Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-ema2-k1vh-bkfr

Summary A vulnerability, which was classified as problematic, has been found in Huashengdun WebSSH up to 1.6.2. Affected by this issue is some unknown functionality of the component Login Page. The manipulation of the argument hostname/port leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Aliases

alias	CVE-2025-7885

alias	PYSEC-2025-234

Fixed_packages

url	pkg:pypi/webssh@1.6.3
purl	pkg:pypi/webssh@1.6.3
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:pypi/webssh@1.6.3

Affected_packages

url pkg:pypi/webssh@0.2.0

purl pkg:pypi/webssh@0.2.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ema2-k1vh-bkfr

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/webssh@0.2.0

url pkg:pypi/webssh@0.2.1

purl pkg:pypi/webssh@0.2.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ema2-k1vh-bkfr

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/webssh@0.2.1

url pkg:pypi/webssh@0.2.2

purl pkg:pypi/webssh@0.2.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ema2-k1vh-bkfr

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/webssh@0.2.2

url pkg:pypi/webssh@0.2.3

purl pkg:pypi/webssh@0.2.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ema2-k1vh-bkfr

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/webssh@0.2.3

url pkg:pypi/webssh@0.2.5

purl pkg:pypi/webssh@0.2.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ema2-k1vh-bkfr

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/webssh@0.2.5

url pkg:pypi/webssh@0.2.6

purl pkg:pypi/webssh@0.2.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ema2-k1vh-bkfr

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/webssh@0.2.6

url pkg:pypi/webssh@0.3.0

purl pkg:pypi/webssh@0.3.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ema2-k1vh-bkfr

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/webssh@0.3.0

url pkg:pypi/webssh@0.3.1

purl pkg:pypi/webssh@0.3.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ema2-k1vh-bkfr

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/webssh@0.3.1

url pkg:pypi/webssh@0.3.2

purl pkg:pypi/webssh@0.3.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ema2-k1vh-bkfr

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/webssh@0.3.2

url pkg:pypi/webssh@0.3.3

purl pkg:pypi/webssh@0.3.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ema2-k1vh-bkfr

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/webssh@0.3.3

url pkg:pypi/webssh@0.3.5

purl pkg:pypi/webssh@0.3.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ema2-k1vh-bkfr

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/webssh@0.3.5

url pkg:pypi/webssh@0.3.9

purl pkg:pypi/webssh@0.3.9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ema2-k1vh-bkfr

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/webssh@0.3.9

url pkg:pypi/webssh@0.4.0

purl pkg:pypi/webssh@0.4.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ema2-k1vh-bkfr

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/webssh@0.4.0

url pkg:pypi/webssh@0.4.1

purl pkg:pypi/webssh@0.4.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ema2-k1vh-bkfr

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/webssh@0.4.1

url pkg:pypi/webssh@0.4.6

purl pkg:pypi/webssh@0.4.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ema2-k1vh-bkfr

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/webssh@0.4.6

url pkg:pypi/webssh@0.5.0

purl pkg:pypi/webssh@0.5.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ema2-k1vh-bkfr

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/webssh@0.5.0

url pkg:pypi/webssh@0.6.0

purl pkg:pypi/webssh@0.6.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ema2-k1vh-bkfr

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/webssh@0.6.0

url pkg:pypi/webssh@0.6.1

purl pkg:pypi/webssh@0.6.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ema2-k1vh-bkfr

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/webssh@0.6.1

url pkg:pypi/webssh@0.7.0

purl pkg:pypi/webssh@0.7.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ema2-k1vh-bkfr

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/webssh@0.7.0

url pkg:pypi/webssh@0.7.1

purl pkg:pypi/webssh@0.7.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ema2-k1vh-bkfr

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/webssh@0.7.1

url pkg:pypi/webssh@0.7.2

purl pkg:pypi/webssh@0.7.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ema2-k1vh-bkfr

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/webssh@0.7.2

url pkg:pypi/webssh@0.7.3

purl pkg:pypi/webssh@0.7.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ema2-k1vh-bkfr

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/webssh@0.7.3

url pkg:pypi/webssh@0.8.0

purl pkg:pypi/webssh@0.8.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ema2-k1vh-bkfr

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/webssh@0.8.0

url pkg:pypi/webssh@0.9.0

purl pkg:pypi/webssh@0.9.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ema2-k1vh-bkfr

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/webssh@0.9.0

url pkg:pypi/webssh@1.0.0

purl pkg:pypi/webssh@1.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ema2-k1vh-bkfr

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/webssh@1.0.0

url pkg:pypi/webssh@1.0.1

purl pkg:pypi/webssh@1.0.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ema2-k1vh-bkfr

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/webssh@1.0.1

url pkg:pypi/webssh@1.0.2

purl pkg:pypi/webssh@1.0.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ema2-k1vh-bkfr

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/webssh@1.0.2

url pkg:pypi/webssh@1.0.3

purl pkg:pypi/webssh@1.0.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ema2-k1vh-bkfr

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/webssh@1.0.3

url pkg:pypi/webssh@1.1.0

purl pkg:pypi/webssh@1.1.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ema2-k1vh-bkfr

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/webssh@1.1.0

url pkg:pypi/webssh@1.1.1

purl pkg:pypi/webssh@1.1.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ema2-k1vh-bkfr

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/webssh@1.1.1

url pkg:pypi/webssh@1.2.0

purl pkg:pypi/webssh@1.2.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ema2-k1vh-bkfr

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/webssh@1.2.0

url pkg:pypi/webssh@1.3.0

purl pkg:pypi/webssh@1.3.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ema2-k1vh-bkfr

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/webssh@1.3.0

url pkg:pypi/webssh@1.4.0

purl pkg:pypi/webssh@1.4.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ema2-k1vh-bkfr

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/webssh@1.4.0

url pkg:pypi/webssh@1.4.2

purl pkg:pypi/webssh@1.4.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ema2-k1vh-bkfr

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/webssh@1.4.2

url pkg:pypi/webssh@1.4.3

purl pkg:pypi/webssh@1.4.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ema2-k1vh-bkfr

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/webssh@1.4.3

url pkg:pypi/webssh@1.4.5

purl pkg:pypi/webssh@1.4.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ema2-k1vh-bkfr

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/webssh@1.4.5

url pkg:pypi/webssh@1.5.0

purl pkg:pypi/webssh@1.5.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ema2-k1vh-bkfr

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/webssh@1.5.0

url pkg:pypi/webssh@1.5.1

purl pkg:pypi/webssh@1.5.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ema2-k1vh-bkfr

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/webssh@1.5.1

url pkg:pypi/webssh@1.5.2

purl pkg:pypi/webssh@1.5.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ema2-k1vh-bkfr

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/webssh@1.5.2

url pkg:pypi/webssh@1.5.3

purl pkg:pypi/webssh@1.5.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ema2-k1vh-bkfr

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/webssh@1.5.3

url pkg:pypi/webssh@1.6.0

purl pkg:pypi/webssh@1.6.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ema2-k1vh-bkfr

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/webssh@1.6.0

url pkg:pypi/webssh@1.6.1

purl pkg:pypi/webssh@1.6.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ema2-k1vh-bkfr

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/webssh@1.6.1

url pkg:pypi/webssh@1.6.2

purl pkg:pypi/webssh@1.6.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ema2-k1vh-bkfr

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/webssh@1.6.2

References

reference_url

https://github.com/4m3rr0r/PoCVulDb/blob/main/CVE-2025-7885.md

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

url

https://github.com/4m3rr0r/PoCVulDb/blob/main/CVE-2025-7885.md

reference_url

https://github.com/huashengdun/webssh/issues/410

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

url

https://github.com/huashengdun/webssh/issues/410

reference_url

https://vuldb.com/?ctiid.317000

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

url

https://vuldb.com/?ctiid.317000

reference_url

https://vuldb.com/?id.317000

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

url

https://vuldb.com/?id.317000

reference_url

https://vuldb.com/?submit.613610

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

url

https://vuldb.com/?submit.613610

Weaknesses

Exploits

Severity_range_score 6.1 - 6.1

Exploitability null

Weighted_severity null

Risk_score null

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ema2-k1vh-bkfr

Vulnerability Instance