Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:composer/typo3/cms-core@6.1.0
Typecomposer
Namespacetypo3
Namecms-core
Version6.1.0
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version12.4.41
Latest_non_vulnerable_version14.0.2
Affected_by_vulnerabilities
0
url VCID-75re-n41m-y3et
vulnerability_id VCID-75re-n41m-y3et
summary 
TYPO3 Improper Access Control vulnerability
The (old) Form Content Element component in TYPO3 4.5.0 through 4.5.31, 4.7.0 through 4.7.16, 6.0.0 through 6.0.11, and 6.1.0 through 6.1.6 allows remote authenticated editors to generate arbitrary HMAC signatures and bypass intended access restrictions via unspecified vectors.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2013-7081
reference_id
reference_type
scores
0
value 0.00171
scoring_system epss
scoring_elements 0.38058
published_at 2026-04-29T12:55:00Z
1
value 0.00171
scoring_system epss
scoring_elements 0.38368
published_at 2026-04-13T12:55:00Z
2
value 0.00171
scoring_system epss
scoring_elements 0.38416
published_at 2026-04-16T12:55:00Z
3
value 0.00171
scoring_system epss
scoring_elements 0.38396
published_at 2026-04-18T12:55:00Z
4
value 0.00171
scoring_system epss
scoring_elements 0.38333
published_at 2026-04-21T12:55:00Z
5
value 0.00171
scoring_system epss
scoring_elements 0.38176
published_at 2026-04-24T12:55:00Z
6
value 0.00171
scoring_system epss
scoring_elements 0.38153
published_at 2026-04-26T12:55:00Z
7
value 0.00171
scoring_system epss
scoring_elements 0.38331
published_at 2026-04-01T12:55:00Z
8
value 0.00171
scoring_system epss
scoring_elements 0.38468
published_at 2026-04-02T12:55:00Z
9
value 0.00171
scoring_system epss
scoring_elements 0.38492
published_at 2026-04-04T12:55:00Z
10
value 0.00171
scoring_system epss
scoring_elements 0.38356
published_at 2026-04-07T12:55:00Z
11
value 0.00171
scoring_system epss
scoring_elements 0.38407
published_at 2026-04-08T12:55:00Z
12
value 0.00171
scoring_system epss
scoring_elements 0.38415
published_at 2026-04-09T12:55:00Z
13
value 0.00171
scoring_system epss
scoring_elements 0.38431
published_at 2026-04-11T12:55:00Z
14
value 0.00171
scoring_system epss
scoring_elements 0.38393
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2013-7081
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7073
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7073
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7074
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7074
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7075
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7075
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7076
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7076
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7078
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7078
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7079
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7079
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7080
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7080
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7081
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7081
9
reference_url http://seclists.org/oss-sec/2013/q4/473
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://seclists.org/oss-sec/2013/q4/473
10
reference_url https://github.com/TYPO3-CMS/core
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3-CMS/core
11
reference_url https://nvd.nist.gov/vuln/detail/CVE-2013-7081
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2013-7081
12
reference_url http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-004
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-004
13
reference_url http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-004/
reference_id
reference_type
scores
url http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-004/
14
reference_url http://www.debian.org/security/2014/dsa-2834
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.debian.org/security/2014/dsa-2834
15
reference_url https://github.com/advisories/GHSA-r674-mc9p-hvw5
reference_id GHSA-r674-mc9p-hvw5
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-r674-mc9p-hvw5
fixed_packages
0
url pkg:composer/typo3/cms-core@6.1.6
purl pkg:composer/typo3/cms-core@6.1.6
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms-core@6.1.6
aliases CVE-2013-7081, GHSA-r674-mc9p-hvw5
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-75re-n41m-y3et
1
url VCID-8ahj-xadv-xbhr
vulnerability_id VCID-8ahj-xadv-xbhr
summary 
TYPO3 Cross-site scripting (XSS) vulnerability in the Extbase Framework
Cross-site scripting (XSS) vulnerability in the errorAction method in the ActionController base class in the Extbase Framework in TYPO3 4.5.0 through 4.5.31, 4.7.0 through 4.7.16, 6.0.0 through 6.0.11, and 6.1.0 through 6.1.6, when the Rewritten Property Mapper is enabled, allows remote attackers to inject arbitrary web script or HTML via unspecified input, which is returned in an error message.  NOTE: this might be the same vulnerability as CVE-2013-7072.
references
0
reference_url http://osvdb.org/100885
reference_id
reference_type
scores
0
value LOW
scoring_system generic_textual
scoring_elements
url http://osvdb.org/100885
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2013-7078
reference_id
reference_type
scores
0
value 0.00486
scoring_system epss
scoring_elements 0.65457
published_at 2026-04-29T12:55:00Z
1
value 0.00486
scoring_system epss
scoring_elements 0.6544
published_at 2026-04-11T12:55:00Z
2
value 0.00486
scoring_system epss
scoring_elements 0.65427
published_at 2026-04-12T12:55:00Z
3
value 0.00486
scoring_system epss
scoring_elements 0.65399
published_at 2026-04-13T12:55:00Z
4
value 0.00486
scoring_system epss
scoring_elements 0.65436
published_at 2026-04-16T12:55:00Z
5
value 0.00486
scoring_system epss
scoring_elements 0.65446
published_at 2026-04-18T12:55:00Z
6
value 0.00486
scoring_system epss
scoring_elements 0.65431
published_at 2026-04-21T12:55:00Z
7
value 0.00486
scoring_system epss
scoring_elements 0.65448
published_at 2026-04-24T12:55:00Z
8
value 0.00486
scoring_system epss
scoring_elements 0.6546
published_at 2026-04-26T12:55:00Z
9
value 0.00486
scoring_system epss
scoring_elements 0.65319
published_at 2026-04-01T12:55:00Z
10
value 0.00486
scoring_system epss
scoring_elements 0.65368
published_at 2026-04-02T12:55:00Z
11
value 0.00486
scoring_system epss
scoring_elements 0.65394
published_at 2026-04-04T12:55:00Z
12
value 0.00486
scoring_system epss
scoring_elements 0.65358
published_at 2026-04-07T12:55:00Z
13
value 0.00486
scoring_system epss
scoring_elements 0.65411
published_at 2026-04-08T12:55:00Z
14
value 0.00486
scoring_system epss
scoring_elements 0.65422
published_at 2026-04-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2013-7078
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7073
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7073
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7074
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7074
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7075
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7075
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7076
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7076
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7078
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7078
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7079
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7079
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7080
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7080
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7081
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7081
10
reference_url http://seclists.org/oss-sec/2013/q4/473
reference_id
reference_type
scores
0
value LOW
scoring_system generic_textual
scoring_elements
url http://seclists.org/oss-sec/2013/q4/473
11
reference_url http://seclists.org/oss-sec/2013/q4/487
reference_id
reference_type
scores
0
value LOW
scoring_system generic_textual
scoring_elements
url http://seclists.org/oss-sec/2013/q4/487
12
reference_url https://exchange.xforce.ibmcloud.com/vulnerabilities/89629
reference_id
reference_type
scores
0
value LOW
scoring_system generic_textual
scoring_elements
url https://exchange.xforce.ibmcloud.com/vulnerabilities/89629
13
reference_url https://github.com/TYPO3-CMS/core
reference_id
reference_type
scores
0
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3-CMS/core
14
reference_url https://nvd.nist.gov/vuln/detail/CVE-2013-7078
reference_id
reference_type
scores
0
value LOW
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2013-7078
15
reference_url http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-004
reference_id
reference_type
scores
0
value LOW
scoring_system generic_textual
scoring_elements
url http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-004
16
reference_url http://www.securityfocus.com/bid/64239
reference_id
reference_type
scores
0
value LOW
scoring_system generic_textual
scoring_elements
url http://www.securityfocus.com/bid/64239
17
reference_url https://github.com/advisories/GHSA-qj69-chjp-g4f5
reference_id GHSA-qj69-chjp-g4f5
reference_type
scores
0
value LOW
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-qj69-chjp-g4f5
fixed_packages
0
url pkg:composer/typo3/cms-core@6.1.6
purl pkg:composer/typo3/cms-core@6.1.6
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms-core@6.1.6
aliases CVE-2013-7078, GHSA-qj69-chjp-g4f5
risk_score 1.4
exploitability 0.5
weighted_severity 2.7
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8ahj-xadv-xbhr
2
url VCID-aeeg-apyz-huda
vulnerability_id VCID-aeeg-apyz-huda
summary 
TYPO3 Improper Access Management in the File Abstraction Layer
The File Abstraction Layer (FAL) in TYPO3 6.0.x before 6.0.9 and 6.1.x before 6.1.4 does not properly check permissions, which allows remote authenticated users to create or read arbitrary files via a crafted URL.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2013-4320
reference_id
reference_type
scores
0
value 0.00129
scoring_system epss
scoring_elements 0.32
published_at 2026-04-29T12:55:00Z
1
value 0.00129
scoring_system epss
scoring_elements 0.32408
published_at 2026-04-18T12:55:00Z
2
value 0.00129
scoring_system epss
scoring_elements 0.32379
published_at 2026-04-21T12:55:00Z
3
value 0.00129
scoring_system epss
scoring_elements 0.32205
published_at 2026-04-24T12:55:00Z
4
value 0.00129
scoring_system epss
scoring_elements 0.32084
published_at 2026-04-26T12:55:00Z
5
value 0.00129
scoring_system epss
scoring_elements 0.32372
published_at 2026-04-01T12:55:00Z
6
value 0.00129
scoring_system epss
scoring_elements 0.32521
published_at 2026-04-02T12:55:00Z
7
value 0.00129
scoring_system epss
scoring_elements 0.32557
published_at 2026-04-04T12:55:00Z
8
value 0.00129
scoring_system epss
scoring_elements 0.3238
published_at 2026-04-07T12:55:00Z
9
value 0.00129
scoring_system epss
scoring_elements 0.32429
published_at 2026-04-08T12:55:00Z
10
value 0.00129
scoring_system epss
scoring_elements 0.32456
published_at 2026-04-09T12:55:00Z
11
value 0.00129
scoring_system epss
scoring_elements 0.3246
published_at 2026-04-11T12:55:00Z
12
value 0.00129
scoring_system epss
scoring_elements 0.32422
published_at 2026-04-12T12:55:00Z
13
value 0.00129
scoring_system epss
scoring_elements 0.32394
published_at 2026-04-13T12:55:00Z
14
value 0.00129
scoring_system epss
scoring_elements 0.3243
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2013-4320
1
reference_url https://github.com/TYPO3-CMS/core
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3-CMS/core
2
reference_url https://nvd.nist.gov/vuln/detail/CVE-2013-4320
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2013-4320
3
reference_url https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-003
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-003
4
reference_url https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-003/
reference_id
reference_type
scores
url https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-003/
5
reference_url https://github.com/advisories/GHSA-p9jg-9w87-6rg4
reference_id GHSA-p9jg-9w87-6rg4
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-p9jg-9w87-6rg4
fixed_packages
0
url pkg:composer/typo3/cms-core@6.1.4
purl pkg:composer/typo3/cms-core@6.1.4
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms-core@6.1.4
aliases CVE-2013-4320, GHSA-p9jg-9w87-6rg4
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-aeeg-apyz-huda
3
url VCID-bbrf-qfw6-w3fx
vulnerability_id VCID-bbrf-qfw6-w3fx
summary 
TYPO3 Cross-site scripting (XSS) vulnerability in the Backend User Administration Module
Cross-site scripting (XSS) vulnerability in the Backend User Administration Module in TYPO3 6.0.x before 6.0.12 and 6.1.x before 6.1.7 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
references
0
reference_url http://osvdb.org/100884
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://osvdb.org/100884
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2013-7077
reference_id
reference_type
scores
0
value 0.00329
scoring_system epss
scoring_elements 0.55843
published_at 2026-04-29T12:55:00Z
1
value 0.00329
scoring_system epss
scoring_elements 0.55927
published_at 2026-04-12T12:55:00Z
2
value 0.00329
scoring_system epss
scoring_elements 0.55909
published_at 2026-04-13T12:55:00Z
3
value 0.00329
scoring_system epss
scoring_elements 0.55945
published_at 2026-04-16T12:55:00Z
4
value 0.00329
scoring_system epss
scoring_elements 0.55949
published_at 2026-04-18T12:55:00Z
5
value 0.00329
scoring_system epss
scoring_elements 0.55924
published_at 2026-04-21T12:55:00Z
6
value 0.00329
scoring_system epss
scoring_elements 0.5585
published_at 2026-04-24T12:55:00Z
7
value 0.00329
scoring_system epss
scoring_elements 0.55868
published_at 2026-04-26T12:55:00Z
8
value 0.00329
scoring_system epss
scoring_elements 0.55772
published_at 2026-04-01T12:55:00Z
9
value 0.00329
scoring_system epss
scoring_elements 0.55884
published_at 2026-04-02T12:55:00Z
10
value 0.00329
scoring_system epss
scoring_elements 0.55906
published_at 2026-04-04T12:55:00Z
11
value 0.00329
scoring_system epss
scoring_elements 0.55885
published_at 2026-04-07T12:55:00Z
12
value 0.00329
scoring_system epss
scoring_elements 0.55935
published_at 2026-04-08T12:55:00Z
13
value 0.00329
scoring_system epss
scoring_elements 0.55938
published_at 2026-04-09T12:55:00Z
14
value 0.00329
scoring_system epss
scoring_elements 0.55947
published_at 2026-04-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2013-7077
2
reference_url http://seclists.org/oss-sec/2013/q4/473
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://seclists.org/oss-sec/2013/q4/473
3
reference_url http://seclists.org/oss-sec/2013/q4/487
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://seclists.org/oss-sec/2013/q4/487
4
reference_url https://exchange.xforce.ibmcloud.com/vulnerabilities/89626
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://exchange.xforce.ibmcloud.com/vulnerabilities/89626
5
reference_url https://github.com/TYPO3-CMS/core
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3-CMS/core
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2013-7077
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2013-7077
7
reference_url http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-004
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-004
8
reference_url https://github.com/advisories/GHSA-5cmc-r23m-hvrr
reference_id GHSA-5cmc-r23m-hvrr
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-5cmc-r23m-hvrr
fixed_packages
0
url pkg:composer/typo3/cms-core@6.1.7
purl pkg:composer/typo3/cms-core@6.1.7
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms-core@6.1.7
aliases CVE-2013-7077, GHSA-5cmc-r23m-hvrr
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bbrf-qfw6-w3fx
Fixing_vulnerabilities
Risk_score3.1
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms-core@6.1.0