Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-ssnx-gz8e-87ab
SummaryCross-site scripting vulnerability in Apache Tomcat 4.0.3 allows remote attackers to execute script as other web users via script in a URL with the /servlet/ mapping, which does not filter the script when an exception is thrown by the servlet.
Aliases
0
alias CVE-2002-0682
Fixed_packages
0
url pkg:apache/tomcat@4.1.13
purl pkg:apache/tomcat@4.1.13
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@4.1.13
Affected_packages
0
url pkg:apache/tomcat@4.0.0
purl pkg:apache/tomcat@4.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-18j8-kwdv-dyak
1
vulnerability VCID-2fb2-r763-ybg5
2
vulnerability VCID-2jnv-segx-zkfd
3
vulnerability VCID-41ps-jy8t-cyfm
4
vulnerability VCID-6epr-2hbd-skcz
5
vulnerability VCID-87p8-zvvf-y7dm
6
vulnerability VCID-88v7-kc2y-bfd7
7
vulnerability VCID-99es-8ecb-uub8
8
vulnerability VCID-9y3t-7vfv-cbd2
9
vulnerability VCID-bhq7-d545-27bj
10
vulnerability VCID-gcgw-9fjy-nuap
11
vulnerability VCID-j2sv-62js-xbav
12
vulnerability VCID-p45v-qpgg-qqfj
13
vulnerability VCID-peya-mr7j-vugf
14
vulnerability VCID-q7jp-hn4a-4kec
15
vulnerability VCID-qxkf-4ddv-j3b7
16
vulnerability VCID-r1bk-cqhx-ebc5
17
vulnerability VCID-ssnx-gz8e-87ab
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@4.0.0
1
url pkg:apache/tomcat@4.0.5
purl pkg:apache/tomcat@4.0.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-j2sv-62js-xbav
1
vulnerability VCID-ssnx-gz8e-87ab
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@4.0.5
2
url pkg:apache/tomcat@4.1.0
purl pkg:apache/tomcat@4.1.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-18j8-kwdv-dyak
1
vulnerability VCID-27q8-96un-9fbk
2
vulnerability VCID-2jnv-segx-zkfd
3
vulnerability VCID-4rcx-xfn5-7kdb
4
vulnerability VCID-6epr-2hbd-skcz
5
vulnerability VCID-6p3e-4u8s-17ep
6
vulnerability VCID-7969-7a8h-zyhh
7
vulnerability VCID-87p8-zvvf-y7dm
8
vulnerability VCID-88v7-kc2y-bfd7
9
vulnerability VCID-99es-8ecb-uub8
10
vulnerability VCID-a9cu-fxqw-xkdg
11
vulnerability VCID-acmu-9eqb-fya5
12
vulnerability VCID-afg3-t31c-ffgp
13
vulnerability VCID-bhq7-d545-27bj
14
vulnerability VCID-bung-pa58-ayfv
15
vulnerability VCID-dcrp-rae1-zfcm
16
vulnerability VCID-fvvt-kufu-k3a6
17
vulnerability VCID-j2sv-62js-xbav
18
vulnerability VCID-mnf8-t3ew-4fgb
19
vulnerability VCID-mp3r-5531-uqg5
20
vulnerability VCID-p45v-qpgg-qqfj
21
vulnerability VCID-peya-mr7j-vugf
22
vulnerability VCID-q7jp-hn4a-4kec
23
vulnerability VCID-qdck-q54n-rkcv
24
vulnerability VCID-qxkf-4ddv-j3b7
25
vulnerability VCID-r1bk-cqhx-ebc5
26
vulnerability VCID-r84b-7ay9-ekcm
27
vulnerability VCID-ssnx-gz8e-87ab
28
vulnerability VCID-tcju-3rvu-wkht
29
vulnerability VCID-v94p-bxm3-akfd
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@4.1.0
3
url pkg:apache/tomcat@4.1.12
purl pkg:apache/tomcat@4.1.12
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-j2sv-62js-xbav
1
vulnerability VCID-ssnx-gz8e-87ab
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@4.1.12
4
url pkg:maven/org.apache.tomcat/tomcat@4.0.0
purl pkg:maven/org.apache.tomcat/tomcat@4.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-18j8-kwdv-dyak
1
vulnerability VCID-2fb2-r763-ybg5
2
vulnerability VCID-2jnv-segx-zkfd
3
vulnerability VCID-41ps-jy8t-cyfm
4
vulnerability VCID-4ujr-2afv-73cy
5
vulnerability VCID-6epr-2hbd-skcz
6
vulnerability VCID-87p8-zvvf-y7dm
7
vulnerability VCID-88v7-kc2y-bfd7
8
vulnerability VCID-99es-8ecb-uub8
9
vulnerability VCID-9y3t-7vfv-cbd2
10
vulnerability VCID-bhq7-d545-27bj
11
vulnerability VCID-gcgw-9fjy-nuap
12
vulnerability VCID-j2sv-62js-xbav
13
vulnerability VCID-p45v-qpgg-qqfj
14
vulnerability VCID-peya-mr7j-vugf
15
vulnerability VCID-q7jp-hn4a-4kec
16
vulnerability VCID-qxkf-4ddv-j3b7
17
vulnerability VCID-r1bk-cqhx-ebc5
18
vulnerability VCID-ssnx-gz8e-87ab
19
vulnerability VCID-tcju-3rvu-wkht
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@4.0.0
5
url pkg:maven/org.apache.tomcat/tomcat@4.0.5
purl pkg:maven/org.apache.tomcat/tomcat@4.0.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-j2sv-62js-xbav
1
vulnerability VCID-ssnx-gz8e-87ab
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@4.0.5
6
url pkg:maven/org.apache.tomcat/tomcat@4.1.0
purl pkg:maven/org.apache.tomcat/tomcat@4.1.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-18j8-kwdv-dyak
1
vulnerability VCID-27q8-96un-9fbk
2
vulnerability VCID-2jnv-segx-zkfd
3
vulnerability VCID-4rcx-xfn5-7kdb
4
vulnerability VCID-6epr-2hbd-skcz
5
vulnerability VCID-6p3e-4u8s-17ep
6
vulnerability VCID-7969-7a8h-zyhh
7
vulnerability VCID-87p8-zvvf-y7dm
8
vulnerability VCID-88v7-kc2y-bfd7
9
vulnerability VCID-99es-8ecb-uub8
10
vulnerability VCID-a9cu-fxqw-xkdg
11
vulnerability VCID-acmu-9eqb-fya5
12
vulnerability VCID-afg3-t31c-ffgp
13
vulnerability VCID-bhq7-d545-27bj
14
vulnerability VCID-bung-pa58-ayfv
15
vulnerability VCID-dcrp-rae1-zfcm
16
vulnerability VCID-fvvt-kufu-k3a6
17
vulnerability VCID-j2sv-62js-xbav
18
vulnerability VCID-mnf8-t3ew-4fgb
19
vulnerability VCID-mp3r-5531-uqg5
20
vulnerability VCID-p45v-qpgg-qqfj
21
vulnerability VCID-peya-mr7j-vugf
22
vulnerability VCID-q7jp-hn4a-4kec
23
vulnerability VCID-qdck-q54n-rkcv
24
vulnerability VCID-qxkf-4ddv-j3b7
25
vulnerability VCID-r1bk-cqhx-ebc5
26
vulnerability VCID-r84b-7ay9-ekcm
27
vulnerability VCID-rwvj-tq6x-2ubs
28
vulnerability VCID-ssnx-gz8e-87ab
29
vulnerability VCID-tcju-3rvu-wkht
30
vulnerability VCID-v94p-bxm3-akfd
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@4.1.0
7
url pkg:maven/org.apache.tomcat/tomcat@4.1.12
purl pkg:maven/org.apache.tomcat/tomcat@4.1.12
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4ujr-2afv-73cy
1
vulnerability VCID-j2sv-62js-xbav
2
vulnerability VCID-ssnx-gz8e-87ab
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@4.1.12
References
0
reference_url http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0014.html
reference_id
reference_type
scores
url http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0014.html
1
reference_url http://marc.info/?l=bugtraq&m=102631703811297&w=2
reference_id
reference_type
scores
url http://marc.info/?l=bugtraq&m=102631703811297&w=2
2
reference_url https://api.first.org/data/v1/epss?cve=CVE-2002-0682
reference_id
reference_type
scores
0
value 0.83058
scoring_system epss
scoring_elements 0.9926
published_at 2026-04-18T12:55:00Z
1
value 0.83058
scoring_system epss
scoring_elements 0.99258
published_at 2026-04-13T12:55:00Z
2
value 0.83058
scoring_system epss
scoring_elements 0.99259
published_at 2026-04-16T12:55:00Z
3
value 0.83058
scoring_system epss
scoring_elements 0.99249
published_at 2026-04-01T12:55:00Z
4
value 0.83058
scoring_system epss
scoring_elements 0.99251
published_at 2026-04-02T12:55:00Z
5
value 0.83058
scoring_system epss
scoring_elements 0.99253
published_at 2026-04-04T12:55:00Z
6
value 0.83058
scoring_system epss
scoring_elements 0.99256
published_at 2026-04-07T12:55:00Z
7
value 0.83058
scoring_system epss
scoring_elements 0.99257
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2002-0682
3
reference_url https://exchange.xforce.ibmcloud.com/vulnerabilities/9520
reference_id
reference_type
scores
url https://exchange.xforce.ibmcloud.com/vulnerabilities/9520
4
reference_url https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5%40%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
url https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5%40%3Cdev.tomcat.apache.org%3E
5
reference_url https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74%40%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
url https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74%40%3Cdev.tomcat.apache.org%3E
6
reference_url https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3%40%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
url https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3%40%3Cdev.tomcat.apache.org%3E
7
reference_url http://www.osvdb.org/4973
reference_id
reference_type
scores
url http://www.osvdb.org/4973
8
reference_url http://www.securityfocus.com/bid/5193
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/5193
9
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.0.3:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:4.0.3:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.0.3:*:*:*:*:*:*:*
10
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-0682
reference_id CVE-2002-0682
reference_type
scores
0
value Moderate
scoring_system apache_tomcat
scoring_elements
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-0682
11
reference_url https://nvd.nist.gov/vuln/detail/CVE-2002-0682
reference_id CVE-2002-0682
reference_type
scores
0
value 7.5
scoring_system cvssv2
scoring_elements AV:N/AC:L/Au:N/C:P/I:P/A:P
url https://nvd.nist.gov/vuln/detail/CVE-2002-0682
12
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/21604.txt
reference_id CVE-2002-0682;OSVDB-4973
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/21604.txt
13
reference_url https://www.securityfocus.com/bid/5193/info
reference_id CVE-2002-0682;OSVDB-4973
reference_type exploit
scores
url https://www.securityfocus.com/bid/5193/info
Weaknesses
Exploits
0
date_added 2002-07-10
description Apache Tomcat 4.0.3 - Servlet Mapping Cross-Site Scripting
required_action null
due_date null
notes null
known_ransomware_campaign_use true
source_date_published 2002-07-10
exploit_type remote
platform linux
source_date_updated 2012-09-29
data_source Exploit-DB
source_url https://www.securityfocus.com/bid/5193/info
Severity_range_score4.0 - 7.5
Exploitability2.0
Weighted_severity6.8
Risk_score10.0
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-ssnx-gz8e-87ab