Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-4fn8-ab2r-23dk
SummaryCross-site scripting (XSS) vulnerability in the link dialogue in GUI editor in MoinMoin before 1.9.10 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Aliases
0
alias CVE-2017-5934
1
alias GHSA-42fp-4hm3-j8r7
2
alias PYSEC-2018-47
Fixed_packages
0
url pkg:pypi/moin@1.9.10
purl pkg:pypi/moin@1.9.10
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2yaq-3m4p-q3bu
1
vulnerability VCID-kjqq-u9hy-5yda
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/moin@1.9.10
Affected_packages
0
url pkg:pypi/moin@1.8.4
purl pkg:pypi/moin@1.8.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1fak-dar5-tuet
1
vulnerability VCID-1kv8-4wn6-yydy
2
vulnerability VCID-2yaq-3m4p-q3bu
3
vulnerability VCID-3fgh-8nmt-2fgp
4
vulnerability VCID-3z75-azrr-2qac
5
vulnerability VCID-4fn8-ab2r-23dk
6
vulnerability VCID-4q2t-yhg6-k3dg
7
vulnerability VCID-551s-jjxy-qfer
8
vulnerability VCID-5hn2-1bvq-jfdh
9
vulnerability VCID-8xsp-chsd-cfhp
10
vulnerability VCID-9ck2-p7hx-4qex
11
vulnerability VCID-aduk-vjjh-c3gc
12
vulnerability VCID-kjqq-u9hy-5yda
13
vulnerability VCID-qcmp-zvgm-8bcm
14
vulnerability VCID-tkp3-e758-suhx
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/moin@1.8.4
1
url pkg:pypi/moin@1.8.5
purl pkg:pypi/moin@1.8.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1fak-dar5-tuet
1
vulnerability VCID-1kv8-4wn6-yydy
2
vulnerability VCID-2yaq-3m4p-q3bu
3
vulnerability VCID-3fgh-8nmt-2fgp
4
vulnerability VCID-3z75-azrr-2qac
5
vulnerability VCID-4fn8-ab2r-23dk
6
vulnerability VCID-4q2t-yhg6-k3dg
7
vulnerability VCID-551s-jjxy-qfer
8
vulnerability VCID-5hn2-1bvq-jfdh
9
vulnerability VCID-8xsp-chsd-cfhp
10
vulnerability VCID-9ck2-p7hx-4qex
11
vulnerability VCID-aduk-vjjh-c3gc
12
vulnerability VCID-kjqq-u9hy-5yda
13
vulnerability VCID-qcmp-zvgm-8bcm
14
vulnerability VCID-tkp3-e758-suhx
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/moin@1.8.5
2
url pkg:pypi/moin@1.8.6
purl pkg:pypi/moin@1.8.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1fak-dar5-tuet
1
vulnerability VCID-1kv8-4wn6-yydy
2
vulnerability VCID-2yaq-3m4p-q3bu
3
vulnerability VCID-3fgh-8nmt-2fgp
4
vulnerability VCID-3z75-azrr-2qac
5
vulnerability VCID-4fn8-ab2r-23dk
6
vulnerability VCID-4q2t-yhg6-k3dg
7
vulnerability VCID-551s-jjxy-qfer
8
vulnerability VCID-5hn2-1bvq-jfdh
9
vulnerability VCID-8xsp-chsd-cfhp
10
vulnerability VCID-9ck2-p7hx-4qex
11
vulnerability VCID-aduk-vjjh-c3gc
12
vulnerability VCID-kjqq-u9hy-5yda
13
vulnerability VCID-qcmp-zvgm-8bcm
14
vulnerability VCID-tkp3-e758-suhx
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/moin@1.8.6
3
url pkg:pypi/moin@1.8.7
purl pkg:pypi/moin@1.8.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1fak-dar5-tuet
1
vulnerability VCID-1kv8-4wn6-yydy
2
vulnerability VCID-2yaq-3m4p-q3bu
3
vulnerability VCID-3z75-azrr-2qac
4
vulnerability VCID-4fn8-ab2r-23dk
5
vulnerability VCID-4q2t-yhg6-k3dg
6
vulnerability VCID-5hn2-1bvq-jfdh
7
vulnerability VCID-8xsp-chsd-cfhp
8
vulnerability VCID-9ck2-p7hx-4qex
9
vulnerability VCID-aduk-vjjh-c3gc
10
vulnerability VCID-kjqq-u9hy-5yda
11
vulnerability VCID-tkp3-e758-suhx
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/moin@1.8.7
4
url pkg:pypi/moin@1.9.0
purl pkg:pypi/moin@1.9.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1fak-dar5-tuet
1
vulnerability VCID-1kv8-4wn6-yydy
2
vulnerability VCID-2yaq-3m4p-q3bu
3
vulnerability VCID-3fgh-8nmt-2fgp
4
vulnerability VCID-3z75-azrr-2qac
5
vulnerability VCID-4fn8-ab2r-23dk
6
vulnerability VCID-4q2t-yhg6-k3dg
7
vulnerability VCID-551s-jjxy-qfer
8
vulnerability VCID-5dkr-jfqu-4kfq
9
vulnerability VCID-5hn2-1bvq-jfdh
10
vulnerability VCID-8xsp-chsd-cfhp
11
vulnerability VCID-9ck2-p7hx-4qex
12
vulnerability VCID-aduk-vjjh-c3gc
13
vulnerability VCID-faws-7xxv-eudq
14
vulnerability VCID-kjqq-u9hy-5yda
15
vulnerability VCID-qgm9-pnrw-p3ak
16
vulnerability VCID-tkp3-e758-suhx
17
vulnerability VCID-xz41-zzdr-6ycb
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/moin@1.9.0
5
url pkg:pypi/moin@1.9.1
purl pkg:pypi/moin@1.9.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1fak-dar5-tuet
1
vulnerability VCID-1kv8-4wn6-yydy
2
vulnerability VCID-2yaq-3m4p-q3bu
3
vulnerability VCID-3fgh-8nmt-2fgp
4
vulnerability VCID-3z75-azrr-2qac
5
vulnerability VCID-4fn8-ab2r-23dk
6
vulnerability VCID-4q2t-yhg6-k3dg
7
vulnerability VCID-551s-jjxy-qfer
8
vulnerability VCID-5dkr-jfqu-4kfq
9
vulnerability VCID-5hn2-1bvq-jfdh
10
vulnerability VCID-8xsp-chsd-cfhp
11
vulnerability VCID-9ck2-p7hx-4qex
12
vulnerability VCID-aduk-vjjh-c3gc
13
vulnerability VCID-kjqq-u9hy-5yda
14
vulnerability VCID-qgm9-pnrw-p3ak
15
vulnerability VCID-tkp3-e758-suhx
16
vulnerability VCID-xz41-zzdr-6ycb
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/moin@1.9.1
6
url pkg:pypi/moin@1.9.2
purl pkg:pypi/moin@1.9.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1fak-dar5-tuet
1
vulnerability VCID-1kv8-4wn6-yydy
2
vulnerability VCID-2yaq-3m4p-q3bu
3
vulnerability VCID-3z75-azrr-2qac
4
vulnerability VCID-4fn8-ab2r-23dk
5
vulnerability VCID-4q2t-yhg6-k3dg
6
vulnerability VCID-5dkr-jfqu-4kfq
7
vulnerability VCID-5hn2-1bvq-jfdh
8
vulnerability VCID-8xsp-chsd-cfhp
9
vulnerability VCID-9ck2-p7hx-4qex
10
vulnerability VCID-aduk-vjjh-c3gc
11
vulnerability VCID-kjqq-u9hy-5yda
12
vulnerability VCID-qgm9-pnrw-p3ak
13
vulnerability VCID-tkp3-e758-suhx
14
vulnerability VCID-xz41-zzdr-6ycb
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/moin@1.9.2
7
url pkg:pypi/moin@1.9.3
purl pkg:pypi/moin@1.9.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1fak-dar5-tuet
1
vulnerability VCID-1kv8-4wn6-yydy
2
vulnerability VCID-2yaq-3m4p-q3bu
3
vulnerability VCID-3z75-azrr-2qac
4
vulnerability VCID-4fn8-ab2r-23dk
5
vulnerability VCID-4q2t-yhg6-k3dg
6
vulnerability VCID-5hn2-1bvq-jfdh
7
vulnerability VCID-h1wf-35g5-5ucz
8
vulnerability VCID-kjqq-u9hy-5yda
9
vulnerability VCID-qgm9-pnrw-p3ak
10
vulnerability VCID-tkp3-e758-suhx
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/moin@1.9.3
8
url pkg:pypi/moin@1.9.4
purl pkg:pypi/moin@1.9.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1fak-dar5-tuet
1
vulnerability VCID-1kv8-4wn6-yydy
2
vulnerability VCID-2yaq-3m4p-q3bu
3
vulnerability VCID-3z75-azrr-2qac
4
vulnerability VCID-4fn8-ab2r-23dk
5
vulnerability VCID-4q2t-yhg6-k3dg
6
vulnerability VCID-5hn2-1bvq-jfdh
7
vulnerability VCID-h1wf-35g5-5ucz
8
vulnerability VCID-kjqq-u9hy-5yda
9
vulnerability VCID-qgm9-pnrw-p3ak
10
vulnerability VCID-tkp3-e758-suhx
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/moin@1.9.4
9
url pkg:pypi/moin@1.9.5
purl pkg:pypi/moin@1.9.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1fak-dar5-tuet
1
vulnerability VCID-1kv8-4wn6-yydy
2
vulnerability VCID-2yaq-3m4p-q3bu
3
vulnerability VCID-3z75-azrr-2qac
4
vulnerability VCID-4fn8-ab2r-23dk
5
vulnerability VCID-4q2t-yhg6-k3dg
6
vulnerability VCID-5hn2-1bvq-jfdh
7
vulnerability VCID-h1wf-35g5-5ucz
8
vulnerability VCID-kjqq-u9hy-5yda
9
vulnerability VCID-tkp3-e758-suhx
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/moin@1.9.5
10
url pkg:pypi/moin@1.9.6
purl pkg:pypi/moin@1.9.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1kv8-4wn6-yydy
1
vulnerability VCID-2yaq-3m4p-q3bu
2
vulnerability VCID-4fn8-ab2r-23dk
3
vulnerability VCID-5hn2-1bvq-jfdh
4
vulnerability VCID-kjqq-u9hy-5yda
5
vulnerability VCID-tkp3-e758-suhx
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/moin@1.9.6
11
url pkg:pypi/moin@1.9.7
purl pkg:pypi/moin@1.9.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1kv8-4wn6-yydy
1
vulnerability VCID-2yaq-3m4p-q3bu
2
vulnerability VCID-4fn8-ab2r-23dk
3
vulnerability VCID-5hn2-1bvq-jfdh
4
vulnerability VCID-kjqq-u9hy-5yda
5
vulnerability VCID-tkp3-e758-suhx
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/moin@1.9.7
12
url pkg:pypi/moin@1.9.8
purl pkg:pypi/moin@1.9.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1kv8-4wn6-yydy
1
vulnerability VCID-2yaq-3m4p-q3bu
2
vulnerability VCID-4fn8-ab2r-23dk
3
vulnerability VCID-5hn2-1bvq-jfdh
4
vulnerability VCID-kjqq-u9hy-5yda
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/moin@1.9.8
13
url pkg:pypi/moin@1.9.9
purl pkg:pypi/moin@1.9.9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2yaq-3m4p-q3bu
1
vulnerability VCID-4fn8-ab2r-23dk
2
vulnerability VCID-kjqq-u9hy-5yda
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/moin@1.9.9
References
0
reference_url http://lists.opensuse.org/opensuse-security-announce/2018-10/msg00024.html
reference_id
reference_type
scores
url http://lists.opensuse.org/opensuse-security-announce/2018-10/msg00024.html
1
reference_url http://moinmo.in/SecurityFixes
reference_id
reference_type
scores
url http://moinmo.in/SecurityFixes
2
reference_url https://github.com/advisories/GHSA-42fp-4hm3-j8r7
reference_id
reference_type
scores
url https://github.com/advisories/GHSA-42fp-4hm3-j8r7
3
reference_url https://github.com/moinwiki/moin-1.9
reference_id
reference_type
scores
url https://github.com/moinwiki/moin-1.9
4
reference_url https://github.com/moinwiki/moin-1.9/commit/70955a8eae091cc88fd9a6e510177e70289ec024
reference_id
reference_type
scores
url https://github.com/moinwiki/moin-1.9/commit/70955a8eae091cc88fd9a6e510177e70289ec024
5
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/moin/PYSEC-2018-47.yaml
reference_id
reference_type
scores
url https://github.com/pypa/advisory-database/tree/main/vulns/moin/PYSEC-2018-47.yaml
6
reference_url https://lists.debian.org/debian-lts-announce/2018/10/msg00007.html
reference_id
reference_type
scores
url https://lists.debian.org/debian-lts-announce/2018/10/msg00007.html
7
reference_url https://usn.ubuntu.com/3794-1
reference_id
reference_type
scores
url https://usn.ubuntu.com/3794-1
8
reference_url https://usn.ubuntu.com/3794-1/
reference_id
reference_type
scores
url https://usn.ubuntu.com/3794-1/
9
reference_url https://www.debian.org/security/2018/dsa-4318
reference_id
reference_type
scores
url https://www.debian.org/security/2018/dsa-4318
10
reference_url https://nvd.nist.gov/vuln/detail/CVE-2017-5934
reference_id CVE-2017-5934
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2017-5934
Weaknesses
0
cwe_id 79
name Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
description The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.
1
cwe_id 937
name OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.
2
cwe_id 1035
name OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.
Exploits
Severity_range_scorenull
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-4fn8-ab2r-23dk