Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-g5yd-z8gh-pbc4
SummaryA vulnerability involving insecure search_path settings allows unprivileged users to gain the SQL privileges of the owner of any SECURITY DEFINER function they are allowed to call. Securing such a function requires both a software update and changes to the function definition.more details
Aliases
0
alias CVE-2007-2138
Fixed_packages
0
url pkg:ebuild/dev-db/postgresql@8.0.13
purl pkg:ebuild/dev-db/postgresql@8.0.13
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql@8.0.13
1
url pkg:generic/postgresql@7.3.19
purl pkg:generic/postgresql@7.3.19
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@7.3.19
2
url pkg:generic/postgresql@7.4.17
purl pkg:generic/postgresql@7.4.17
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@7.4.17
3
url pkg:generic/postgresql@8.0.13
purl pkg:generic/postgresql@8.0.13
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@8.0.13
4
url pkg:generic/postgresql@8.1.9
purl pkg:generic/postgresql@8.1.9
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@8.1.9
5
url pkg:generic/postgresql@8.2.4
purl pkg:generic/postgresql@8.2.4
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@8.2.4
Affected_packages
0
url pkg:generic/postgresql@7.3.0
purl pkg:generic/postgresql@7.3.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5zj2-a3y7-zueh
1
vulnerability VCID-6ppw-nxh2-2bfs
2
vulnerability VCID-8753-jd2h-8yhw
3
vulnerability VCID-8z74-udgw-kue3
4
vulnerability VCID-dema-khb4-d7c3
5
vulnerability VCID-dwxv-7v5k-pbgt
6
vulnerability VCID-f89t-37f7-hbau
7
vulnerability VCID-g5yd-z8gh-pbc4
8
vulnerability VCID-hase-39jj-6khk
9
vulnerability VCID-nj9p-fdc9-m7fu
10
vulnerability VCID-qw91-9hzj-2bbd
11
vulnerability VCID-s1hd-1asy-q3dd
12
vulnerability VCID-swbt-7zch-sbcp
resource_url http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@7.3.0
1
url pkg:generic/postgresql@7.4.0
purl pkg:generic/postgresql@7.4.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1qsp-wvwq-j3f5
1
vulnerability VCID-1uzm-h9m3-akge
2
vulnerability VCID-4tyx-g9kz-y3fq
3
vulnerability VCID-5zj2-a3y7-zueh
4
vulnerability VCID-6ppw-nxh2-2bfs
5
vulnerability VCID-721k-9zdg-buhv
6
vulnerability VCID-7q99-jk4u-1fen
7
vulnerability VCID-8753-jd2h-8yhw
8
vulnerability VCID-8z74-udgw-kue3
9
vulnerability VCID-c8ch-zd9x-kufn
10
vulnerability VCID-cffd-gdpc-uqeb
11
vulnerability VCID-dema-khb4-d7c3
12
vulnerability VCID-dwxv-7v5k-pbgt
13
vulnerability VCID-f89t-37f7-hbau
14
vulnerability VCID-g5yd-z8gh-pbc4
15
vulnerability VCID-h86x-6j3b-eqfh
16
vulnerability VCID-hase-39jj-6khk
17
vulnerability VCID-jeef-j758-s3a4
18
vulnerability VCID-nj9p-fdc9-m7fu
19
vulnerability VCID-qw91-9hzj-2bbd
20
vulnerability VCID-s1hd-1asy-q3dd
21
vulnerability VCID-swbt-7zch-sbcp
22
vulnerability VCID-u5h4-4p6j-wbay
23
vulnerability VCID-v69z-cmag-xfaf
24
vulnerability VCID-wesb-d296-4ba8
resource_url http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@7.4.0
2
url pkg:generic/postgresql@8.0.0
purl pkg:generic/postgresql@8.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1qsp-wvwq-j3f5
1
vulnerability VCID-1uzm-h9m3-akge
2
vulnerability VCID-4tyx-g9kz-y3fq
3
vulnerability VCID-5zj2-a3y7-zueh
4
vulnerability VCID-6ppw-nxh2-2bfs
5
vulnerability VCID-721k-9zdg-buhv
6
vulnerability VCID-7q99-jk4u-1fen
7
vulnerability VCID-8753-jd2h-8yhw
8
vulnerability VCID-8z74-udgw-kue3
9
vulnerability VCID-978k-4cn7-bfbz
10
vulnerability VCID-c8ch-zd9x-kufn
11
vulnerability VCID-cffd-gdpc-uqeb
12
vulnerability VCID-dema-khb4-d7c3
13
vulnerability VCID-f89t-37f7-hbau
14
vulnerability VCID-g5yd-z8gh-pbc4
15
vulnerability VCID-h86x-6j3b-eqfh
16
vulnerability VCID-hase-39jj-6khk
17
vulnerability VCID-jeef-j758-s3a4
18
vulnerability VCID-nj9p-fdc9-m7fu
19
vulnerability VCID-qw91-9hzj-2bbd
20
vulnerability VCID-s1hd-1asy-q3dd
21
vulnerability VCID-swbt-7zch-sbcp
22
vulnerability VCID-u5h4-4p6j-wbay
23
vulnerability VCID-v69z-cmag-xfaf
24
vulnerability VCID-wesb-d296-4ba8
resource_url http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@8.0.0
3
url pkg:generic/postgresql@8.1.0
purl pkg:generic/postgresql@8.1.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1qsp-wvwq-j3f5
1
vulnerability VCID-1uzm-h9m3-akge
2
vulnerability VCID-4tyx-g9kz-y3fq
3
vulnerability VCID-5zj2-a3y7-zueh
4
vulnerability VCID-721k-9zdg-buhv
5
vulnerability VCID-7q99-jk4u-1fen
6
vulnerability VCID-8z74-udgw-kue3
7
vulnerability VCID-978k-4cn7-bfbz
8
vulnerability VCID-c8ch-zd9x-kufn
9
vulnerability VCID-cffd-gdpc-uqeb
10
vulnerability VCID-cnye-56z6-qqd6
11
vulnerability VCID-dema-khb4-d7c3
12
vulnerability VCID-f89t-37f7-hbau
13
vulnerability VCID-g5yd-z8gh-pbc4
14
vulnerability VCID-h86x-6j3b-eqfh
15
vulnerability VCID-mr2t-k7zs-7fad
16
vulnerability VCID-nj9p-fdc9-m7fu
17
vulnerability VCID-pqq7-pp4n-fqgp
18
vulnerability VCID-u5h4-4p6j-wbay
19
vulnerability VCID-v69z-cmag-xfaf
resource_url http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@8.1.0
4
url pkg:generic/postgresql@8.2.0
purl pkg:generic/postgresql@8.2.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1qsp-wvwq-j3f5
1
vulnerability VCID-1uzm-h9m3-akge
2
vulnerability VCID-5zj2-a3y7-zueh
3
vulnerability VCID-666x-ret3-xufr
4
vulnerability VCID-6dmy-t1qp-nuf3
5
vulnerability VCID-721k-9zdg-buhv
6
vulnerability VCID-7q99-jk4u-1fen
7
vulnerability VCID-978k-4cn7-bfbz
8
vulnerability VCID-c8ch-zd9x-kufn
9
vulnerability VCID-cffd-gdpc-uqeb
10
vulnerability VCID-f89t-37f7-hbau
11
vulnerability VCID-g5yd-z8gh-pbc4
12
vulnerability VCID-h86x-6j3b-eqfh
13
vulnerability VCID-nj9p-fdc9-m7fu
14
vulnerability VCID-s8a2-wbb4-dyda
15
vulnerability VCID-u5h4-4p6j-wbay
16
vulnerability VCID-v69z-cmag-xfaf
resource_url http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@8.2.0
5
url pkg:rpm/redhat/postgresql@7.4.17-1.RHEL4?arch=1
purl pkg:rpm/redhat/postgresql@7.4.17-1.RHEL4?arch=1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-g5yd-z8gh-pbc4
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/postgresql@7.4.17-1.RHEL4%3Farch=1
6
url pkg:rpm/redhat/postgresql@8.1.9-1?arch=el5
purl pkg:rpm/redhat/postgresql@8.1.9-1?arch=el5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-g5yd-z8gh-pbc4
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/postgresql@8.1.9-1%3Farch=el5
7
url pkg:rpm/redhat/postgresql@8.1.9-1.el4s1?arch=1
purl pkg:rpm/redhat/postgresql@8.1.9-1.el4s1?arch=1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-g5yd-z8gh-pbc4
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/postgresql@8.1.9-1.el4s1%3Farch=1
References
0
reference_url http://rhn.redhat.com/errata/RHSA-2007-0336.html
reference_id
reference_type
scores
url http://rhn.redhat.com/errata/RHSA-2007-0336.html
1
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-2138.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-2138.json
2
reference_url https://api.first.org/data/v1/epss?cve=CVE-2007-2138
reference_id
reference_type
scores
0
value 0.01593
scoring_system epss
scoring_elements 0.81699
published_at 2026-04-21T12:55:00Z
1
value 0.01593
scoring_system epss
scoring_elements 0.81595
published_at 2026-04-01T12:55:00Z
2
value 0.01593
scoring_system epss
scoring_elements 0.81606
published_at 2026-04-02T12:55:00Z
3
value 0.01593
scoring_system epss
scoring_elements 0.81627
published_at 2026-04-04T12:55:00Z
4
value 0.01593
scoring_system epss
scoring_elements 0.81624
published_at 2026-04-07T12:55:00Z
5
value 0.01593
scoring_system epss
scoring_elements 0.81652
published_at 2026-04-08T12:55:00Z
6
value 0.01593
scoring_system epss
scoring_elements 0.81657
published_at 2026-04-13T12:55:00Z
7
value 0.01593
scoring_system epss
scoring_elements 0.81677
published_at 2026-04-11T12:55:00Z
8
value 0.01593
scoring_system epss
scoring_elements 0.81664
published_at 2026-04-12T12:55:00Z
9
value 0.01593
scoring_system epss
scoring_elements 0.81696
published_at 2026-04-16T12:55:00Z
10
value 0.01593
scoring_system epss
scoring_elements 0.81695
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2007-2138
3
reference_url http://secunia.com/advisories/24989
reference_id
reference_type
scores
url http://secunia.com/advisories/24989
4
reference_url http://secunia.com/advisories/24999
reference_id
reference_type
scores
url http://secunia.com/advisories/24999
5
reference_url http://secunia.com/advisories/25005
reference_id
reference_type
scores
url http://secunia.com/advisories/25005
6
reference_url http://secunia.com/advisories/25019
reference_id
reference_type
scores
url http://secunia.com/advisories/25019
7
reference_url http://secunia.com/advisories/25037
reference_id
reference_type
scores
url http://secunia.com/advisories/25037
8
reference_url http://secunia.com/advisories/25058
reference_id
reference_type
scores
url http://secunia.com/advisories/25058
9
reference_url http://secunia.com/advisories/25184
reference_id
reference_type
scores
url http://secunia.com/advisories/25184
10
reference_url http://secunia.com/advisories/25238
reference_id
reference_type
scores
url http://secunia.com/advisories/25238
11
reference_url http://secunia.com/advisories/25334
reference_id
reference_type
scores
url http://secunia.com/advisories/25334
12
reference_url http://secunia.com/advisories/25717
reference_id
reference_type
scores
url http://secunia.com/advisories/25717
13
reference_url http://secunia.com/advisories/25720
reference_id
reference_type
scores
url http://secunia.com/advisories/25720
14
reference_url http://secunia.com/advisories/25725
reference_id
reference_type
scores
url http://secunia.com/advisories/25725
15
reference_url http://security.gentoo.org/glsa/glsa-200705-12.xml
reference_id
reference_type
scores
url http://security.gentoo.org/glsa/glsa-200705-12.xml
16
reference_url https://exchange.xforce.ibmcloud.com/vulnerabilities/33842
reference_id
reference_type
scores
url https://exchange.xforce.ibmcloud.com/vulnerabilities/33842
17
reference_url https://issues.rpath.com/browse/RPL-1292
reference_id
reference_type
scores
url https://issues.rpath.com/browse/RPL-1292
18
reference_url https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10090
reference_id
reference_type
scores
url https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10090
19
reference_url http://sunsolve.sun.com/search/document.do?assetkey=1-26-102894-1
reference_id
reference_type
scores
url http://sunsolve.sun.com/search/document.do?assetkey=1-26-102894-1
20
reference_url http://support.avaya.com/elmodocs2/security/ASA-2007-190.htm
reference_id
reference_type
scores
url http://support.avaya.com/elmodocs2/security/ASA-2007-190.htm
21
reference_url https://www.postgresql.org/support/security/CVE-2007-2138/
reference_id
reference_type
scores
url https://www.postgresql.org/support/security/CVE-2007-2138/
22
reference_url http://www.debian.org/security/2007/dsa-1309
reference_id
reference_type
scores
url http://www.debian.org/security/2007/dsa-1309
23
reference_url http://www.debian.org/security/2007/dsa-1311
reference_id
reference_type
scores
url http://www.debian.org/security/2007/dsa-1311
24
reference_url http://www.mandriva.com/security/advisories?name=MDKSA-2007:094
reference_id
reference_type
scores
url http://www.mandriva.com/security/advisories?name=MDKSA-2007:094
25
reference_url http://www.postgresql.org/about/news.791
reference_id
reference_type
scores
url http://www.postgresql.org/about/news.791
26
reference_url http://www.postgresql.org/support/security.html
reference_id
reference_type
scores
url http://www.postgresql.org/support/security.html
27
reference_url http://www.redhat.com/support/errata/RHSA-2007-0337.html
reference_id
reference_type
scores
url http://www.redhat.com/support/errata/RHSA-2007-0337.html
28
reference_url http://www.securityfocus.com/bid/23618
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/23618
29
reference_url http://www.securitytracker.com/id?1017974
reference_id
reference_type
scores
url http://www.securitytracker.com/id?1017974
30
reference_url http://www.trustix.org/errata/2007/0015/
reference_id
reference_type
scores
url http://www.trustix.org/errata/2007/0015/
31
reference_url http://www.ubuntu.com/usn/usn-454-1
reference_id
reference_type
scores
url http://www.ubuntu.com/usn/usn-454-1
32
reference_url http://www.vupen.com/english/advisories/2007/1497
reference_id
reference_type
scores
url http://www.vupen.com/english/advisories/2007/1497
33
reference_url http://www.vupen.com/english/advisories/2007/1549
reference_id
reference_type
scores
url http://www.vupen.com/english/advisories/2007/1549
34
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=237682
reference_id 237682
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=237682
35
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:*:*:*:*:*:*:*:*
reference_id cpe:2.3:a:postgresql:postgresql:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:*:*:*:*:*:*:*:*
36
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:lts:*:*:*
reference_id cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:lts:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:lts:*:*:*
37
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:6.10:*:*:*:*:*:*:*
reference_id cpe:2.3:o:canonical:ubuntu_linux:6.10:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:6.10:*:*:*:*:*:*:*
38
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:7.04:*:*:*:*:*:*:*
reference_id cpe:2.3:o:canonical:ubuntu_linux:7.04:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:7.04:*:*:*:*:*:*:*
39
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:3.1:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:3.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:3.1:*:*:*:*:*:*:*
40
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:4.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:4.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:4.0:*:*:*:*:*:*:*
41
reference_url https://nvd.nist.gov/vuln/detail/CVE-2007-2138
reference_id CVE-2007-2138
reference_type
scores
0
value 6.0
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:S/C:P/I:P/A:P
url https://nvd.nist.gov/vuln/detail/CVE-2007-2138
42
reference_url https://security.gentoo.org/glsa/200705-12
reference_id GLSA-200705-12
reference_type
scores
url https://security.gentoo.org/glsa/200705-12
43
reference_url https://access.redhat.com/errata/RHSA-2007:0336
reference_id RHSA-2007:0336
reference_type
scores
url https://access.redhat.com/errata/RHSA-2007:0336
44
reference_url https://access.redhat.com/errata/RHSA-2007:0337
reference_id RHSA-2007:0337
reference_type
scores
url https://access.redhat.com/errata/RHSA-2007:0337
45
reference_url https://usn.ubuntu.com/454-1/
reference_id USN-454-1
reference_type
scores
url https://usn.ubuntu.com/454-1/
Weaknesses
0
cwe_id 264
name Permissions, Privileges, and Access Controls
description Weaknesses in this category are related to the management of permissions, privileges, and other security features that are used to perform access control.
Exploits
Severity_range_score6.0 - 6.0
Exploitability0.5
Weighted_severity5.4
Risk_score2.7
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-g5yd-z8gh-pbc4