Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-d18w-azwz-nuhn
Summary
Vitaly Nevgen reported that an attacker could replace a
sub-frame in another domain's document by using the name attribute of the
sub-frame as a form submission target. This can potentially allow for phishing
attacks against users and violates the HTML5 frame navigation policy.
Firefox 3.6 and Thunderbird 3.1 are not affected by this
vulnerability.
Aliases
0
alias CVE-2012-0445
Fixed_packages
0
url pkg:mozilla/Firefox@10.0.0
purl pkg:mozilla/Firefox@10.0.0
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@10.0.0
1
url pkg:mozilla/SeaMonkey@2.7.0
purl pkg:mozilla/SeaMonkey@2.7.0
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/SeaMonkey@2.7.0
2
url pkg:mozilla/Thunderbird@10.0.0
purl pkg:mozilla/Thunderbird@10.0.0
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@10.0.0
Affected_packages
References
0
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0445
reference_id CVE-2012-0445
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0445
1
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2012-03
reference_id mfsa2012-03
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2012-03
Weaknesses
Exploits
Severity_range_score7.0 - 8.9
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-d18w-azwz-nuhn