Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-3xbu-xm1n-ffa7

Summary phppgadmin through 7.12.1 allows sensitive actions to be performed without validating that the request originated from the application. One such area, "database.php" does not verify the source of an HTTP request. This can be leveraged by a remote attacker to trick a logged-in administrator to visit a malicious page with a CSRF exploit and execute arbitrary system commands on the server.

Aliases

alias	CVE-2019-10784

Fixed_packages

url	pkg:deb/debian/phppgadmin@7.14.7%2Bdfsg-1?distro=trixie
purl	pkg:deb/debian/phppgadmin@7.14.7%2Bdfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/phppgadmin@7.14.7%252Bdfsg-1%3Fdistro=trixie

Affected_packages

References

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-10784

reference_id

reference_type

scores

value	0.00431
scoring_system	epss
scoring_elements	0.62652
published_at	2026-04-21T12:55:00Z

value	0.00431
scoring_system	epss
scoring_elements	0.62514
published_at	2026-04-01T12:55:00Z

value	0.00431
scoring_system	epss
scoring_elements	0.62572
published_at	2026-04-02T12:55:00Z

value	0.00431
scoring_system	epss
scoring_elements	0.62605
published_at	2026-04-04T12:55:00Z

value	0.00431
scoring_system	epss
scoring_elements	0.62571
published_at	2026-04-07T12:55:00Z

value	0.00431
scoring_system	epss
scoring_elements	0.62621
published_at	2026-04-13T12:55:00Z

value	0.00431
scoring_system	epss
scoring_elements	0.62637
published_at	2026-04-09T12:55:00Z

value	0.00431
scoring_system	epss
scoring_elements	0.62655
published_at	2026-04-11T12:55:00Z

value	0.00431
scoring_system	epss
scoring_elements	0.62644
published_at	2026-04-12T12:55:00Z

value	0.00431
scoring_system	epss
scoring_elements	0.62662
published_at	2026-04-16T12:55:00Z

value	0.00431
scoring_system	epss
scoring_elements	0.6267
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-10784

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	9.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=953945
reference_id	953945
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=953945

Weaknesses

Exploits

Severity_range_score 9.6 - 9.6

Exploitability null

Weighted_severity null

Risk_score null

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3xbu-xm1n-ffa7

Vulnerability Instance