Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-fw2d-s2rt-syfz

Summary Directory traversal vulnerability in Django 1.1.x before 1.1.4 and 1.2.x before 1.2.5 on Windows might allow remote attackers to read or execute files via a / (slash) character in a key in a session cookie, related to session replays.

Aliases

alias	CVE-2011-0698

alias	GHSA-7g9h-c88w-r7h2

alias	PYSEC-2011-12

Fixed_packages

url	pkg:deb/debian/python-django@0?distro=trixie
purl	pkg:deb/debian/python-django@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-django@0%3Fdistro=trixie

url pkg:deb/debian/python-django@2:2.2.28-1~deb11u2?distro=trixie

purl pkg:deb/debian/python-django@2:2.2.28-1~deb11u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1adz-zw3h-pqek

vulnerability	VCID-46pv-pzsu-jucd

vulnerability	VCID-ac4c-321h-tqfk

vulnerability	VCID-ff2a-at5f-2qa8

vulnerability	VCID-gfym-spzk-w7gk

vulnerability	VCID-jzae-1awh-k7cm

vulnerability	VCID-mga4-an1w-qqf9

vulnerability	VCID-ssut-reka-r3f8

vulnerability	VCID-xhpa-mffz-syfy

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-django@2:2.2.28-1~deb11u2%3Fdistro=trixie

url pkg:deb/debian/python-django@3:3.2.19-1%2Bdeb12u1?distro=trixie

purl pkg:deb/debian/python-django@3:3.2.19-1%2Bdeb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1adz-zw3h-pqek

vulnerability	VCID-46pv-pzsu-jucd

vulnerability	VCID-ac4c-321h-tqfk

vulnerability	VCID-ff2a-at5f-2qa8

vulnerability	VCID-gfym-spzk-w7gk

vulnerability	VCID-jzae-1awh-k7cm

vulnerability	VCID-mga4-an1w-qqf9

vulnerability	VCID-ssut-reka-r3f8

vulnerability	VCID-xhpa-mffz-syfy

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-django@3:3.2.19-1%252Bdeb12u1%3Fdistro=trixie

url pkg:deb/debian/python-django@3:4.2.28-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/python-django@3:4.2.28-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1adz-zw3h-pqek

vulnerability	VCID-46pv-pzsu-jucd

vulnerability	VCID-ac4c-321h-tqfk

vulnerability	VCID-ff2a-at5f-2qa8

vulnerability	VCID-gfym-spzk-w7gk

vulnerability	VCID-ssut-reka-r3f8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-django@3:4.2.28-0%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/python-django@3:4.2.29-1?distro=trixie

purl pkg:deb/debian/python-django@3:4.2.29-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1adz-zw3h-pqek

vulnerability	VCID-46pv-pzsu-jucd

vulnerability	VCID-ff2a-at5f-2qa8

vulnerability	VCID-gfym-spzk-w7gk

vulnerability	VCID-ssut-reka-r3f8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-django@3:4.2.29-1%3Fdistro=trixie

url	pkg:deb/debian/python-django@3:4.2.30-1?distro=trixie
purl	pkg:deb/debian/python-django@3:4.2.30-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-django@3:4.2.30-1%3Fdistro=trixie

url pkg:pypi/django@1.1.4

purl pkg:pypi/django@1.1.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1pvd-3217-6ygv

vulnerability	VCID-2dhb-9yue-33h7

vulnerability	VCID-2m9f-3cgw-ekdr

vulnerability	VCID-325d-7dfk-sqd2

vulnerability	VCID-42cm-j2av-87ea

vulnerability	VCID-5g4y-1qmy-27bd

vulnerability	VCID-6gss-ppm5-3yc9

vulnerability	VCID-7bu3-ckpj-gbf8

vulnerability	VCID-84mm-45p6-xkau

vulnerability	VCID-896g-hqec-ryb9

vulnerability	VCID-8jaq-53td-wbeg

vulnerability	VCID-8teq-9xr9-q3fg

vulnerability	VCID-9uzd-mmyv-mfh4

vulnerability	VCID-a715-2qks-wyhn

vulnerability	VCID-bgmv-mf3x-bkew

vulnerability	VCID-br5x-v7md-47hp

vulnerability	VCID-c1n5-4ars-u7ff

vulnerability	VCID-czkz-mcv8-mqfc

vulnerability	VCID-e2jd-yd4j-kqgt

vulnerability	VCID-eker-m822-cuax

vulnerability	VCID-g56k-prrj-aqb1

vulnerability	VCID-jc9f-vgy8-ruan

vulnerability	VCID-jumh-hkhx-7qc9

vulnerability	VCID-k6s1-gnmc-e3ed

vulnerability	VCID-mm3u-a8ar-b3hp

vulnerability	VCID-qm34-ec8s-tfd7

vulnerability	VCID-qzba-9xmg-3qer

vulnerability	VCID-sbr6-pybe-dubq

vulnerability	VCID-spwd-dz6f-5fh9

vulnerability	VCID-t8ec-st1v-s3e5

vulnerability	VCID-ttm3-5a6e-wfa1

vulnerability	VCID-ukxp-wqpr-t3by

vulnerability	VCID-ura5-t7s9-8fck

vulnerability	VCID-w2dv-u8h6-sbgs

vulnerability	VCID-w4pr-k5nj-ckgy

vulnerability	VCID-x4ev-6zjm-sbe4

vulnerability	VCID-x516-xwze-6ba3

vulnerability	VCID-xtqq-9751-r3dq

vulnerability	VCID-yemh-qd63-wuca

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@1.1.4

url pkg:pypi/django@1.2.5

purl pkg:pypi/django@1.2.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1pvd-3217-6ygv

vulnerability	VCID-2dhb-9yue-33h7

vulnerability	VCID-2m9f-3cgw-ekdr

vulnerability	VCID-325d-7dfk-sqd2

vulnerability	VCID-42cm-j2av-87ea

vulnerability	VCID-5g4y-1qmy-27bd

vulnerability	VCID-6gss-ppm5-3yc9

vulnerability	VCID-7bu3-ckpj-gbf8

vulnerability	VCID-84mm-45p6-xkau

vulnerability	VCID-896g-hqec-ryb9

vulnerability	VCID-8jaq-53td-wbeg

vulnerability	VCID-8teq-9xr9-q3fg

vulnerability	VCID-9uzd-mmyv-mfh4

vulnerability	VCID-a715-2qks-wyhn

vulnerability	VCID-bgmv-mf3x-bkew

vulnerability	VCID-br5x-v7md-47hp

vulnerability	VCID-c1n5-4ars-u7ff

vulnerability	VCID-czkz-mcv8-mqfc

vulnerability	VCID-e2jd-yd4j-kqgt

vulnerability	VCID-eker-m822-cuax

vulnerability	VCID-g56k-prrj-aqb1

vulnerability	VCID-jc9f-vgy8-ruan

vulnerability	VCID-jumh-hkhx-7qc9

vulnerability	VCID-k6s1-gnmc-e3ed

vulnerability	VCID-mm3u-a8ar-b3hp

vulnerability	VCID-qm34-ec8s-tfd7

vulnerability	VCID-qzba-9xmg-3qer

vulnerability	VCID-sbr6-pybe-dubq

vulnerability	VCID-spwd-dz6f-5fh9

vulnerability	VCID-t8ec-st1v-s3e5

vulnerability	VCID-ttm3-5a6e-wfa1

vulnerability	VCID-ukxp-wqpr-t3by

vulnerability	VCID-ura5-t7s9-8fck

vulnerability	VCID-w2dv-u8h6-sbgs

vulnerability	VCID-w4pr-k5nj-ckgy

vulnerability	VCID-x4ev-6zjm-sbe4

vulnerability	VCID-x516-xwze-6ba3

vulnerability	VCID-xtqq-9751-r3dq

vulnerability	VCID-yemh-qd63-wuca

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@1.2.5

Affected_packages

url pkg:pypi/django@1.1

purl pkg:pypi/django@1.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1pvd-3217-6ygv

vulnerability	VCID-2dhb-9yue-33h7

vulnerability	VCID-2m9f-3cgw-ekdr

vulnerability	VCID-325d-7dfk-sqd2

vulnerability	VCID-42cm-j2av-87ea

vulnerability	VCID-47er-pm3z-qfh3

vulnerability	VCID-5g4y-1qmy-27bd

vulnerability	VCID-6gss-ppm5-3yc9

vulnerability	VCID-7bu3-ckpj-gbf8

vulnerability	VCID-84mm-45p6-xkau

vulnerability	VCID-896g-hqec-ryb9

vulnerability	VCID-8jaq-53td-wbeg

vulnerability	VCID-8teq-9xr9-q3fg

vulnerability	VCID-9uzd-mmyv-mfh4

vulnerability	VCID-a6d1-p4q6-fyav

vulnerability	VCID-a715-2qks-wyhn

vulnerability	VCID-bgmv-mf3x-bkew

vulnerability	VCID-br5x-v7md-47hp

vulnerability	VCID-c1n5-4ars-u7ff

vulnerability	VCID-czkz-mcv8-mqfc

vulnerability	VCID-e2jd-yd4j-kqgt

vulnerability	VCID-eker-m822-cuax

vulnerability	VCID-fw2d-s2rt-syfz

vulnerability	VCID-g56k-prrj-aqb1

vulnerability	VCID-hugz-zq5c-pugn

vulnerability	VCID-jc9f-vgy8-ruan

vulnerability	VCID-jumh-hkhx-7qc9

vulnerability	VCID-k6s1-gnmc-e3ed

vulnerability	VCID-mm3u-a8ar-b3hp

vulnerability	VCID-p1dq-27t5-e7b3

vulnerability	VCID-pv1d-wrex-hbgy

vulnerability	VCID-qm34-ec8s-tfd7

vulnerability	VCID-qzba-9xmg-3qer

vulnerability	VCID-sbr6-pybe-dubq

vulnerability	VCID-spwd-dz6f-5fh9

vulnerability	VCID-t8ec-st1v-s3e5

vulnerability	VCID-ttm3-5a6e-wfa1

vulnerability	VCID-ukxp-wqpr-t3by

vulnerability	VCID-ura5-t7s9-8fck

vulnerability	VCID-w2dv-u8h6-sbgs

vulnerability	VCID-w4pr-k5nj-ckgy

vulnerability	VCID-x4ev-6zjm-sbe4

vulnerability	VCID-x516-xwze-6ba3

vulnerability	VCID-xtqq-9751-r3dq

vulnerability	VCID-yemh-qd63-wuca

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@1.1

url pkg:pypi/django@1.1.1

purl pkg:pypi/django@1.1.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1pvd-3217-6ygv

vulnerability	VCID-2dhb-9yue-33h7

vulnerability	VCID-2m9f-3cgw-ekdr

vulnerability	VCID-325d-7dfk-sqd2

vulnerability	VCID-42cm-j2av-87ea

vulnerability	VCID-47er-pm3z-qfh3

vulnerability	VCID-5g4y-1qmy-27bd

vulnerability	VCID-6gss-ppm5-3yc9

vulnerability	VCID-7bu3-ckpj-gbf8

vulnerability	VCID-84mm-45p6-xkau

vulnerability	VCID-896g-hqec-ryb9

vulnerability	VCID-8jaq-53td-wbeg

vulnerability	VCID-8teq-9xr9-q3fg

vulnerability	VCID-9uzd-mmyv-mfh4

vulnerability	VCID-a6d1-p4q6-fyav

vulnerability	VCID-a715-2qks-wyhn

vulnerability	VCID-bgmv-mf3x-bkew

vulnerability	VCID-br5x-v7md-47hp

vulnerability	VCID-c1n5-4ars-u7ff

vulnerability	VCID-czkz-mcv8-mqfc

vulnerability	VCID-e2jd-yd4j-kqgt

vulnerability	VCID-eker-m822-cuax

vulnerability	VCID-fw2d-s2rt-syfz

vulnerability	VCID-g56k-prrj-aqb1

vulnerability	VCID-jc9f-vgy8-ruan

vulnerability	VCID-jumh-hkhx-7qc9

vulnerability	VCID-k6s1-gnmc-e3ed

vulnerability	VCID-mm3u-a8ar-b3hp

vulnerability	VCID-p1dq-27t5-e7b3

vulnerability	VCID-pv1d-wrex-hbgy

vulnerability	VCID-qm34-ec8s-tfd7

vulnerability	VCID-qzba-9xmg-3qer

vulnerability	VCID-sbr6-pybe-dubq

vulnerability	VCID-spwd-dz6f-5fh9

vulnerability	VCID-t8ec-st1v-s3e5

vulnerability	VCID-ttm3-5a6e-wfa1

vulnerability	VCID-ukxp-wqpr-t3by

vulnerability	VCID-ura5-t7s9-8fck

vulnerability	VCID-w2dv-u8h6-sbgs

vulnerability	VCID-w4pr-k5nj-ckgy

vulnerability	VCID-x4ev-6zjm-sbe4

vulnerability	VCID-x516-xwze-6ba3

vulnerability	VCID-xtqq-9751-r3dq

vulnerability	VCID-yemh-qd63-wuca

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@1.1.1

url pkg:pypi/django@1.1.2

purl pkg:pypi/django@1.1.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1pvd-3217-6ygv

vulnerability	VCID-2dhb-9yue-33h7

vulnerability	VCID-2m9f-3cgw-ekdr

vulnerability	VCID-325d-7dfk-sqd2

vulnerability	VCID-42cm-j2av-87ea

vulnerability	VCID-47er-pm3z-qfh3

vulnerability	VCID-5g4y-1qmy-27bd

vulnerability	VCID-6gss-ppm5-3yc9

vulnerability	VCID-7bu3-ckpj-gbf8

vulnerability	VCID-84mm-45p6-xkau

vulnerability	VCID-896g-hqec-ryb9

vulnerability	VCID-8jaq-53td-wbeg

vulnerability	VCID-8teq-9xr9-q3fg

vulnerability	VCID-9uzd-mmyv-mfh4

vulnerability	VCID-a6d1-p4q6-fyav

vulnerability	VCID-a715-2qks-wyhn

vulnerability	VCID-bgmv-mf3x-bkew

vulnerability	VCID-br5x-v7md-47hp

vulnerability	VCID-c1n5-4ars-u7ff

vulnerability	VCID-czkz-mcv8-mqfc

vulnerability	VCID-e2jd-yd4j-kqgt

vulnerability	VCID-eker-m822-cuax

vulnerability	VCID-fw2d-s2rt-syfz

vulnerability	VCID-g56k-prrj-aqb1

vulnerability	VCID-jc9f-vgy8-ruan

vulnerability	VCID-jumh-hkhx-7qc9

vulnerability	VCID-k6s1-gnmc-e3ed

vulnerability	VCID-mm3u-a8ar-b3hp

vulnerability	VCID-p1dq-27t5-e7b3

vulnerability	VCID-pv1d-wrex-hbgy

vulnerability	VCID-qm34-ec8s-tfd7

vulnerability	VCID-qzba-9xmg-3qer

vulnerability	VCID-sbr6-pybe-dubq

vulnerability	VCID-spwd-dz6f-5fh9

vulnerability	VCID-t8ec-st1v-s3e5

vulnerability	VCID-ttm3-5a6e-wfa1

vulnerability	VCID-ukxp-wqpr-t3by

vulnerability	VCID-ura5-t7s9-8fck

vulnerability	VCID-w2dv-u8h6-sbgs

vulnerability	VCID-w4pr-k5nj-ckgy

vulnerability	VCID-x4ev-6zjm-sbe4

vulnerability	VCID-x516-xwze-6ba3

vulnerability	VCID-xtqq-9751-r3dq

vulnerability	VCID-yemh-qd63-wuca

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@1.1.2

url pkg:pypi/django@1.1.3

purl pkg:pypi/django@1.1.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1pvd-3217-6ygv

vulnerability	VCID-2dhb-9yue-33h7

vulnerability	VCID-2m9f-3cgw-ekdr

vulnerability	VCID-325d-7dfk-sqd2

vulnerability	VCID-42cm-j2av-87ea

vulnerability	VCID-47er-pm3z-qfh3

vulnerability	VCID-5g4y-1qmy-27bd

vulnerability	VCID-6gss-ppm5-3yc9

vulnerability	VCID-7bu3-ckpj-gbf8

vulnerability	VCID-84mm-45p6-xkau

vulnerability	VCID-896g-hqec-ryb9

vulnerability	VCID-8jaq-53td-wbeg

vulnerability	VCID-8teq-9xr9-q3fg

vulnerability	VCID-9uzd-mmyv-mfh4

vulnerability	VCID-a6d1-p4q6-fyav

vulnerability	VCID-a715-2qks-wyhn

vulnerability	VCID-bgmv-mf3x-bkew

vulnerability	VCID-br5x-v7md-47hp

vulnerability	VCID-c1n5-4ars-u7ff

vulnerability	VCID-czkz-mcv8-mqfc

vulnerability	VCID-e2jd-yd4j-kqgt

vulnerability	VCID-eker-m822-cuax

vulnerability	VCID-fw2d-s2rt-syfz

vulnerability	VCID-g56k-prrj-aqb1

vulnerability	VCID-jc9f-vgy8-ruan

vulnerability	VCID-jumh-hkhx-7qc9

vulnerability	VCID-k6s1-gnmc-e3ed

vulnerability	VCID-mm3u-a8ar-b3hp

vulnerability	VCID-qm34-ec8s-tfd7

vulnerability	VCID-qzba-9xmg-3qer

vulnerability	VCID-sbr6-pybe-dubq

vulnerability	VCID-spwd-dz6f-5fh9

vulnerability	VCID-t8ec-st1v-s3e5

vulnerability	VCID-ttm3-5a6e-wfa1

vulnerability	VCID-ukxp-wqpr-t3by

vulnerability	VCID-ura5-t7s9-8fck

vulnerability	VCID-w2dv-u8h6-sbgs

vulnerability	VCID-w4pr-k5nj-ckgy

vulnerability	VCID-x4ev-6zjm-sbe4

vulnerability	VCID-x516-xwze-6ba3

vulnerability	VCID-xtqq-9751-r3dq

vulnerability	VCID-yemh-qd63-wuca

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@1.1.3

url pkg:pypi/django@1.2

purl pkg:pypi/django@1.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1pvd-3217-6ygv

vulnerability	VCID-2dhb-9yue-33h7

vulnerability	VCID-2m9f-3cgw-ekdr

vulnerability	VCID-325d-7dfk-sqd2

vulnerability	VCID-42cm-j2av-87ea

vulnerability	VCID-47er-pm3z-qfh3

vulnerability	VCID-5g4y-1qmy-27bd

vulnerability	VCID-6gss-ppm5-3yc9

vulnerability	VCID-7bu3-ckpj-gbf8

vulnerability	VCID-84mm-45p6-xkau

vulnerability	VCID-896g-hqec-ryb9

vulnerability	VCID-8jaq-53td-wbeg

vulnerability	VCID-8teq-9xr9-q3fg

vulnerability	VCID-9uzd-mmyv-mfh4

vulnerability	VCID-a6d1-p4q6-fyav

vulnerability	VCID-a715-2qks-wyhn

vulnerability	VCID-bgmv-mf3x-bkew

vulnerability	VCID-br5x-v7md-47hp

vulnerability	VCID-c1n5-4ars-u7ff

vulnerability	VCID-czkz-mcv8-mqfc

vulnerability	VCID-e2jd-yd4j-kqgt

vulnerability	VCID-eker-m822-cuax

vulnerability	VCID-fw2d-s2rt-syfz

vulnerability	VCID-g56k-prrj-aqb1

vulnerability	VCID-jc9f-vgy8-ruan

vulnerability	VCID-jumh-hkhx-7qc9

vulnerability	VCID-k6s1-gnmc-e3ed

vulnerability	VCID-mm3u-a8ar-b3hp

vulnerability	VCID-p1dq-27t5-e7b3

vulnerability	VCID-pv1d-wrex-hbgy

vulnerability	VCID-qm34-ec8s-tfd7

vulnerability	VCID-qzba-9xmg-3qer

vulnerability	VCID-sbr6-pybe-dubq

vulnerability	VCID-spwd-dz6f-5fh9

vulnerability	VCID-t8ec-st1v-s3e5

vulnerability	VCID-ttm3-5a6e-wfa1

vulnerability	VCID-ukxp-wqpr-t3by

vulnerability	VCID-ura5-t7s9-8fck

vulnerability	VCID-uwnu-rz61-d3c8

vulnerability	VCID-w2dv-u8h6-sbgs

vulnerability	VCID-w4pr-k5nj-ckgy

vulnerability	VCID-x4ev-6zjm-sbe4

vulnerability	VCID-x516-xwze-6ba3

vulnerability	VCID-xtqq-9751-r3dq

vulnerability	VCID-yemh-qd63-wuca

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@1.2

url pkg:pypi/django@1.2.1

purl pkg:pypi/django@1.2.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1pvd-3217-6ygv

vulnerability	VCID-2dhb-9yue-33h7

vulnerability	VCID-2m9f-3cgw-ekdr

vulnerability	VCID-325d-7dfk-sqd2

vulnerability	VCID-42cm-j2av-87ea

vulnerability	VCID-47er-pm3z-qfh3

vulnerability	VCID-5g4y-1qmy-27bd

vulnerability	VCID-6gss-ppm5-3yc9

vulnerability	VCID-7bu3-ckpj-gbf8

vulnerability	VCID-84mm-45p6-xkau

vulnerability	VCID-896g-hqec-ryb9

vulnerability	VCID-8jaq-53td-wbeg

vulnerability	VCID-8teq-9xr9-q3fg

vulnerability	VCID-9uzd-mmyv-mfh4

vulnerability	VCID-a6d1-p4q6-fyav

vulnerability	VCID-a715-2qks-wyhn

vulnerability	VCID-bgmv-mf3x-bkew

vulnerability	VCID-br5x-v7md-47hp

vulnerability	VCID-c1n5-4ars-u7ff

vulnerability	VCID-czkz-mcv8-mqfc

vulnerability	VCID-e2jd-yd4j-kqgt

vulnerability	VCID-eker-m822-cuax

vulnerability	VCID-fw2d-s2rt-syfz

vulnerability	VCID-g56k-prrj-aqb1

vulnerability	VCID-jc9f-vgy8-ruan

vulnerability	VCID-jumh-hkhx-7qc9

vulnerability	VCID-k6s1-gnmc-e3ed

vulnerability	VCID-mm3u-a8ar-b3hp

vulnerability	VCID-p1dq-27t5-e7b3

vulnerability	VCID-pv1d-wrex-hbgy

vulnerability	VCID-qm34-ec8s-tfd7

vulnerability	VCID-qzba-9xmg-3qer

vulnerability	VCID-sbr6-pybe-dubq

vulnerability	VCID-spwd-dz6f-5fh9

vulnerability	VCID-t8ec-st1v-s3e5

vulnerability	VCID-ttm3-5a6e-wfa1

vulnerability	VCID-ukxp-wqpr-t3by

vulnerability	VCID-ura5-t7s9-8fck

vulnerability	VCID-uwnu-rz61-d3c8

vulnerability	VCID-w2dv-u8h6-sbgs

vulnerability	VCID-w4pr-k5nj-ckgy

vulnerability	VCID-x4ev-6zjm-sbe4

vulnerability	VCID-x516-xwze-6ba3

vulnerability	VCID-xtqq-9751-r3dq

vulnerability	VCID-yemh-qd63-wuca

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@1.2.1

url pkg:pypi/django@1.2.2

purl pkg:pypi/django@1.2.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1pvd-3217-6ygv

vulnerability	VCID-2dhb-9yue-33h7

vulnerability	VCID-2m9f-3cgw-ekdr

vulnerability	VCID-325d-7dfk-sqd2

vulnerability	VCID-42cm-j2av-87ea

vulnerability	VCID-47er-pm3z-qfh3

vulnerability	VCID-5g4y-1qmy-27bd

vulnerability	VCID-6gss-ppm5-3yc9

vulnerability	VCID-7bu3-ckpj-gbf8

vulnerability	VCID-84mm-45p6-xkau

vulnerability	VCID-896g-hqec-ryb9

vulnerability	VCID-8jaq-53td-wbeg

vulnerability	VCID-8teq-9xr9-q3fg

vulnerability	VCID-9uzd-mmyv-mfh4

vulnerability	VCID-a6d1-p4q6-fyav

vulnerability	VCID-a715-2qks-wyhn

vulnerability	VCID-bgmv-mf3x-bkew

vulnerability	VCID-br5x-v7md-47hp

vulnerability	VCID-c1n5-4ars-u7ff

vulnerability	VCID-czkz-mcv8-mqfc

vulnerability	VCID-e2jd-yd4j-kqgt

vulnerability	VCID-eker-m822-cuax

vulnerability	VCID-fw2d-s2rt-syfz

vulnerability	VCID-g56k-prrj-aqb1

vulnerability	VCID-jc9f-vgy8-ruan

vulnerability	VCID-jumh-hkhx-7qc9

vulnerability	VCID-k6s1-gnmc-e3ed

vulnerability	VCID-mm3u-a8ar-b3hp

vulnerability	VCID-p1dq-27t5-e7b3

vulnerability	VCID-pv1d-wrex-hbgy

vulnerability	VCID-qm34-ec8s-tfd7

vulnerability	VCID-qzba-9xmg-3qer

vulnerability	VCID-sbr6-pybe-dubq

vulnerability	VCID-spwd-dz6f-5fh9

vulnerability	VCID-t8ec-st1v-s3e5

vulnerability	VCID-ttm3-5a6e-wfa1

vulnerability	VCID-ukxp-wqpr-t3by

vulnerability	VCID-ura5-t7s9-8fck

vulnerability	VCID-w2dv-u8h6-sbgs

vulnerability	VCID-w4pr-k5nj-ckgy

vulnerability	VCID-x4ev-6zjm-sbe4

vulnerability	VCID-x516-xwze-6ba3

vulnerability	VCID-xtqq-9751-r3dq

vulnerability	VCID-yemh-qd63-wuca

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@1.2.2

url pkg:pypi/django@1.2.3

purl pkg:pypi/django@1.2.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1pvd-3217-6ygv

vulnerability	VCID-2dhb-9yue-33h7

vulnerability	VCID-2m9f-3cgw-ekdr

vulnerability	VCID-325d-7dfk-sqd2

vulnerability	VCID-42cm-j2av-87ea

vulnerability	VCID-47er-pm3z-qfh3

vulnerability	VCID-5g4y-1qmy-27bd

vulnerability	VCID-6gss-ppm5-3yc9

vulnerability	VCID-7bu3-ckpj-gbf8

vulnerability	VCID-84mm-45p6-xkau

vulnerability	VCID-896g-hqec-ryb9

vulnerability	VCID-8jaq-53td-wbeg

vulnerability	VCID-8teq-9xr9-q3fg

vulnerability	VCID-9uzd-mmyv-mfh4

vulnerability	VCID-a6d1-p4q6-fyav

vulnerability	VCID-a715-2qks-wyhn

vulnerability	VCID-bgmv-mf3x-bkew

vulnerability	VCID-br5x-v7md-47hp

vulnerability	VCID-c1n5-4ars-u7ff

vulnerability	VCID-czkz-mcv8-mqfc

vulnerability	VCID-e2jd-yd4j-kqgt

vulnerability	VCID-eker-m822-cuax

vulnerability	VCID-fw2d-s2rt-syfz

vulnerability	VCID-g56k-prrj-aqb1

vulnerability	VCID-jc9f-vgy8-ruan

vulnerability	VCID-jumh-hkhx-7qc9

vulnerability	VCID-k6s1-gnmc-e3ed

vulnerability	VCID-mm3u-a8ar-b3hp

vulnerability	VCID-p1dq-27t5-e7b3

vulnerability	VCID-pv1d-wrex-hbgy

vulnerability	VCID-qm34-ec8s-tfd7

vulnerability	VCID-qzba-9xmg-3qer

vulnerability	VCID-sbr6-pybe-dubq

vulnerability	VCID-spwd-dz6f-5fh9

vulnerability	VCID-t8ec-st1v-s3e5

vulnerability	VCID-ttm3-5a6e-wfa1

vulnerability	VCID-ukxp-wqpr-t3by

vulnerability	VCID-ura5-t7s9-8fck

vulnerability	VCID-w2dv-u8h6-sbgs

vulnerability	VCID-w4pr-k5nj-ckgy

vulnerability	VCID-x4ev-6zjm-sbe4

vulnerability	VCID-x516-xwze-6ba3

vulnerability	VCID-xtqq-9751-r3dq

vulnerability	VCID-yemh-qd63-wuca

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@1.2.3

url pkg:pypi/django@1.2.4

purl pkg:pypi/django@1.2.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1pvd-3217-6ygv

vulnerability	VCID-2dhb-9yue-33h7

vulnerability	VCID-2m9f-3cgw-ekdr

vulnerability	VCID-325d-7dfk-sqd2

vulnerability	VCID-42cm-j2av-87ea

vulnerability	VCID-47er-pm3z-qfh3

vulnerability	VCID-5g4y-1qmy-27bd

vulnerability	VCID-6gss-ppm5-3yc9

vulnerability	VCID-7bu3-ckpj-gbf8

vulnerability	VCID-84mm-45p6-xkau

vulnerability	VCID-896g-hqec-ryb9

vulnerability	VCID-8jaq-53td-wbeg

vulnerability	VCID-8teq-9xr9-q3fg

vulnerability	VCID-9uzd-mmyv-mfh4

vulnerability	VCID-a6d1-p4q6-fyav

vulnerability	VCID-a715-2qks-wyhn

vulnerability	VCID-bgmv-mf3x-bkew

vulnerability	VCID-br5x-v7md-47hp

vulnerability	VCID-c1n5-4ars-u7ff

vulnerability	VCID-czkz-mcv8-mqfc

vulnerability	VCID-e2jd-yd4j-kqgt

vulnerability	VCID-eker-m822-cuax

vulnerability	VCID-fw2d-s2rt-syfz

vulnerability	VCID-g56k-prrj-aqb1

vulnerability	VCID-jc9f-vgy8-ruan

vulnerability	VCID-jumh-hkhx-7qc9

vulnerability	VCID-k6s1-gnmc-e3ed

vulnerability	VCID-mm3u-a8ar-b3hp

vulnerability	VCID-qm34-ec8s-tfd7

vulnerability	VCID-qzba-9xmg-3qer

vulnerability	VCID-sbr6-pybe-dubq

vulnerability	VCID-spwd-dz6f-5fh9

vulnerability	VCID-t8ec-st1v-s3e5

vulnerability	VCID-ttm3-5a6e-wfa1

vulnerability	VCID-ukxp-wqpr-t3by

vulnerability	VCID-ura5-t7s9-8fck

vulnerability	VCID-w2dv-u8h6-sbgs

vulnerability	VCID-w4pr-k5nj-ckgy

vulnerability	VCID-x4ev-6zjm-sbe4

vulnerability	VCID-x516-xwze-6ba3

vulnerability	VCID-xtqq-9751-r3dq

vulnerability	VCID-yemh-qd63-wuca

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@1.2.4

References

reference_url

http://openwall.com/lists/oss-security/2011/02/09/6

reference_id

reference_type

scores

value	9.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

http://openwall.com/lists/oss-security/2011/02/09/6

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2011-0698

reference_id

reference_type

scores

value	0.00719
scoring_system	epss
scoring_elements	0.72458
published_at	2026-04-13T12:55:00Z

value	0.00719
scoring_system	epss
scoring_elements	0.72467
published_at	2026-04-12T12:55:00Z

value	0.00719
scoring_system	epss
scoring_elements	0.72485
published_at	2026-04-11T12:55:00Z

value	0.00719
scoring_system	epss
scoring_elements	0.7245
published_at	2026-04-08T12:55:00Z

value	0.00719
scoring_system	epss
scoring_elements	0.72411
published_at	2026-04-07T12:55:00Z

value	0.00719
scoring_system	epss
scoring_elements	0.72416
published_at	2026-04-02T12:55:00Z

value	0.00719
scoring_system	epss
scoring_elements	0.72462
published_at	2026-04-09T12:55:00Z

value	0.00719
scoring_system	epss
scoring_elements	0.72434
published_at	2026-04-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2011-0698

reference_url	http://secunia.com/advisories/43230
reference_id
reference_type
scores
url	http://secunia.com/advisories/43230

reference_url

https://github.com/advisories/GHSA-7g9h-c88w-r7h2

reference_id

reference_type

scores

value	9.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

value	CRITICAL
scoring_system	cvssv3.1_qr
scoring_elements

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/advisories/GHSA-7g9h-c88w-r7h2

reference_url

https://github.com/django/django

reference_id

reference_type

scores

value	9.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django

reference_url

https://github.com/django/django/commit/194566480b15cf4e294d3f03ff587019b74044b2

reference_id

reference_type

scores

value	9.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/194566480b15cf4e294d3f03ff587019b74044b2

reference_url

https://github.com/django/django/commit/570a32a047ea56265646217264b0d3dab1a14dbd

reference_id

reference_type

scores

value	9.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/570a32a047ea56265646217264b0d3dab1a14dbd

reference_url

https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2011-12.yaml

reference_id

reference_type

scores

value	9.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2011-12.yaml

reference_url

https://web.archive.org/web/20110521033259/http://secunia.com/advisories/43230

reference_id

reference_type

scores

value	9.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20110521033259/http://secunia.com/advisories/43230

reference_url

https://web.archive.org/web/20130616104703/http://www.securityfocus.com/bid/46296

reference_id

reference_type

scores

value	9.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20130616104703/http://www.securityfocus.com/bid/46296

reference_url

http://www.djangoproject.com/weblog/2011/feb/08/security

reference_id

reference_type

scores

value	9.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

http://www.djangoproject.com/weblog/2011/feb/08/security

reference_url	http://www.djangoproject.com/weblog/2011/feb/08/security/
reference_id
reference_type
scores
url	http://www.djangoproject.com/weblog/2011/feb/08/security/

reference_url

http://www.mandriva.com/security/advisories?name=MDVSA-2011:031

reference_id

reference_type

scores

value	9.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

http://www.mandriva.com/security/advisories?name=MDVSA-2011:031

reference_url	http://www.securityfocus.com/bid/46296
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/46296

reference_url	http://www.vupen.com/english/advisories/2011/0372
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2011/0372

reference_url	http://www.vupen.com/english/advisories/2011/0439
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2011/0439

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:djangoproject:django:1.1:::::::*
reference_id	cpe:2.3:a:djangoproject:django:1.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:djangoproject:django:1.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:djangoproject:django:1.1.0:::::::*
reference_id	cpe:2.3:a:djangoproject:django:1.1.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:djangoproject:django:1.1.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:djangoproject:django:1.1.2:::::::*
reference_id	cpe:2.3:a:djangoproject:django:1.1.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:djangoproject:django:1.1.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:djangoproject:django:1.1.3:::::::*
reference_id	cpe:2.3:a:djangoproject:django:1.1.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:djangoproject:django:1.1.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:djangoproject:django:1.2:::::::*
reference_id	cpe:2.3:a:djangoproject:django:1.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:djangoproject:django:1.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:djangoproject:django:1.2.1:::::::*
reference_id	cpe:2.3:a:djangoproject:django:1.2.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:djangoproject:django:1.2.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:djangoproject:django:1.2.2:::::::*
reference_id	cpe:2.3:a:djangoproject:django:1.2.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:djangoproject:django:1.2.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:djangoproject:django:1.2.3:::::::*
reference_id	cpe:2.3:a:djangoproject:django:1.2.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:djangoproject:django:1.2.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:djangoproject:django:1.2.4:::::::*
reference_id	cpe:2.3:a:djangoproject:django:1.2.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:djangoproject:django:1.2.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows::::::::
reference_id	cpe:2.3:o:microsoft:windows::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows::::::::

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2011-0698

reference_id

CVE-2011-0698

reference_type

scores

value	7.5
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:P/I:P/A:P

value	9.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2011-0698

Weaknesses

cwe_id	22
name	Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
description	The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

cwe_id	937
name	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.

cwe_id	1035
name	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.

Exploits

Severity_range_score 7.5 - 10.0

Exploitability 0.5

Weighted_severity 9.0

Risk_score 4.5

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fw2d-s2rt-syfz

Vulnerability Instance