Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-k1bk-quky-zqar

Summary

Security researcher Rafay Baloch reported a mechanism to spoof the
addressbar in Firefox for Android using right-to-left character sets when combined with
left-to-right characters. This can be used to cause only certain portions of the loaded
left-to-right character portion of the URL to be displayed, misleading users as to what
site is loaded, possibly leading to phishing attacks. 
This vulnerability does not affect the desktop version of Firefox.

Aliases

alias	CVE-2016-5267

Fixed_packages

url	pkg:mozilla/Firefox@48.0.0
purl	pkg:mozilla/Firefox@48.0.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@48.0.0

Affected_packages

References

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5267
reference_id	CVE-2016-5267
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5267

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2016-82

reference_id

mfsa2016-82

reference_type

scores

value	none
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2016-82

Weaknesses

Exploits

Severity_range_score null

Exploitability null

Weighted_severity null

Risk_score null

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-k1bk-quky-zqar

Vulnerability Instance