Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-3yvz-dmrg-bfcf
Summary
Duplicate Advisory: Moderate severity vulnerability that affects activemodel
## Duplicate advisory
This advisory has been withdrawn because it is a duplicate of [GHSA-543v-gj2c-r3ch](https://github.com/advisories/GHSA-543v-gj2c-r3ch). This link is maintained to preserve external references.

## Original Description
Active Model in Ruby on Rails 4.1.x before 4.1.14.1, 4.2.x before 4.2.5.1, and 5.x before 5.0.0.beta1.1 supports the use of instance-level writers for class accessors, which allows remote attackers to bypass intended validation steps via crafted parameters.
Aliases
0
alias GHSA-v543-gqhh-6gww
Fixed_packages
0
url pkg:gem/activemodel@4.1.14.1
purl pkg:gem/activemodel@4.1.14.1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.1.14.1
1
url pkg:gem/activemodel@4.2.5.1
purl pkg:gem/activemodel@4.2.5.1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.2.5.1
Affected_packages
0
url pkg:gem/activemodel@4.1.0
purl pkg:gem/activemodel@4.1.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.1.0
1
url pkg:gem/activemodel@4.1.1
purl pkg:gem/activemodel@4.1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.1.1
2
url pkg:gem/activemodel@4.1.2.rc1
purl pkg:gem/activemodel@4.1.2.rc1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.1.2.rc1
3
url pkg:gem/activemodel@4.1.2.rc2
purl pkg:gem/activemodel@4.1.2.rc2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.1.2.rc2
4
url pkg:gem/activemodel@4.1.2.rc3
purl pkg:gem/activemodel@4.1.2.rc3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.1.2.rc3
5
url pkg:gem/activemodel@4.1.2
purl pkg:gem/activemodel@4.1.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.1.2
6
url pkg:gem/activemodel@4.1.3
purl pkg:gem/activemodel@4.1.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.1.3
7
url pkg:gem/activemodel@4.1.4
purl pkg:gem/activemodel@4.1.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.1.4
8
url pkg:gem/activemodel@4.1.5
purl pkg:gem/activemodel@4.1.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.1.5
9
url pkg:gem/activemodel@4.1.6.rc1
purl pkg:gem/activemodel@4.1.6.rc1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.1.6.rc1
10
url pkg:gem/activemodel@4.1.6.rc2
purl pkg:gem/activemodel@4.1.6.rc2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.1.6.rc2
11
url pkg:gem/activemodel@4.1.6
purl pkg:gem/activemodel@4.1.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.1.6
12
url pkg:gem/activemodel@4.1.7
purl pkg:gem/activemodel@4.1.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.1.7
13
url pkg:gem/activemodel@4.1.7.1
purl pkg:gem/activemodel@4.1.7.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.1.7.1
14
url pkg:gem/activemodel@4.1.8
purl pkg:gem/activemodel@4.1.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.1.8
15
url pkg:gem/activemodel@4.1.9.rc1
purl pkg:gem/activemodel@4.1.9.rc1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.1.9.rc1
16
url pkg:gem/activemodel@4.1.9
purl pkg:gem/activemodel@4.1.9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.1.9
17
url pkg:gem/activemodel@4.1.10.rc1
purl pkg:gem/activemodel@4.1.10.rc1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.1.10.rc1
18
url pkg:gem/activemodel@4.1.10.rc2
purl pkg:gem/activemodel@4.1.10.rc2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.1.10.rc2
19
url pkg:gem/activemodel@4.1.10.rc3
purl pkg:gem/activemodel@4.1.10.rc3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.1.10.rc3
20
url pkg:gem/activemodel@4.1.10.rc4
purl pkg:gem/activemodel@4.1.10.rc4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.1.10.rc4
21
url pkg:gem/activemodel@4.1.10
purl pkg:gem/activemodel@4.1.10
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.1.10
22
url pkg:gem/activemodel@4.1.11
purl pkg:gem/activemodel@4.1.11
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.1.11
23
url pkg:gem/activemodel@4.1.12.rc1
purl pkg:gem/activemodel@4.1.12.rc1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.1.12.rc1
24
url pkg:gem/activemodel@4.1.12
purl pkg:gem/activemodel@4.1.12
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.1.12
25
url pkg:gem/activemodel@4.1.13.rc1
purl pkg:gem/activemodel@4.1.13.rc1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.1.13.rc1
26
url pkg:gem/activemodel@4.1.13
purl pkg:gem/activemodel@4.1.13
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.1.13
27
url pkg:gem/activemodel@4.1.14.rc1
purl pkg:gem/activemodel@4.1.14.rc1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.1.14.rc1
28
url pkg:gem/activemodel@4.1.14.rc2
purl pkg:gem/activemodel@4.1.14.rc2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.1.14.rc2
29
url pkg:gem/activemodel@4.1.14
purl pkg:gem/activemodel@4.1.14
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.1.14
30
url pkg:gem/activemodel@4.1.14.0
purl pkg:gem/activemodel@4.1.14.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.1.14.0
31
url pkg:gem/activemodel@4.2
purl pkg:gem/activemodel@4.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.2
32
url pkg:gem/activemodel@4.2.0
purl pkg:gem/activemodel@4.2.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.2.0
33
url pkg:gem/activemodel@4.2.1.rc1
purl pkg:gem/activemodel@4.2.1.rc1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.2.1.rc1
34
url pkg:gem/activemodel@4.2.1.rc2
purl pkg:gem/activemodel@4.2.1.rc2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.2.1.rc2
35
url pkg:gem/activemodel@4.2.1.rc3
purl pkg:gem/activemodel@4.2.1.rc3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.2.1.rc3
36
url pkg:gem/activemodel@4.2.1.rc4
purl pkg:gem/activemodel@4.2.1.rc4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.2.1.rc4
37
url pkg:gem/activemodel@4.2.1
purl pkg:gem/activemodel@4.2.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.2.1
38
url pkg:gem/activemodel@4.2.2
purl pkg:gem/activemodel@4.2.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.2.2
39
url pkg:gem/activemodel@4.2.3.rc1
purl pkg:gem/activemodel@4.2.3.rc1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.2.3.rc1
40
url pkg:gem/activemodel@4.2.3
purl pkg:gem/activemodel@4.2.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.2.3
41
url pkg:gem/activemodel@4.2.4.rc1
purl pkg:gem/activemodel@4.2.4.rc1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.2.4.rc1
42
url pkg:gem/activemodel@4.2.4
purl pkg:gem/activemodel@4.2.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.2.4
43
url pkg:gem/activemodel@4.2.5.rc1
purl pkg:gem/activemodel@4.2.5.rc1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.2.5.rc1
44
url pkg:gem/activemodel@4.2.5.rc2
purl pkg:gem/activemodel@4.2.5.rc2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.2.5.rc2
45
url pkg:gem/activemodel@4.2.5
purl pkg:gem/activemodel@4.2.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.2.5
46
url pkg:gem/activemodel@4.2.5.0
purl pkg:gem/activemodel@4.2.5.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3yvz-dmrg-bfcf
1
vulnerability VCID-pb5f-g4uc-r7fp
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activemodel@4.2.5.0
References
0
reference_url https://github.com/advisories/GHSA-v543-gqhh-6gww
reference_id
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/advisories/GHSA-v543-gqhh-6gww
1
reference_url https://nvd.nist.gov/vuln/detail/CVE-2016-0753
reference_id CVE-2016-0753
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2016-0753
Weaknesses
Exploits
Severity_range_score4.0 - 6.9
Exploitability0.5
Weighted_severity6.2
Risk_score3.1
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-3yvz-dmrg-bfcf