Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-9whb-yuuw-mfek
Summary
Aliases
0
alias CVE-2022-29248
1
alias GHSA-cwmx-hcrq-mhc3
Fixed_packages
0
url pkg:alpm/archlinux/mediawiki@1.38.3-1
purl pkg:alpm/archlinux/mediawiki@1.38.3-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/mediawiki@1.38.3-1
1
url pkg:composer/guzzlehttp/guzzle@6.5.6
purl pkg:composer/guzzlehttp/guzzle@6.5.6
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/guzzlehttp/guzzle@6.5.6
2
url pkg:composer/guzzlehttp/guzzle@7.4.3
purl pkg:composer/guzzlehttp/guzzle@7.4.3
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/guzzlehttp/guzzle@7.4.3
Affected_packages
0
url pkg:alpm/archlinux/mediawiki@1.38.2-1
purl pkg:alpm/archlinux/mediawiki@1.38.2-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yd9-7jak-37eh
1
vulnerability VCID-49ch-k57h-s7gg
2
vulnerability VCID-5g99-w3vs-fbfb
3
vulnerability VCID-5vnn-s1cm-a7cq
4
vulnerability VCID-8j6c-ajd5-9qg6
5
vulnerability VCID-9fvn-heu7-ufdy
6
vulnerability VCID-9whb-yuuw-mfek
7
vulnerability VCID-c8yu-q8xy-c7ct
8
vulnerability VCID-nr7z-ztd8-9bft
9
vulnerability VCID-phd4-jbkh-tybn
10
vulnerability VCID-u27m-raqy-33fx
11
vulnerability VCID-waxq-hdht-53de
12
vulnerability VCID-wkts-fqjc-hug2
13
vulnerability VCID-y8ex-rxpy-kuau
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/mediawiki@1.38.2-1
1
url pkg:composer/guzzlehttp/guzzle@7.0.0
purl pkg:composer/guzzlehttp/guzzle@7.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-49ch-k57h-s7gg
1
vulnerability VCID-9whb-yuuw-mfek
2
vulnerability VCID-phd4-jbkh-tybn
3
vulnerability VCID-waxq-hdht-53de
4
vulnerability VCID-wkts-fqjc-hug2
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/guzzlehttp/guzzle@7.0.0
References
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-29248
reference_id
reference_type
scores
0
value 0.00637
scoring_system epss
scoring_elements 0.70808
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-29248
1
reference_url https://github.com/guzzle/guzzle/commit/74a8602c6faec9ef74b7a9391ac82c5e65b1cdab
reference_id
reference_type
scores
url https://github.com/guzzle/guzzle/commit/74a8602c6faec9ef74b7a9391ac82c5e65b1cdab
2
reference_url https://github.com/guzzle/guzzle/pull/3018
reference_id
reference_type
scores
url https://github.com/guzzle/guzzle/pull/3018
3
reference_url https://www.debian.org/security/2022/dsa-5246
reference_id
reference_type
scores
url https://www.debian.org/security/2022/dsa-5246
4
reference_url https://www.drupal.org/sa-core-2022-010
reference_id
reference_type
scores
url https://www.drupal.org/sa-core-2022-010
5
reference_url https://security.archlinux.org/AVG-2823
reference_id AVG-2823
reference_type
scores
0
value Unknown
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2823
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2022-29248
reference_id CVE-2022-29248
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2022-29248
7
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/guzzlehttp/guzzle/CVE-2022-29248.yaml
reference_id CVE-2022-29248.YAML
reference_type
scores
url https://github.com/FriendsOfPHP/security-advisories/blob/master/guzzlehttp/guzzle/CVE-2022-29248.yaml
8
reference_url https://github.com/advisories/GHSA-cwmx-hcrq-mhc3
reference_id GHSA-cwmx-hcrq-mhc3
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-cwmx-hcrq-mhc3
9
reference_url https://github.com/guzzle/guzzle/security/advisories/GHSA-cwmx-hcrq-mhc3
reference_id GHSA-cwmx-hcrq-mhc3
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/guzzle/guzzle/security/advisories/GHSA-cwmx-hcrq-mhc3
Weaknesses
0
cwe_id 200
name Exposure of Sensitive Information to an Unauthorized Actor
description The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
1
cwe_id 565
name Reliance on Cookies without Validation and Integrity Checking
description The product relies on the existence or values of cookies when performing security-critical operations, but it does not properly ensure that the setting is valid for the associated user.
Exploits
Severity_range_score7.0 - 8.9
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-9whb-yuuw-mfek