Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-9ck2-p7hx-4qex
SummaryMultiple cross-site scripting (XSS) vulnerabilities in MoinMoin 1.7.3 and earlier, 1.8.x before 1.8.8, and 1.9.x before 1.9.3 allow remote attackers to inject arbitrary web script or HTML via crafted content, related to (1) Page.py, (2) PageEditor.py, (3) PageGraphicalEditor.py, (4) action/CopyPage.py, (5) action/Load.py, (6) action/RenamePage.py, (7) action/backup.py, (8) action/login.py, (9) action/newaccount.py, and (10) action/recoverpass.py.
Aliases
0
alias CVE-2010-2487
1
alias GHSA-5m2m-27cg-7v4v
2
alias PYSEC-2010-16
Fixed_packages
0
url pkg:ebuild/www-apps/moinmoin@1.9.4
purl pkg:ebuild/www-apps/moinmoin@1.9.4
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:ebuild/www-apps/moinmoin@1.9.4
1
url pkg:pypi/moin@1.8.8
purl pkg:pypi/moin@1.8.8
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/moin@1.8.8
2
url pkg:pypi/moin@1.9.3
purl pkg:pypi/moin@1.9.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1fak-dar5-tuet
1
vulnerability VCID-1kv8-4wn6-yydy
2
vulnerability VCID-2yaq-3m4p-q3bu
3
vulnerability VCID-3z75-azrr-2qac
4
vulnerability VCID-4fn8-ab2r-23dk
5
vulnerability VCID-4q2t-yhg6-k3dg
6
vulnerability VCID-5hn2-1bvq-jfdh
7
vulnerability VCID-h1wf-35g5-5ucz
8
vulnerability VCID-kjqq-u9hy-5yda
9
vulnerability VCID-qgm9-pnrw-p3ak
10
vulnerability VCID-tkp3-e758-suhx
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/moin@1.9.3
Affected_packages
0
url pkg:pypi/moin@1.8.4
purl pkg:pypi/moin@1.8.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1fak-dar5-tuet
1
vulnerability VCID-1kv8-4wn6-yydy
2
vulnerability VCID-2yaq-3m4p-q3bu
3
vulnerability VCID-3fgh-8nmt-2fgp
4
vulnerability VCID-3z75-azrr-2qac
5
vulnerability VCID-4fn8-ab2r-23dk
6
vulnerability VCID-4q2t-yhg6-k3dg
7
vulnerability VCID-551s-jjxy-qfer
8
vulnerability VCID-5hn2-1bvq-jfdh
9
vulnerability VCID-8xsp-chsd-cfhp
10
vulnerability VCID-9ck2-p7hx-4qex
11
vulnerability VCID-aduk-vjjh-c3gc
12
vulnerability VCID-kjqq-u9hy-5yda
13
vulnerability VCID-qcmp-zvgm-8bcm
14
vulnerability VCID-tkp3-e758-suhx
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/moin@1.8.4
1
url pkg:pypi/moin@1.8.5
purl pkg:pypi/moin@1.8.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1fak-dar5-tuet
1
vulnerability VCID-1kv8-4wn6-yydy
2
vulnerability VCID-2yaq-3m4p-q3bu
3
vulnerability VCID-3fgh-8nmt-2fgp
4
vulnerability VCID-3z75-azrr-2qac
5
vulnerability VCID-4fn8-ab2r-23dk
6
vulnerability VCID-4q2t-yhg6-k3dg
7
vulnerability VCID-551s-jjxy-qfer
8
vulnerability VCID-5hn2-1bvq-jfdh
9
vulnerability VCID-8xsp-chsd-cfhp
10
vulnerability VCID-9ck2-p7hx-4qex
11
vulnerability VCID-aduk-vjjh-c3gc
12
vulnerability VCID-kjqq-u9hy-5yda
13
vulnerability VCID-qcmp-zvgm-8bcm
14
vulnerability VCID-tkp3-e758-suhx
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/moin@1.8.5
2
url pkg:pypi/moin@1.8.6
purl pkg:pypi/moin@1.8.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1fak-dar5-tuet
1
vulnerability VCID-1kv8-4wn6-yydy
2
vulnerability VCID-2yaq-3m4p-q3bu
3
vulnerability VCID-3fgh-8nmt-2fgp
4
vulnerability VCID-3z75-azrr-2qac
5
vulnerability VCID-4fn8-ab2r-23dk
6
vulnerability VCID-4q2t-yhg6-k3dg
7
vulnerability VCID-551s-jjxy-qfer
8
vulnerability VCID-5hn2-1bvq-jfdh
9
vulnerability VCID-8xsp-chsd-cfhp
10
vulnerability VCID-9ck2-p7hx-4qex
11
vulnerability VCID-aduk-vjjh-c3gc
12
vulnerability VCID-kjqq-u9hy-5yda
13
vulnerability VCID-qcmp-zvgm-8bcm
14
vulnerability VCID-tkp3-e758-suhx
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/moin@1.8.6
3
url pkg:pypi/moin@1.8.7
purl pkg:pypi/moin@1.8.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1fak-dar5-tuet
1
vulnerability VCID-1kv8-4wn6-yydy
2
vulnerability VCID-2yaq-3m4p-q3bu
3
vulnerability VCID-3z75-azrr-2qac
4
vulnerability VCID-4fn8-ab2r-23dk
5
vulnerability VCID-4q2t-yhg6-k3dg
6
vulnerability VCID-5hn2-1bvq-jfdh
7
vulnerability VCID-8xsp-chsd-cfhp
8
vulnerability VCID-9ck2-p7hx-4qex
9
vulnerability VCID-aduk-vjjh-c3gc
10
vulnerability VCID-kjqq-u9hy-5yda
11
vulnerability VCID-tkp3-e758-suhx
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/moin@1.8.7
4
url pkg:pypi/moin@1.9.0
purl pkg:pypi/moin@1.9.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1fak-dar5-tuet
1
vulnerability VCID-1kv8-4wn6-yydy
2
vulnerability VCID-2yaq-3m4p-q3bu
3
vulnerability VCID-3fgh-8nmt-2fgp
4
vulnerability VCID-3z75-azrr-2qac
5
vulnerability VCID-4fn8-ab2r-23dk
6
vulnerability VCID-4q2t-yhg6-k3dg
7
vulnerability VCID-551s-jjxy-qfer
8
vulnerability VCID-5dkr-jfqu-4kfq
9
vulnerability VCID-5hn2-1bvq-jfdh
10
vulnerability VCID-8xsp-chsd-cfhp
11
vulnerability VCID-9ck2-p7hx-4qex
12
vulnerability VCID-aduk-vjjh-c3gc
13
vulnerability VCID-faws-7xxv-eudq
14
vulnerability VCID-kjqq-u9hy-5yda
15
vulnerability VCID-qgm9-pnrw-p3ak
16
vulnerability VCID-tkp3-e758-suhx
17
vulnerability VCID-xz41-zzdr-6ycb
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/moin@1.9.0
5
url pkg:pypi/moin@1.9.1
purl pkg:pypi/moin@1.9.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1fak-dar5-tuet
1
vulnerability VCID-1kv8-4wn6-yydy
2
vulnerability VCID-2yaq-3m4p-q3bu
3
vulnerability VCID-3fgh-8nmt-2fgp
4
vulnerability VCID-3z75-azrr-2qac
5
vulnerability VCID-4fn8-ab2r-23dk
6
vulnerability VCID-4q2t-yhg6-k3dg
7
vulnerability VCID-551s-jjxy-qfer
8
vulnerability VCID-5dkr-jfqu-4kfq
9
vulnerability VCID-5hn2-1bvq-jfdh
10
vulnerability VCID-8xsp-chsd-cfhp
11
vulnerability VCID-9ck2-p7hx-4qex
12
vulnerability VCID-aduk-vjjh-c3gc
13
vulnerability VCID-kjqq-u9hy-5yda
14
vulnerability VCID-qgm9-pnrw-p3ak
15
vulnerability VCID-tkp3-e758-suhx
16
vulnerability VCID-xz41-zzdr-6ycb
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/moin@1.9.1
6
url pkg:pypi/moin@1.9.2
purl pkg:pypi/moin@1.9.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1fak-dar5-tuet
1
vulnerability VCID-1kv8-4wn6-yydy
2
vulnerability VCID-2yaq-3m4p-q3bu
3
vulnerability VCID-3z75-azrr-2qac
4
vulnerability VCID-4fn8-ab2r-23dk
5
vulnerability VCID-4q2t-yhg6-k3dg
6
vulnerability VCID-5dkr-jfqu-4kfq
7
vulnerability VCID-5hn2-1bvq-jfdh
8
vulnerability VCID-8xsp-chsd-cfhp
9
vulnerability VCID-9ck2-p7hx-4qex
10
vulnerability VCID-aduk-vjjh-c3gc
11
vulnerability VCID-kjqq-u9hy-5yda
12
vulnerability VCID-qgm9-pnrw-p3ak
13
vulnerability VCID-tkp3-e758-suhx
14
vulnerability VCID-xz41-zzdr-6ycb
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/moin@1.9.2
References
0
reference_url http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=584809
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=584809
1
reference_url http://hg.moinmo.in/moin/1.7/rev/37306fba2189
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url http://hg.moinmo.in/moin/1.7/rev/37306fba2189
2
reference_url http://hg.moinmo.in/moin/1.8/raw-file/1.8.8/docs/CHANGES
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url http://hg.moinmo.in/moin/1.8/raw-file/1.8.8/docs/CHANGES
3
reference_url http://hg.moinmo.in/moin/1.8/rev/4238b0c90871
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url http://hg.moinmo.in/moin/1.8/rev/4238b0c90871
4
reference_url http://hg.moinmo.in/moin/1.9/raw-file/1.9.3/docs/CHANGES
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url http://hg.moinmo.in/moin/1.9/raw-file/1.9.3/docs/CHANGES
5
reference_url http://hg.moinmo.in/moin/1.9/rev/68ba3cc79513
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url http://hg.moinmo.in/moin/1.9/rev/68ba3cc79513
6
reference_url http://hg.moinmo.in/moin/1.9/rev/e50b087c4572
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url http://hg.moinmo.in/moin/1.9/rev/e50b087c4572
7
reference_url http://marc.info/?l=oss-security&m=127799369406968&w=2
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url http://marc.info/?l=oss-security&m=127799369406968&w=2
8
reference_url http://marc.info/?l=oss-security&m=127809682420259&w=2
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url http://marc.info/?l=oss-security&m=127809682420259&w=2
9
reference_url http://moinmo.in/MoinMoinBugs/1.9.2UnescapedInputForThemeAddMsg
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url http://moinmo.in/MoinMoinBugs/1.9.2UnescapedInputForThemeAddMsg
10
reference_url http://moinmo.in/MoinMoinRelease1.8
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url http://moinmo.in/MoinMoinRelease1.8
11
reference_url http://moinmo.in/MoinMoinRelease1.9
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url http://moinmo.in/MoinMoinRelease1.9
12
reference_url http://moinmo.in/SecurityFixes
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url http://moinmo.in/SecurityFixes
13
reference_url https://api.first.org/data/v1/epss?cve=CVE-2010-2487
reference_id
reference_type
scores
0
value 0.01315
scoring_system epss
scoring_elements 0.80186
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2010-2487
14
reference_url http://secunia.com/advisories/40836
reference_id
reference_type
scores
url http://secunia.com/advisories/40836
15
reference_url https://github.com/moinwiki/moin
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moinwiki/moin
16
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/moin/PYSEC-2010-16.yaml
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/moin/PYSEC-2010-16.yaml
17
reference_url https://nvd.nist.gov/vuln/detail/CVE-2010-2487
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2010-2487
18
reference_url https://web.archive.org/web/20140801154518/http://secunia.com/advisories/40836
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20140801154518/http://secunia.com/advisories/40836
19
reference_url https://web.archive.org/web/20200228150629/http://www.securityfocus.com/bid/40549
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20200228150629/http://www.securityfocus.com/bid/40549
20
reference_url http://www.debian.org/security/2010/dsa-2083
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.debian.org/security/2010/dsa-2083
21
reference_url http://www.securityfocus.com/bid/40549
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/40549
22
reference_url http://www.vupen.com/english/advisories/2010/1981
reference_id
reference_type
scores
url http://www.vupen.com/english/advisories/2010/1981
23
reference_url https://security.gentoo.org/glsa/201210-02
reference_id GLSA-201210-02
reference_type
scores
url https://security.gentoo.org/glsa/201210-02
Weaknesses
0
cwe_id 79
name Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
description The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.
Exploits
Severity_range_score4.0 - 6.9
Exploitability0.5
Weighted_severity6.2
Risk_score3.1
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-9ck2-p7hx-4qex