19822
scoring_system epss
scoring_elements 0.95445
published_at 2026-04-11T12:55:00Z
7
value 0.19822
scoring_system epss
scoring_elements 0.95444
published_at 2026-04-12T12:55:00Z
8
value 0.19822
scoring_system epss
scoring_elements 0.95446
published_at 2026-04-13T12:55:00Z
9
value 0.19822
scoring_system epss
scoring_elements 0.95455
published_at 2026-04-16T12:55:00Z
10
value 0.19822
scoring_system epss
scoring_elements 0.95459
published_at 2026-04-18T12:55:00Z
11
value 0.19822
scoring_system epss
scoring_elements 0.95463
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2017-1000600
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000600
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000600
fixed_packages
0
url pkg:deb/debian/wordpress@4.9.1%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/wordpress@4.9.1%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@4.9.1%252Bdfsg-1%3Fdistro=trixie
1
url pkg:deb/debian/wordpress@5.7.11%2Bdfsg1-0%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/wordpress@5.7.11%2Bdfsg1-0%2Bdeb11u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-gyaq-8pvh-p7gg
1
vulnerability VCID-jghn-eujf-zbdn
2
vulnerability VCID-yqam-kpce-dfg7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@5.7.11%252Bdfsg1-0%252Bdeb11u1%3Fdistro=trixie
2
url pkg:deb/debian/wordpress@6.1.9%2Bdfsg1-0%2Bdeb12u1?distro=trixie
purl pkg:deb/debian/wordpress@6.1.9%2Bdfsg1-0%2Bdeb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-gyaq-8pvh-p7gg
1
vulnerability VCID-jghn-eujf-zbdn
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.1.9%252Bdfsg1-0%252Bdeb12u1%3Fdistro=trixie
3
url pkg:deb/debian/wordpress@6.8.3%2Bdfsg1-0%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/wordpress@6.8.3%2Bdfsg1-0%2Bdeb13u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.8.3%252Bdfsg1-0%252Bdeb13u1%3Fdistro=trixie
4
url pkg:deb/debian/wordpress@6.9.4%2Bdfsg1-1?distro=trixie
purl pkg:deb/debian/wordpress@6.9.4%2Bdfsg1-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.9.4%252Bdfsg1-1%3Fdistro=trixie
aliases CVE-2017-1000600
risk_score 0.1
exploitability 0.5
weighted_severity 0.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-x733-wwnx-c7fv
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@4.9.1%252Bdfsg-1%3Fdistro=trixie