Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-ebrh-16ww-3bhd
Summary
codeigniter/framework SQL injection in ODBC database driver
CodeIgniter 3.1.0 addressed a critical security issue within the ODBC database driver. This update includes crucial fixes to mitigate a SQL injection vulnerability, preventing potential exploitation by attackers. It is noteworthy that these fixes render the query builder and escape() functions incompatible with the ODBC driver. However, the update introduces actual query binding as a more secure alternative.
Aliases
0
alias GHSA-27qr-636m-wxg2
Fixed_packages
0
url pkg:composer/codeigniter/framework@3.1.0
purl pkg:composer/codeigniter/framework@3.1.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2hsz-vuhe-dbak
1
vulnerability VCID-2qzt-eskd-7qf4
2
vulnerability VCID-3mhu-ddhm-5ke7
3
vulnerability VCID-52pj-ryan-2yfj
4
vulnerability VCID-74bw-u8nc-3qbz
5
vulnerability VCID-7wzt-96yg-jfah
6
vulnerability VCID-9fmk-e4fz-2ybu
7
vulnerability VCID-e2md-avz8-bya9
8
vulnerability VCID-e4vu-fhp3-j3em
9
vulnerability VCID-en5a-535z-ayca
10
vulnerability VCID-fpcv-9quu-8fe2
11
vulnerability VCID-gnfx-qs26-ukdx
12
vulnerability VCID-p756-2jkm-9fc5
13
vulnerability VCID-qdfk-n9gt-6yfp
14
vulnerability VCID-s6nh-cvkt-vygr
15
vulnerability VCID-s814-tdxe-1baf
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/codeigniter/framework@3.1.0
Affected_packages
0
url pkg:composer/codeigniter/framework@3.0rc
purl pkg:composer/codeigniter/framework@3.0rc
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kby-g5ka-cff3
1
vulnerability VCID-8wbz-we3g-x3ep
2
vulnerability VCID-9gnz-bcac-5ygs
3
vulnerability VCID-a6px-3qen-euct
4
vulnerability VCID-ebrh-16ww-3bhd
5
vulnerability VCID-fpcv-9quu-8fe2
6
vulnerability VCID-gubk-qp7e-h7f4
7
vulnerability VCID-jn5c-h7cd-skfq
8
vulnerability VCID-qdfk-n9gt-6yfp
9
vulnerability VCID-s6nh-cvkt-vygr
10
vulnerability VCID-s814-tdxe-1baf
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/codeigniter/framework@3.0rc
1
url pkg:composer/codeigniter/framework@3.0rc2
purl pkg:composer/codeigniter/framework@3.0rc2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kby-g5ka-cff3
1
vulnerability VCID-8wbz-we3g-x3ep
2
vulnerability VCID-9gnz-bcac-5ygs
3
vulnerability VCID-a6px-3qen-euct
4
vulnerability VCID-ebrh-16ww-3bhd
5
vulnerability VCID-fpcv-9quu-8fe2
6
vulnerability VCID-gubk-qp7e-h7f4
7
vulnerability VCID-jn5c-h7cd-skfq
8
vulnerability VCID-qdfk-n9gt-6yfp
9
vulnerability VCID-s6nh-cvkt-vygr
10
vulnerability VCID-s814-tdxe-1baf
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/codeigniter/framework@3.0rc2
2
url pkg:composer/codeigniter/framework@3.0rc3
purl pkg:composer/codeigniter/framework@3.0rc3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3kby-g5ka-cff3
1
vulnerability VCID-8wbz-we3g-x3ep
2
vulnerability VCID-9gnz-bcac-5ygs
3
vulnerability VCID-a6px-3qen-euct
4
vulnerability VCID-ebrh-16ww-3bhd
5
vulnerability VCID-fpcv-9quu-8fe2
6
vulnerability VCID-gubk-qp7e-h7f4
7
vulnerability VCID-jn5c-h7cd-skfq
8
vulnerability VCID-qdfk-n9gt-6yfp
9
vulnerability VCID-s6nh-cvkt-vygr
10
vulnerability VCID-s814-tdxe-1baf
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/codeigniter/framework@3.0rc3
3
url pkg:composer/codeigniter/framework@3.0.0
purl pkg:composer/codeigniter/framework@3.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2hsz-vuhe-dbak
1
vulnerability VCID-2qzt-eskd-7qf4
2
vulnerability VCID-3kby-g5ka-cff3
3
vulnerability VCID-3mhu-ddhm-5ke7
4
vulnerability VCID-52pj-ryan-2yfj
5
vulnerability VCID-74bw-u8nc-3qbz
6
vulnerability VCID-7wzt-96yg-jfah
7
vulnerability VCID-8wbz-we3g-x3ep
8
vulnerability VCID-9fmk-e4fz-2ybu
9
vulnerability VCID-a6px-3qen-euct
10
vulnerability VCID-e2md-avz8-bya9
11
vulnerability VCID-e4vu-fhp3-j3em
12
vulnerability VCID-ebrh-16ww-3bhd
13
vulnerability VCID-en5a-535z-ayca
14
vulnerability VCID-fpcv-9quu-8fe2
15
vulnerability VCID-gnfx-qs26-ukdx
16
vulnerability VCID-gubk-qp7e-h7f4
17
vulnerability VCID-jn5c-h7cd-skfq
18
vulnerability VCID-p756-2jkm-9fc5
19
vulnerability VCID-qdfk-n9gt-6yfp
20
vulnerability VCID-s6nh-cvkt-vygr
21
vulnerability VCID-s814-tdxe-1baf
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/codeigniter/framework@3.0.0
4
url pkg:composer/codeigniter/framework@3.0.1rc
purl pkg:composer/codeigniter/framework@3.0.1rc
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2hsz-vuhe-dbak
1
vulnerability VCID-2qzt-eskd-7qf4
2
vulnerability VCID-3kby-g5ka-cff3
3
vulnerability VCID-3mhu-ddhm-5ke7
4
vulnerability VCID-52pj-ryan-2yfj
5
vulnerability VCID-74bw-u8nc-3qbz
6
vulnerability VCID-7wzt-96yg-jfah
7
vulnerability VCID-8wbz-we3g-x3ep
8
vulnerability VCID-9fmk-e4fz-2ybu
9
vulnerability VCID-a6px-3qen-euct
10
vulnerability VCID-e2md-avz8-bya9
11
vulnerability VCID-e4vu-fhp3-j3em
12
vulnerability VCID-ebrh-16ww-3bhd
13
vulnerability VCID-en5a-535z-ayca
14
vulnerability VCID-fpcv-9quu-8fe2
15
vulnerability VCID-gnfx-qs26-ukdx
16
vulnerability VCID-gubk-qp7e-h7f4
17
vulnerability VCID-jn5c-h7cd-skfq
18
vulnerability VCID-p756-2jkm-9fc5
19
vulnerability VCID-qdfk-n9gt-6yfp
20
vulnerability VCID-s6nh-cvkt-vygr
21
vulnerability VCID-s814-tdxe-1baf
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/codeigniter/framework@3.0.1rc
5
url pkg:composer/codeigniter/framework@3.0.1rc2
purl pkg:composer/codeigniter/framework@3.0.1rc2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2hsz-vuhe-dbak
1
vulnerability VCID-2qzt-eskd-7qf4
2
vulnerability VCID-3mhu-ddhm-5ke7
3
vulnerability VCID-52pj-ryan-2yfj
4
vulnerability VCID-74bw-u8nc-3qbz
5
vulnerability VCID-7wzt-96yg-jfah
6
vulnerability VCID-8wbz-we3g-x3ep
7
vulnerability VCID-9fmk-e4fz-2ybu
8
vulnerability VCID-a6px-3qen-euct
9
vulnerability VCID-e2md-avz8-bya9
10
vulnerability VCID-e4vu-fhp3-j3em
11
vulnerability VCID-ebrh-16ww-3bhd
12
vulnerability VCID-en5a-535z-ayca
13
vulnerability VCID-fpcv-9quu-8fe2
14
vulnerability VCID-gnfx-qs26-ukdx
15
vulnerability VCID-gubk-qp7e-h7f4
16
vulnerability VCID-jn5c-h7cd-skfq
17
vulnerability VCID-p756-2jkm-9fc5
18
vulnerability VCID-qdfk-n9gt-6yfp
19
vulnerability VCID-s6nh-cvkt-vygr
20
vulnerability VCID-s814-tdxe-1baf
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/codeigniter/framework@3.0.1rc2
6
url pkg:composer/codeigniter/framework@3.0.1
purl pkg:composer/codeigniter/framework@3.0.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2hsz-vuhe-dbak
1
vulnerability VCID-2qzt-eskd-7qf4
2
vulnerability VCID-3mhu-ddhm-5ke7
3
vulnerability VCID-52pj-ryan-2yfj
4
vulnerability VCID-74bw-u8nc-3qbz
5
vulnerability VCID-7wzt-96yg-jfah
6
vulnerability VCID-8wbz-we3g-x3ep
7
vulnerability VCID-9fmk-e4fz-2ybu
8
vulnerability VCID-a6px-3qen-euct
9
vulnerability VCID-e2md-avz8-bya9
10
vulnerability VCID-e4vu-fhp3-j3em
11
vulnerability VCID-ebrh-16ww-3bhd
12
vulnerability VCID-en5a-535z-ayca
13
vulnerability VCID-fpcv-9quu-8fe2
14
vulnerability VCID-gnfx-qs26-ukdx
15
vulnerability VCID-gubk-qp7e-h7f4
16
vulnerability VCID-jn5c-h7cd-skfq
17
vulnerability VCID-p756-2jkm-9fc5
18
vulnerability VCID-qdfk-n9gt-6yfp
19
vulnerability VCID-s6nh-cvkt-vygr
20
vulnerability VCID-s814-tdxe-1baf
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/codeigniter/framework@3.0.1
7
url pkg:composer/codeigniter/framework@3.0.2
purl pkg:composer/codeigniter/framework@3.0.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2hsz-vuhe-dbak
1
vulnerability VCID-2qzt-eskd-7qf4
2
vulnerability VCID-3mhu-ddhm-5ke7
3
vulnerability VCID-52pj-ryan-2yfj
4
vulnerability VCID-74bw-u8nc-3qbz
5
vulnerability VCID-7wzt-96yg-jfah
6
vulnerability VCID-8wbz-we3g-x3ep
7
vulnerability VCID-9fmk-e4fz-2ybu
8
vulnerability VCID-a6px-3qen-euct
9
vulnerability VCID-e2md-avz8-bya9
10
vulnerability VCID-e4vu-fhp3-j3em
11
vulnerability VCID-ebrh-16ww-3bhd
12
vulnerability VCID-en5a-535z-ayca
13
vulnerability VCID-fpcv-9quu-8fe2
14
vulnerability VCID-gnfx-qs26-ukdx
15
vulnerability VCID-gubk-qp7e-h7f4
16
vulnerability VCID-jn5c-h7cd-skfq
17
vulnerability VCID-p756-2jkm-9fc5
18
vulnerability VCID-qdfk-n9gt-6yfp
19
vulnerability VCID-s6nh-cvkt-vygr
20
vulnerability VCID-s814-tdxe-1baf
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/codeigniter/framework@3.0.2
8
url pkg:composer/codeigniter/framework@3.0.3
purl pkg:composer/codeigniter/framework@3.0.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2hsz-vuhe-dbak
1
vulnerability VCID-2qzt-eskd-7qf4
2
vulnerability VCID-3mhu-ddhm-5ke7
3
vulnerability VCID-52pj-ryan-2yfj
4
vulnerability VCID-74bw-u8nc-3qbz
5
vulnerability VCID-7wzt-96yg-jfah
6
vulnerability VCID-9fmk-e4fz-2ybu
7
vulnerability VCID-a6px-3qen-euct
8
vulnerability VCID-e2md-avz8-bya9
9
vulnerability VCID-e4vu-fhp3-j3em
10
vulnerability VCID-ebrh-16ww-3bhd
11
vulnerability VCID-en5a-535z-ayca
12
vulnerability VCID-fpcv-9quu-8fe2
13
vulnerability VCID-gnfx-qs26-ukdx
14
vulnerability VCID-p756-2jkm-9fc5
15
vulnerability VCID-qdfk-n9gt-6yfp
16
vulnerability VCID-s6nh-cvkt-vygr
17
vulnerability VCID-s814-tdxe-1baf
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/codeigniter/framework@3.0.3
9
url pkg:composer/codeigniter/framework@3.0.4
purl pkg:composer/codeigniter/framework@3.0.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2hsz-vuhe-dbak
1
vulnerability VCID-2qzt-eskd-7qf4
2
vulnerability VCID-3mhu-ddhm-5ke7
3
vulnerability VCID-52pj-ryan-2yfj
4
vulnerability VCID-74bw-u8nc-3qbz
5
vulnerability VCID-7wzt-96yg-jfah
6
vulnerability VCID-9fmk-e4fz-2ybu
7
vulnerability VCID-a6px-3qen-euct
8
vulnerability VCID-e2md-avz8-bya9
9
vulnerability VCID-e4vu-fhp3-j3em
10
vulnerability VCID-ebrh-16ww-3bhd
11
vulnerability VCID-en5a-535z-ayca
12
vulnerability VCID-fpcv-9quu-8fe2
13
vulnerability VCID-gnfx-qs26-ukdx
14
vulnerability VCID-p756-2jkm-9fc5
15
vulnerability VCID-qdfk-n9gt-6yfp
16
vulnerability VCID-s6nh-cvkt-vygr
17
vulnerability VCID-s814-tdxe-1baf
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/codeigniter/framework@3.0.4
10
url pkg:composer/codeigniter/framework@3.0.5
purl pkg:composer/codeigniter/framework@3.0.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2hsz-vuhe-dbak
1
vulnerability VCID-2qzt-eskd-7qf4
2
vulnerability VCID-3mhu-ddhm-5ke7
3
vulnerability VCID-52pj-ryan-2yfj
4
vulnerability VCID-74bw-u8nc-3qbz
5
vulnerability VCID-7wzt-96yg-jfah
6
vulnerability VCID-9fmk-e4fz-2ybu
7
vulnerability VCID-a6px-3qen-euct
8
vulnerability VCID-e2md-avz8-bya9
9
vulnerability VCID-e4vu-fhp3-j3em
10
vulnerability VCID-ebrh-16ww-3bhd
11
vulnerability VCID-en5a-535z-ayca
12
vulnerability VCID-fpcv-9quu-8fe2
13
vulnerability VCID-gnfx-qs26-ukdx
14
vulnerability VCID-p756-2jkm-9fc5
15
vulnerability VCID-qdfk-n9gt-6yfp
16
vulnerability VCID-s6nh-cvkt-vygr
17
vulnerability VCID-s814-tdxe-1baf
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/codeigniter/framework@3.0.5
11
url pkg:composer/codeigniter/framework@3.0.6
purl pkg:composer/codeigniter/framework@3.0.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2hsz-vuhe-dbak
1
vulnerability VCID-2qzt-eskd-7qf4
2
vulnerability VCID-3kby-g5ka-cff3
3
vulnerability VCID-3mhu-ddhm-5ke7
4
vulnerability VCID-52pj-ryan-2yfj
5
vulnerability VCID-74bw-u8nc-3qbz
6
vulnerability VCID-7wzt-96yg-jfah
7
vulnerability VCID-9fmk-e4fz-2ybu
8
vulnerability VCID-a6px-3qen-euct
9
vulnerability VCID-e2md-avz8-bya9
10
vulnerability VCID-e4vu-fhp3-j3em
11
vulnerability VCID-ebrh-16ww-3bhd
12
vulnerability VCID-en5a-535z-ayca
13
vulnerability VCID-fpcv-9quu-8fe2
14
vulnerability VCID-gnfx-qs26-ukdx
15
vulnerability VCID-p756-2jkm-9fc5
16
vulnerability VCID-qdfk-n9gt-6yfp
17
vulnerability VCID-s6nh-cvkt-vygr
18
vulnerability VCID-s814-tdxe-1baf
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/codeigniter/framework@3.0.6
References
0
reference_url https://forum.codeigniter.com/thread-65803.html
reference_id
reference_type
scores
0
value 10.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:L
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://forum.codeigniter.com/thread-65803.html
1
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/codeigniter/framework/2016-07-26-1.yaml
reference_id
reference_type
scores
0
value 10.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:L
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/codeigniter/framework/2016-07-26-1.yaml
2
reference_url https://github.com/simplysites/CodeIgniter
reference_id
reference_type
scores
0
value 10.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:L
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/simplysites/CodeIgniter
3
reference_url https://github.com/simplysites/CodeIgniter/commit/3d10ffa77854044570a1809a884776fd4bbd8b70
reference_id
reference_type
scores
0
value 10.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:L
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/simplysites/CodeIgniter/commit/3d10ffa77854044570a1809a884776fd4bbd8b70
4
reference_url https://github.com/advisories/GHSA-27qr-636m-wxg2
reference_id GHSA-27qr-636m-wxg2
reference_type
scores
0
value CRITICAL
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-27qr-636m-wxg2
Weaknesses
0
cwe_id 937
name OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.
1
cwe_id 1035
name OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.
Exploits
Severity_range_score9.0 - 10.0
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-ebrh-16ww-3bhd