Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-n83t-8xmt-q7cs
SummaryWhen requests to the internal network for webhooks are enabled, a server-side request forgery vulnerability in GitLab CE/EE affecting all versions starting from 10.5 was possible to exploit for an unauthenticated attacker even on a GitLab instance where registration is limited
Aliases
0
alias CVE-2021-22214
Fixed_packages
0
url pkg:alpm/archlinux/gitlab@13.12.2-1
purl pkg:alpm/archlinux/gitlab@13.12.2-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/gitlab@13.12.2-1
1
url pkg:deb/debian/gitlab@15.10.8%2Bds1-2?distro=sid
purl pkg:deb/debian/gitlab@15.10.8%2Bds1-2?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gitlab@15.10.8%252Bds1-2%3Fdistro=sid
2
url pkg:deb/debian/gitlab@17.6.5-19?distro=sid
purl pkg:deb/debian/gitlab@17.6.5-19?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gitlab@17.6.5-19%3Fdistro=sid
Affected_packages
0
url pkg:alpm/archlinux/gitlab@13.11.3-1
purl pkg:alpm/archlinux/gitlab@13.11.3-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3gk7-f7rw-s3bt
1
vulnerability VCID-8ahg-hgub-43b5
2
vulnerability VCID-bakk-7gzs-sfd8
3
vulnerability VCID-k29f-m5ey-f3d6
4
vulnerability VCID-kbpk-h81g-g7dr
5
vulnerability VCID-n7d2-p93t-73fg
6
vulnerability VCID-n83t-8xmt-q7cs
7
vulnerability VCID-s8ds-5b7r-gfed
8
vulnerability VCID-t5qj-bzm5-5qhe
9
vulnerability VCID-y93u-mrdn-abe3
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/gitlab@13.11.3-1
References
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-22214
reference_id
reference_type
scores
0
value 0.92676
scoring_system epss
scoring_elements 0.99752
published_at 2026-04-24T12:55:00Z
1
value 0.92676
scoring_system epss
scoring_elements 0.9975
published_at 2026-04-21T12:55:00Z
2
value 0.93431
scoring_system epss
scoring_elements 0.99815
published_at 2026-04-04T12:55:00Z
3
value 0.93431
scoring_system epss
scoring_elements 0.99817
published_at 2026-04-13T12:55:00Z
4
value 0.93431
scoring_system epss
scoring_elements 0.99816
published_at 2026-04-09T12:55:00Z
5
value 0.9357
scoring_system epss
scoring_elements 0.99833
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-22214
1
reference_url https://security.archlinux.org/ASA-202106-21
reference_id ASA-202106-21
reference_type
scores
url https://security.archlinux.org/ASA-202106-21
2
reference_url https://security.archlinux.org/AVG-2023
reference_id AVG-2023
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2023
Weaknesses
Exploits
Severity_range_score7.0 - 8.9
Exploitability2.0
Weighted_severity8.0
Risk_score10.0
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-n83t-8xmt-q7cs