Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-xjj5-fy4e-e7ha
Summary
Missing XML Validation in Apache Tomcat
Apache Tomcat before 6.0.40, 7.x before 7.0.54, and 8.x before 8.0.6 does not properly constrain the class loader that accesses the XML parser used with an XSLT stylesheet, which allows remote attackers to (1) read arbitrary files via a crafted web application that provides an XML external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue, or (2) read files associated with different web applications on a single Tomcat instance via a crafted web application.
Aliases
0
alias CVE-2014-0119
1
alias GHSA-prc3-7f44-w48j
Fixed_packages
0
url pkg:apache/tomcat@6.0.41
purl pkg:apache/tomcat@6.0.41
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-pq53-6deg-abfx
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@6.0.41
1
url pkg:apache/tomcat@7.0.54
purl pkg:apache/tomcat@7.0.54
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-6uuq-2a39-yubx
1
vulnerability VCID-pq53-6deg-abfx
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@7.0.54
2
url pkg:apache/tomcat@8.0.8
purl pkg:apache/tomcat@8.0.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-6uuq-2a39-yubx
1
vulnerability VCID-pq53-6deg-abfx
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@8.0.8
3
url pkg:maven/org.apache.tomcat/tomcat@6.0.40
purl pkg:maven/org.apache.tomcat/tomcat@6.0.40
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@6.0.40
4
url pkg:maven/org.apache.tomcat/tomcat@6.0.41
purl pkg:maven/org.apache.tomcat/tomcat@6.0.41
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-pq53-6deg-abfx
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@6.0.41
5
url pkg:maven/org.apache.tomcat/tomcat@7.0.54
purl pkg:maven/org.apache.tomcat/tomcat@7.0.54
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-6uuq-2a39-yubx
1
vulnerability VCID-pq53-6deg-abfx
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@7.0.54
6
url pkg:maven/org.apache.tomcat/tomcat@8.0.6
purl pkg:maven/org.apache.tomcat/tomcat@8.0.6
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@8.0.6
7
url pkg:maven/org.apache.tomcat/tomcat@8.0.8
purl pkg:maven/org.apache.tomcat/tomcat@8.0.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-6uuq-2a39-yubx
1
vulnerability VCID-pq53-6deg-abfx
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@8.0.8
8
url pkg:maven/org.apache.tomcat/tomcat-catalina@6.0.40
purl pkg:maven/org.apache.tomcat/tomcat-catalina@6.0.40
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-catalina@6.0.40
9
url pkg:maven/org.apache.tomcat/tomcat-catalina@7.0.54
purl pkg:maven/org.apache.tomcat/tomcat-catalina@7.0.54
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8fn4-hnez-y3eb
1
vulnerability VCID-et9y-m4hb-43h7
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-catalina@7.0.54
10
url pkg:maven/org.apache.tomcat/tomcat-catalina@8.0.6
purl pkg:maven/org.apache.tomcat/tomcat-catalina@8.0.6
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-catalina@8.0.6
11
url pkg:maven/org.apache.tomcat/tomcat-jasper@6.0.40
purl pkg:maven/org.apache.tomcat/tomcat-jasper@6.0.40
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-jasper@6.0.40
12
url pkg:maven/org.apache.tomcat/tomcat-jasper@7.0.54
purl pkg:maven/org.apache.tomcat/tomcat-jasper@7.0.54
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-jasper@7.0.54
13
url pkg:maven/org.apache.tomcat/tomcat-jasper@8.0.6
purl pkg:maven/org.apache.tomcat/tomcat-jasper@8.0.6
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-jasper@8.0.6
Affected_packages
0
url pkg:apache/tomcat@6.0.0
purl pkg:apache/tomcat@6.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1a1b-3pdg-jbfq
1
vulnerability VCID-2jws-wtvg-2khf
2
vulnerability VCID-2kjh-4r2g-rqe6
3
vulnerability VCID-4qcn-52ug-mbd5
4
vulnerability VCID-4t2h-jjhm-y7fq
5
vulnerability VCID-5m85-3zyu-7qak
6
vulnerability VCID-6umz-z8db-kqcy
7
vulnerability VCID-6uuq-2a39-yubx
8
vulnerability VCID-7787-4bwm-efgq
9
vulnerability VCID-7fh9-36qs-jfg5
10
vulnerability VCID-89e9-m968-vfhe
11
vulnerability VCID-937w-2w2q-7fdy
12
vulnerability VCID-9j31-459b-4qbm
13
vulnerability VCID-aar2-398x-p3d8
14
vulnerability VCID-axzz-cadr-b7fv
15
vulnerability VCID-bv96-e6r9-xka7
16
vulnerability VCID-crhe-rt8j-wycu
17
vulnerability VCID-eawm-8v9w-yfap
18
vulnerability VCID-eygg-nt7y-qubh
19
vulnerability VCID-f4ka-47dk-zffs
20
vulnerability VCID-fu9h-e3jx-abe2
21
vulnerability VCID-hmqa-jhuf-hfe2
22
vulnerability VCID-hqzu-shyu-j3hp
23
vulnerability VCID-jfhv-r8ep-ykbm
24
vulnerability VCID-jw6e-g8z9-43ej
25
vulnerability VCID-jzta-navk-87bn
26
vulnerability VCID-kaem-zczd-pyhu
27
vulnerability VCID-kua1-kn4q-7kd2
28
vulnerability VCID-kxc3-vz2c-wqca
29
vulnerability VCID-mj47-ya6v-9kd3
30
vulnerability VCID-n4zk-mdyw-3fcz
31
vulnerability VCID-nmvx-w2sz-2kge
32
vulnerability VCID-nnye-4xbb-kuf5
33
vulnerability VCID-pq53-6deg-abfx
34
vulnerability VCID-pzkk-4e94-aqag
35
vulnerability VCID-qdvn-uc56-6fds
36
vulnerability VCID-qrbz-jgfy-qqhm
37
vulnerability VCID-qz87-x4zb-rud7
38
vulnerability VCID-qzyq-d6qk-67ag
39
vulnerability VCID-rbvf-c791-e7cg
40
vulnerability VCID-rdr4-db3y-p3cz
41
vulnerability VCID-s37s-p75k-27e6
42
vulnerability VCID-sk1w-8yt4-93cv
43
vulnerability VCID-t4mh-zvhq-27du
44
vulnerability VCID-t57j-pu79-dbbn
45
vulnerability VCID-tc66-7b7t-k7h3
46
vulnerability VCID-tcmv-6ftg-fqen
47
vulnerability VCID-tmjv-jvfy-judb
48
vulnerability VCID-ua64-94fd-ekad
49
vulnerability VCID-uwuf-vukf-cqck
50
vulnerability VCID-vsta-e8jg-4qa8
51
vulnerability VCID-w8uj-zy2r-fyca
52
vulnerability VCID-wg7f-pjmn-uudk
53
vulnerability VCID-xjj5-fy4e-e7ha
54
vulnerability VCID-xra9-q91u-rfd5
55
vulnerability VCID-y9hs-ymcm-3ucx
56
vulnerability VCID-y9yv-u4jh-mqew
57
vulnerability VCID-ypuq-2mr2-sybb
58
vulnerability VCID-yswq-hnqg-sycs
59
vulnerability VCID-yusx-ncpv-sfhg
60
vulnerability VCID-yvcg-96dp-r7e6
61
vulnerability VCID-zam7-79x3-ekg3
62
vulnerability VCID-zm75-zwps-h3fv
63
vulnerability VCID-zrc5-bf77-aygn
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@6.0.0
1
url pkg:apache/tomcat@6.0.39
purl pkg:apache/tomcat@6.0.39
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1a1b-3pdg-jbfq
1
vulnerability VCID-937w-2w2q-7fdy
2
vulnerability VCID-nnye-4xbb-kuf5
3
vulnerability VCID-xjj5-fy4e-e7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@6.0.39
2
url pkg:apache/tomcat@7.0.0
purl pkg:apache/tomcat@7.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1a1b-3pdg-jbfq
1
vulnerability VCID-299p-e7fh-qfa2
2
vulnerability VCID-2kjh-4r2g-rqe6
3
vulnerability VCID-333t-ujej-7yhu
4
vulnerability VCID-3tme-zh53-7ubx
5
vulnerability VCID-3txt-1psa-5kf5
6
vulnerability VCID-4qcn-52ug-mbd5
7
vulnerability VCID-4t2h-jjhm-y7fq
8
vulnerability VCID-59dd-qzpt-aucm
9
vulnerability VCID-5m85-3zyu-7qak
10
vulnerability VCID-5udv-rheh-kqfy
11
vulnerability VCID-6umz-z8db-kqcy
12
vulnerability VCID-6uuq-2a39-yubx
13
vulnerability VCID-7fh9-36qs-jfg5
14
vulnerability VCID-89e9-m968-vfhe
15
vulnerability VCID-8fn4-hnez-y3eb
16
vulnerability VCID-937w-2w2q-7fdy
17
vulnerability VCID-9e2b-7qtg-tbaj
18
vulnerability VCID-9gz4-7etq-pyba
19
vulnerability VCID-aar2-398x-p3d8
20
vulnerability VCID-axzz-cadr-b7fv
21
vulnerability VCID-b83j-cebv-9ua6
22
vulnerability VCID-bwbm-vktd-jbd5
23
vulnerability VCID-ct4z-hxx3-53bw
24
vulnerability VCID-dk58-p9py-rka9
25
vulnerability VCID-e72e-axdj-7qfw
26
vulnerability VCID-essq-6syu-6ygm
27
vulnerability VCID-et9y-m4hb-43h7
28
vulnerability VCID-f4ka-47dk-zffs
29
vulnerability VCID-fu9h-e3jx-abe2
30
vulnerability VCID-g3vd-74yh-s7bn
31
vulnerability VCID-gc4t-aqwd-rkba
32
vulnerability VCID-gmjm-6ck2-skgu
33
vulnerability VCID-hqzu-shyu-j3hp
34
vulnerability VCID-j1m6-79yt-f7h5
35
vulnerability VCID-jw6e-g8z9-43ej
36
vulnerability VCID-jzta-navk-87bn
37
vulnerability VCID-m7ja-6efp-tyh1
38
vulnerability VCID-mwr3-83kd-s7g3
39
vulnerability VCID-n4zk-mdyw-3fcz
40
vulnerability VCID-nnye-4xbb-kuf5
41
vulnerability VCID-nxb3-55eu-auhp
42
vulnerability VCID-pq53-6deg-abfx
43
vulnerability VCID-qhqg-ekuv-z7fc
44
vulnerability VCID-qthw-u9bp-zkdp
45
vulnerability VCID-qurk-u1gg-gkdy
46
vulnerability VCID-rbvf-c791-e7cg
47
vulnerability VCID-rbvh-4npk-nub9
48
vulnerability VCID-redv-2x5y-8khx
49
vulnerability VCID-s37s-p75k-27e6
50
vulnerability VCID-se44-f85s-xyex
51
vulnerability VCID-sk1w-8yt4-93cv
52
vulnerability VCID-t57j-pu79-dbbn
53
vulnerability VCID-tc66-7b7t-k7h3
54
vulnerability VCID-tcmv-6ftg-fqen
55
vulnerability VCID-tmjv-jvfy-judb
56
vulnerability VCID-ua64-94fd-ekad
57
vulnerability VCID-vp5s-ekhc-w7ck
58
vulnerability VCID-vsta-e8jg-4qa8
59
vulnerability VCID-webw-gryb-7ucv
60
vulnerability VCID-xa95-zsnk-3kg9
61
vulnerability VCID-xjj5-fy4e-e7ha
62
vulnerability VCID-xra9-q91u-rfd5
63
vulnerability VCID-y9hs-ymcm-3ucx
64
vulnerability VCID-yusx-ncpv-sfhg
65
vulnerability VCID-yvcg-96dp-r7e6
66
vulnerability VCID-zm75-zwps-h3fv
67
vulnerability VCID-zrc5-bf77-aygn
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@7.0.0
3
url pkg:apache/tomcat@7.0.53
purl pkg:apache/tomcat@7.0.53
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-xjj5-fy4e-e7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@7.0.53
4
url pkg:apache/tomcat@8.0.0-RC1
purl pkg:apache/tomcat@8.0.0-RC1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1a1b-3pdg-jbfq
1
vulnerability VCID-2kjh-4r2g-rqe6
2
vulnerability VCID-3txt-1psa-5kf5
3
vulnerability VCID-4qcn-52ug-mbd5
4
vulnerability VCID-6uuq-2a39-yubx
5
vulnerability VCID-937w-2w2q-7fdy
6
vulnerability VCID-nnye-4xbb-kuf5
7
vulnerability VCID-pq53-6deg-abfx
8
vulnerability VCID-sk1w-8yt4-93cv
9
vulnerability VCID-xjj5-fy4e-e7ha
10
vulnerability VCID-zrc5-bf77-aygn
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@8.0.0-RC1
5
url pkg:apache/tomcat@8.0.5
purl pkg:apache/tomcat@8.0.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-xjj5-fy4e-e7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@8.0.5
6
url pkg:maven/org.apache.tomcat/tomcat@6.0.0
purl pkg:maven/org.apache.tomcat/tomcat@6.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1a1b-3pdg-jbfq
1
vulnerability VCID-2jws-wtvg-2khf
2
vulnerability VCID-2kjh-4r2g-rqe6
3
vulnerability VCID-46sr-9kr3-1ubw
4
vulnerability VCID-4qcn-52ug-mbd5
5
vulnerability VCID-4t2h-jjhm-y7fq
6
vulnerability VCID-5m85-3zyu-7qak
7
vulnerability VCID-6umz-z8db-kqcy
8
vulnerability VCID-6uuq-2a39-yubx
9
vulnerability VCID-74c7-a56p-kufz
10
vulnerability VCID-7787-4bwm-efgq
11
vulnerability VCID-7fh9-36qs-jfg5
12
vulnerability VCID-89e9-m968-vfhe
13
vulnerability VCID-937w-2w2q-7fdy
14
vulnerability VCID-9hm5-e4dw-6ffe
15
vulnerability VCID-9j31-459b-4qbm
16
vulnerability VCID-aar2-398x-p3d8
17
vulnerability VCID-atus-ryef-17h1
18
vulnerability VCID-axzz-cadr-b7fv
19
vulnerability VCID-bv96-e6r9-xka7
20
vulnerability VCID-crhe-rt8j-wycu
21
vulnerability VCID-eawm-8v9w-yfap
22
vulnerability VCID-eygg-nt7y-qubh
23
vulnerability VCID-f4ka-47dk-zffs
24
vulnerability VCID-fu9h-e3jx-abe2
25
vulnerability VCID-fuxz-fqw3-ufa9
26
vulnerability VCID-hmqa-jhuf-hfe2
27
vulnerability VCID-hqzu-shyu-j3hp
28
vulnerability VCID-jfhv-r8ep-ykbm
29
vulnerability VCID-jw6e-g8z9-43ej
30
vulnerability VCID-jzta-navk-87bn
31
vulnerability VCID-kaem-zczd-pyhu
32
vulnerability VCID-kua1-kn4q-7kd2
33
vulnerability VCID-kxc3-vz2c-wqca
34
vulnerability VCID-mj47-ya6v-9kd3
35
vulnerability VCID-n4zk-mdyw-3fcz
36
vulnerability VCID-nmvx-w2sz-2kge
37
vulnerability VCID-nnye-4xbb-kuf5
38
vulnerability VCID-pq53-6deg-abfx
39
vulnerability VCID-pzkk-4e94-aqag
40
vulnerability VCID-qdvn-uc56-6fds
41
vulnerability VCID-qrbz-jgfy-qqhm
42
vulnerability VCID-qz87-x4zb-rud7
43
vulnerability VCID-qzyq-d6qk-67ag
44
vulnerability VCID-rbvf-c791-e7cg
45
vulnerability VCID-rdr4-db3y-p3cz
46
vulnerability VCID-redv-2x5y-8khx
47
vulnerability VCID-s37s-p75k-27e6
48
vulnerability VCID-sk1w-8yt4-93cv
49
vulnerability VCID-t3ya-1w1r-h3dv
50
vulnerability VCID-t4mh-zvhq-27du
51
vulnerability VCID-t57j-pu79-dbbn
52
vulnerability VCID-tc66-7b7t-k7h3
53
vulnerability VCID-tcmv-6ftg-fqen
54
vulnerability VCID-tmjv-jvfy-judb
55
vulnerability VCID-ua64-94fd-ekad
56
vulnerability VCID-uwuf-vukf-cqck
57
vulnerability VCID-vsta-e8jg-4qa8
58
vulnerability VCID-w8uj-zy2r-fyca
59
vulnerability VCID-wg7f-pjmn-uudk
60
vulnerability VCID-wtke-y2cx-x3et
61
vulnerability VCID-xjj5-fy4e-e7ha
62
vulnerability VCID-xra9-q91u-rfd5
63
vulnerability VCID-y9hs-ymcm-3ucx
64
vulnerability VCID-y9yv-u4jh-mqew
65
vulnerability VCID-ypuq-2mr2-sybb
66
vulnerability VCID-yswq-hnqg-sycs
67
vulnerability VCID-yusx-ncpv-sfhg
68
vulnerability VCID-yvcg-96dp-r7e6
69
vulnerability VCID-zam7-79x3-ekg3
70
vulnerability VCID-zm75-zwps-h3fv
71
vulnerability VCID-zrc5-bf77-aygn
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@6.0.0
7
url pkg:maven/org.apache.tomcat/tomcat@6.0.39
purl pkg:maven/org.apache.tomcat/tomcat@6.0.39
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1a1b-3pdg-jbfq
1
vulnerability VCID-937w-2w2q-7fdy
2
vulnerability VCID-nnye-4xbb-kuf5
3
vulnerability VCID-xjj5-fy4e-e7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@6.0.39
8
url pkg:maven/org.apache.tomcat/tomcat@7.0.0
purl pkg:maven/org.apache.tomcat/tomcat@7.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1a1b-3pdg-jbfq
1
vulnerability VCID-299p-e7fh-qfa2
2
vulnerability VCID-2kjh-4r2g-rqe6
3
vulnerability VCID-333t-ujej-7yhu
4
vulnerability VCID-3tme-zh53-7ubx
5
vulnerability VCID-3txt-1psa-5kf5
6
vulnerability VCID-46sr-9kr3-1ubw
7
vulnerability VCID-4qcn-52ug-mbd5
8
vulnerability VCID-4t2h-jjhm-y7fq
9
vulnerability VCID-59dd-qzpt-aucm
10
vulnerability VCID-5m85-3zyu-7qak
11
vulnerability VCID-5udv-rheh-kqfy
12
vulnerability VCID-6umz-z8db-kqcy
13
vulnerability VCID-6uuq-2a39-yubx
14
vulnerability VCID-74c7-a56p-kufz
15
vulnerability VCID-7fh9-36qs-jfg5
16
vulnerability VCID-89e9-m968-vfhe
17
vulnerability VCID-8fn4-hnez-y3eb
18
vulnerability VCID-937w-2w2q-7fdy
19
vulnerability VCID-9e2b-7qtg-tbaj
20
vulnerability VCID-9gz4-7etq-pyba
21
vulnerability VCID-9hm5-e4dw-6ffe
22
vulnerability VCID-aar2-398x-p3d8
23
vulnerability VCID-atus-ryef-17h1
24
vulnerability VCID-axzz-cadr-b7fv
25
vulnerability VCID-b83j-cebv-9ua6
26
vulnerability VCID-bwbm-vktd-jbd5
27
vulnerability VCID-ct4z-hxx3-53bw
28
vulnerability VCID-dk58-p9py-rka9
29
vulnerability VCID-e2gy-1c6a-6fdf
30
vulnerability VCID-e72e-axdj-7qfw
31
vulnerability VCID-essq-6syu-6ygm
32
vulnerability VCID-et9y-m4hb-43h7
33
vulnerability VCID-f4ka-47dk-zffs
34
vulnerability VCID-fu9h-e3jx-abe2
35
vulnerability VCID-g3vd-74yh-s7bn
36
vulnerability VCID-gc4t-aqwd-rkba
37
vulnerability VCID-gmjm-6ck2-skgu
38
vulnerability VCID-hqzu-shyu-j3hp
39
vulnerability VCID-j1m6-79yt-f7h5
40
vulnerability VCID-jw6e-g8z9-43ej
41
vulnerability VCID-jzta-navk-87bn
42
vulnerability VCID-m7ja-6efp-tyh1
43
vulnerability VCID-mwr3-83kd-s7g3
44
vulnerability VCID-n4zk-mdyw-3fcz
45
vulnerability VCID-nnye-4xbb-kuf5
46
vulnerability VCID-nxb3-55eu-auhp
47
vulnerability VCID-pq53-6deg-abfx
48
vulnerability VCID-qhqg-ekuv-z7fc
49
vulnerability VCID-qthw-u9bp-zkdp
50
vulnerability VCID-qurk-u1gg-gkdy
51
vulnerability VCID-rbvf-c791-e7cg
52
vulnerability VCID-rbvh-4npk-nub9
53
vulnerability VCID-redv-2x5y-8khx
54
vulnerability VCID-s37s-p75k-27e6
55
vulnerability VCID-se44-f85s-xyex
56
vulnerability VCID-sk1w-8yt4-93cv
57
vulnerability VCID-t57j-pu79-dbbn
58
vulnerability VCID-tc66-7b7t-k7h3
59
vulnerability VCID-tcmv-6ftg-fqen
60
vulnerability VCID-tmjv-jvfy-judb
61
vulnerability VCID-ua64-94fd-ekad
62
vulnerability VCID-vp5s-ekhc-w7ck
63
vulnerability VCID-vsta-e8jg-4qa8
64
vulnerability VCID-webw-gryb-7ucv
65
vulnerability VCID-wtke-y2cx-x3et
66
vulnerability VCID-xa95-zsnk-3kg9
67
vulnerability VCID-xjj5-fy4e-e7ha
68
vulnerability VCID-xra9-q91u-rfd5
69
vulnerability VCID-y9hs-ymcm-3ucx
70
vulnerability VCID-yusx-ncpv-sfhg
71
vulnerability VCID-yvcg-96dp-r7e6
72
vulnerability VCID-zm75-zwps-h3fv
73
vulnerability VCID-zrc5-bf77-aygn
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@7.0.0
9
url pkg:maven/org.apache.tomcat/tomcat@7.0.53
purl pkg:maven/org.apache.tomcat/tomcat@7.0.53
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-xjj5-fy4e-e7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@7.0.53
10
url pkg:maven/org.apache.tomcat/tomcat@8.0.0-RC1
purl pkg:maven/org.apache.tomcat/tomcat@8.0.0-RC1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1a1b-3pdg-jbfq
1
vulnerability VCID-2kjh-4r2g-rqe6
2
vulnerability VCID-3txt-1psa-5kf5
3
vulnerability VCID-4qcn-52ug-mbd5
4
vulnerability VCID-6uuq-2a39-yubx
5
vulnerability VCID-937w-2w2q-7fdy
6
vulnerability VCID-nnye-4xbb-kuf5
7
vulnerability VCID-pq53-6deg-abfx
8
vulnerability VCID-sk1w-8yt4-93cv
9
vulnerability VCID-xjj5-fy4e-e7ha
10
vulnerability VCID-yusx-ncpv-sfhg
11
vulnerability VCID-zrc5-bf77-aygn
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@8.0.0-RC1
11
url pkg:maven/org.apache.tomcat/tomcat@8.0.0
purl pkg:maven/org.apache.tomcat/tomcat@8.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1a1b-3pdg-jbfq
1
vulnerability VCID-2kjh-4r2g-rqe6
2
vulnerability VCID-5udv-rheh-kqfy
3
vulnerability VCID-6umz-z8db-kqcy
4
vulnerability VCID-6uuq-2a39-yubx
5
vulnerability VCID-937w-2w2q-7fdy
6
vulnerability VCID-axzz-cadr-b7fv
7
vulnerability VCID-fukm-h3r6-s7cr
8
vulnerability VCID-g3vd-74yh-s7bn
9
vulnerability VCID-gmjm-6ck2-skgu
10
vulnerability VCID-hqzu-shyu-j3hp
11
vulnerability VCID-j1m6-79yt-f7h5
12
vulnerability VCID-jzta-navk-87bn
13
vulnerability VCID-nnye-4xbb-kuf5
14
vulnerability VCID-pq53-6deg-abfx
15
vulnerability VCID-q7g1-m4e7-pya4
16
vulnerability VCID-rtmv-qetu-yqfa
17
vulnerability VCID-se44-f85s-xyex
18
vulnerability VCID-vu84-dfwa-z3dg
19
vulnerability VCID-xjj5-fy4e-e7ha
20
vulnerability VCID-yusx-ncpv-sfhg
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@8.0.0
12
url pkg:maven/org.apache.tomcat/tomcat@8.0.5
purl pkg:maven/org.apache.tomcat/tomcat@8.0.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-xjj5-fy4e-e7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@8.0.5
13
url pkg:maven/org.apache.tomcat/tomcat-catalina@7.0.0
purl pkg:maven/org.apache.tomcat/tomcat-catalina@7.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-47v1-3uxc-zkaj
1
vulnerability VCID-6umz-z8db-kqcy
2
vulnerability VCID-7fh9-36qs-jfg5
3
vulnerability VCID-8fn4-hnez-y3eb
4
vulnerability VCID-937w-2w2q-7fdy
5
vulnerability VCID-9e2b-7qtg-tbaj
6
vulnerability VCID-essq-6syu-6ygm
7
vulnerability VCID-jzta-navk-87bn
8
vulnerability VCID-xa95-zsnk-3kg9
9
vulnerability VCID-xjj5-fy4e-e7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-catalina@7.0.0
14
url pkg:maven/org.apache.tomcat/tomcat-catalina@8.0.0
purl pkg:maven/org.apache.tomcat/tomcat-catalina@8.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-47v1-3uxc-zkaj
1
vulnerability VCID-6umz-z8db-kqcy
2
vulnerability VCID-937w-2w2q-7fdy
3
vulnerability VCID-9e2b-7qtg-tbaj
4
vulnerability VCID-jzta-navk-87bn
5
vulnerability VCID-xjj5-fy4e-e7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-catalina@8.0.0
15
url pkg:maven/org.apache.tomcat/tomcat-jasper@7.0.0
purl pkg:maven/org.apache.tomcat/tomcat-jasper@7.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-xjj5-fy4e-e7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-jasper@7.0.0
16
url pkg:maven/org.apache.tomcat/tomcat-jasper@8.0.0
purl pkg:maven/org.apache.tomcat/tomcat-jasper@8.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-xjj5-fy4e-e7ha
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-jasper@8.0.0
References
0
reference_url https://github.com/apache/tomcat
reference_id
reference_type
scores
url https://github.com/apache/tomcat
1
reference_url https://github.com/apache/tomcat80/commit/25251de791a6a7be13f2f3d3a66119a77025272d
reference_id
reference_type
scores
url https://github.com/apache/tomcat80/commit/25251de791a6a7be13f2f3d3a66119a77025272d
2
reference_url https://github.com/apache/tomcat80/commit/4d90e355dc5ced4c53585c2b4700f71a52d8f447
reference_id
reference_type
scores
url https://github.com/apache/tomcat80/commit/4d90e355dc5ced4c53585c2b4700f71a52d8f447
3
reference_url https://github.com/apache/tomcat80/commit/51e59532ad4c604f55575963dc7a7f0250cb420f
reference_id
reference_type
scores
url https://github.com/apache/tomcat80/commit/51e59532ad4c604f55575963dc7a7f0250cb420f
4
reference_url https://github.com/apache/tomcat80/commit/69a8a72283c3395ece8b899cf8562e126de97a27
reference_id
reference_type
scores
url https://github.com/apache/tomcat80/commit/69a8a72283c3395ece8b899cf8562e126de97a27
5
reference_url https://github.com/apache/tomcat80/commit/77e014cef5d5af619bcf77eaebf22c284d420802
reference_id
reference_type
scores
url https://github.com/apache/tomcat80/commit/77e014cef5d5af619bcf77eaebf22c284d420802
6
reference_url https://github.com/apache/tomcat80/commit/7d33457de5fc5a652a88fb9bbc9ba4cbbda58f04
reference_id
reference_type
scores
url https://github.com/apache/tomcat80/commit/7d33457de5fc5a652a88fb9bbc9ba4cbbda58f04
7
reference_url https://github.com/apache/tomcat80/commit/d59fd4398c8ae6361e0b13c491f66b51e49a7441
reference_id
reference_type
scores
url https://github.com/apache/tomcat80/commit/d59fd4398c8ae6361e0b13c491f66b51e49a7441
8
reference_url https://github.com/apache/tomcat/commit/080878ea519d8c74c53721a9ebf7be6fcf6f1f2f
reference_id
reference_type
scores
url https://github.com/apache/tomcat/commit/080878ea519d8c74c53721a9ebf7be6fcf6f1f2f
9
reference_url https://github.com/apache/tomcat/commit/50311bed8d87e452ff0e69838ba312c4fe899b2d
reference_id
reference_type
scores
url https://github.com/apache/tomcat/commit/50311bed8d87e452ff0e69838ba312c4fe899b2d
10
reference_url https://github.com/apache/tomcat/commit/5517c5517e8a7ddb994504f0c5c05001a376b10c
reference_id
reference_type
scores
url https://github.com/apache/tomcat/commit/5517c5517e8a7ddb994504f0c5c05001a376b10c
11
reference_url https://github.com/apache/tomcat/commit/5aae1323c31d643afa9f2db80713b8e97b5123af
reference_id
reference_type
scores
url https://github.com/apache/tomcat/commit/5aae1323c31d643afa9f2db80713b8e97b5123af
12
reference_url https://github.com/apache/tomcat/commit/6246d8307fb5f2b4ff0b0f4d6d1b0250dff01a81
reference_id
reference_type
scores
url https://github.com/apache/tomcat/commit/6246d8307fb5f2b4ff0b0f4d6d1b0250dff01a81
13
reference_url https://github.com/apache/tomcat/commit/769477b9bc8442db3f571385fa0c3e206242cbf1
reference_id
reference_type
scores
url https://github.com/apache/tomcat/commit/769477b9bc8442db3f571385fa0c3e206242cbf1
14
reference_url https://github.com/apache/tomcat/commit/934f884f330dad192d2c5dc950e28f4cd281461b
reference_id
reference_type
scores
url https://github.com/apache/tomcat/commit/934f884f330dad192d2c5dc950e28f4cd281461b
15
reference_url https://github.com/apache/tomcat/commit/ad3b34a290a0255d2a4c356a3611ab41ed9d04f5
reference_id
reference_type
scores
url https://github.com/apache/tomcat/commit/ad3b34a290a0255d2a4c356a3611ab41ed9d04f5
16
reference_url https://github.com/apache/tomcat/commit/ce70ee6b8fe437a498a375215011056702b0c481
reference_id
reference_type
scores
url https://github.com/apache/tomcat/commit/ce70ee6b8fe437a498a375215011056702b0c481
17
reference_url https://github.com/apache/tomcat/commit/ebe5c16f18ce1559e8462a94b3876a98525980d2
reference_id
reference_type
scores
url https://github.com/apache/tomcat/commit/ebe5c16f18ce1559e8462a94b3876a98525980d2
18
reference_url https://github.com/apache/tomcat/commit/f8b316acbbf9fabf87cc137e9777e912eda0d834
reference_id
reference_type
scores
url https://github.com/apache/tomcat/commit/f8b316acbbf9fabf87cc137e9777e912eda0d834
19
reference_url https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04851013
reference_id
reference_type
scores
url https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04851013
20
reference_url https://lists.apache.org/thread.html/37220405a377c0182d2afdbc36461c4783b2930fbeae3a17f1333113@%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
url https://lists.apache.org/thread.html/37220405a377c0182d2afdbc36461c4783b2930fbeae3a17f1333113@%3Cdev.tomcat.apache.org%3E
21
reference_url https://lists.apache.org/thread.html/37220405a377c0182d2afdbc36461c4783b2930fbeae3a17f1333113%40%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
url https://lists.apache.org/thread.html/37220405a377c0182d2afdbc36461c4783b2930fbeae3a17f1333113%40%3Cdev.tomcat.apache.org%3E
22
reference_url https://lists.apache.org/thread.html/39ae1f0bd5867c15755a6f959b271ade1aea04ccdc3b2e639dcd903b@%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
url https://lists.apache.org/thread.html/39ae1f0bd5867c15755a6f959b271ade1aea04ccdc3b2e639dcd903b@%3Cdev.tomcat.apache.org%3E
23
reference_url https://lists.apache.org/thread.html/39ae1f0bd5867c15755a6f959b271ade1aea04ccdc3b2e639dcd903b%40%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
url https://lists.apache.org/thread.html/39ae1f0bd5867c15755a6f959b271ade1aea04ccdc3b2e639dcd903b%40%3Cdev.tomcat.apache.org%3E
24
reference_url https://lists.apache.org/thread.html/b84ad1258a89de5c9c853c7f2d3ad77e5b8b2930be9e132d5cef6b95@%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
url https://lists.apache.org/thread.html/b84ad1258a89de5c9c853c7f2d3ad77e5b8b2930be9e132d5cef6b95@%3Cdev.tomcat.apache.org%3E
25
reference_url https://lists.apache.org/thread.html/b84ad1258a89de5c9c853c7f2d3ad77e5b8b2930be9e132d5cef6b95%40%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
url https://lists.apache.org/thread.html/b84ad1258a89de5c9c853c7f2d3ad77e5b8b2930be9e132d5cef6b95%40%3Cdev.tomcat.apache.org%3E
26
reference_url https://lists.apache.org/thread.html/b8a1bf18155b552dcf9a928ba808cbadad84c236d85eab3033662cfb@%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
url https://lists.apache.org/thread.html/b8a1bf18155b552dcf9a928ba808cbadad84c236d85eab3033662cfb@%3Cdev.tomcat.apache.org%3E
27
reference_url https://lists.apache.org/thread.html/b8a1bf18155b552dcf9a928ba808cbadad84c236d85eab3033662cfb%40%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
url https://lists.apache.org/thread.html/b8a1bf18155b552dcf9a928ba808cbadad84c236d85eab3033662cfb%40%3Cdev.tomcat.apache.org%3E
28
reference_url https://lists.apache.org/thread.html/r03c597a64de790ba42c167efacfa23300c3d6c9fe589ab87fe02859c@%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
url https://lists.apache.org/thread.html/r03c597a64de790ba42c167efacfa23300c3d6c9fe589ab87fe02859c@%3Cdev.tomcat.apache.org%3E
29
reference_url https://lists.apache.org/thread.html/r03c597a64de790ba42c167efacfa23300c3d6c9fe589ab87fe02859c%40%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
url https://lists.apache.org/thread.html/r03c597a64de790ba42c167efacfa23300c3d6c9fe589ab87fe02859c%40%3Cdev.tomcat.apache.org%3E
30
reference_url https://lists.apache.org/thread.html/r587e50b86c1a96ee301f751d50294072d142fd6dc08a8987ae9f3a9b@%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
url https://lists.apache.org/thread.html/r587e50b86c1a96ee301f751d50294072d142fd6dc08a8987ae9f3a9b@%3Cdev.tomcat.apache.org%3E
31
reference_url https://lists.apache.org/thread.html/r587e50b86c1a96ee301f751d50294072d142fd6dc08a8987ae9f3a9b%40%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
url https://lists.apache.org/thread.html/r587e50b86c1a96ee301f751d50294072d142fd6dc08a8987ae9f3a9b%40%3Cdev.tomcat.apache.org%3E
32
reference_url https://lists.apache.org/thread.html/r9136ff5b13e4f1941360b5a309efee2c114a14855578c3a2cbe5d19c@%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
url https://lists.apache.org/thread.html/r9136ff5b13e4f1941360b5a309efee2c114a14855578c3a2cbe5d19c@%3Cdev.tomcat.apache.org%3E
33
reference_url https://lists.apache.org/thread.html/r9136ff5b13e4f1941360b5a309efee2c114a14855578c3a2cbe5d19c%40%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
url https://lists.apache.org/thread.html/r9136ff5b13e4f1941360b5a309efee2c114a14855578c3a2cbe5d19c%40%3Cdev.tomcat.apache.org%3E
34
reference_url https://svn.apache.org/viewvc?view=rev&rev=1588193
reference_id
reference_type
scores
url https://svn.apache.org/viewvc?view=rev&rev=1588193
35
reference_url https://svn.apache.org/viewvc?view=rev&rev=1588199
reference_id
reference_type
scores
url https://svn.apache.org/viewvc?view=rev&rev=1588199
36
reference_url https://svn.apache.org/viewvc?view=rev&rev=1589640
reference_id
reference_type
scores
url https://svn.apache.org/viewvc?view=rev&rev=1589640
37
reference_url https://svn.apache.org/viewvc?view=rev&rev=1589837
reference_id
reference_type
scores
url https://svn.apache.org/viewvc?view=rev&rev=1589837
38
reference_url https://svn.apache.org/viewvc?view=rev&rev=1589980
reference_id
reference_type
scores
url https://svn.apache.org/viewvc?view=rev&rev=1589980
39
reference_url https://svn.apache.org/viewvc?view=rev&rev=1589983
reference_id
reference_type
scores
url https://svn.apache.org/viewvc?view=rev&rev=1589983
40
reference_url https://svn.apache.org/viewvc?view=rev&rev=1589985
reference_id
reference_type
scores
url https://svn.apache.org/viewvc?view=rev&rev=1589985
41
reference_url https://svn.apache.org/viewvc?view=rev&rev=1589990
reference_id
reference_type
scores
url https://svn.apache.org/viewvc?view=rev&rev=1589990
42
reference_url https://svn.apache.org/viewvc?view=rev&rev=1589992
reference_id
reference_type
scores
url https://svn.apache.org/viewvc?view=rev&rev=1589992
43
reference_url https://svn.apache.org/viewvc?view=rev&rev=1589997
reference_id
reference_type
scores
url https://svn.apache.org/viewvc?view=rev&rev=1589997
44
reference_url https://svn.apache.org/viewvc?view=rev&rev=1590028
reference_id
reference_type
scores
url https://svn.apache.org/viewvc?view=rev&rev=1590028
45
reference_url https://svn.apache.org/viewvc?view=rev&rev=1590036
reference_id
reference_type
scores
url https://svn.apache.org/viewvc?view=rev&rev=1590036
46
reference_url https://svn.apache.org/viewvc?view=rev&rev=1593815
reference_id
reference_type
scores
url https://svn.apache.org/viewvc?view=rev&rev=1593815
47
reference_url https://svn.apache.org/viewvc?view=rev&rev=1593821
reference_id
reference_type
scores
url https://svn.apache.org/viewvc?view=rev&rev=1593821
48
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0119
reference_id CVE-2014-0119
reference_type
scores
0
value Low
scoring_system apache_tomcat
scoring_elements
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0119
49
reference_url https://nvd.nist.gov/vuln/detail/CVE-2014-0119
reference_id CVE-2014-0119
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2014-0119
50
reference_url https://github.com/advisories/GHSA-prc3-7f44-w48j
reference_id GHSA-prc3-7f44-w48j
reference_type
scores
url https://github.com/advisories/GHSA-prc3-7f44-w48j
Weaknesses
0
cwe_id 112
name Missing XML Validation
description The product accepts XML from an untrusted source but does not validate the XML against the proper schema.
1
cwe_id 937
name OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.
2
cwe_id 1035
name OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.
Exploits
Severity_range_score0.1 - 3
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-xjj5-fy4e-e7ha