Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-gy47-pvfy-6qcp

Summary

Multiple vulnerabilities have been found in MediaWiki, the worst of
    which leading to remote execution of arbitrary code.

Aliases

alias	CVE-2012-1578

Fixed_packages

url	pkg:deb/debian/mediawiki@0?distro=trixie
purl	pkg:deb/debian/mediawiki@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/mediawiki@0%3Fdistro=trixie

url pkg:deb/debian/mediawiki@1:1.35.13-1%2Bdeb11u2?distro=trixie

purl pkg:deb/debian/mediawiki@1:1.35.13-1%2Bdeb11u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-7831-8u7z-6fep

vulnerability	VCID-cbtm-g4t5-u3am

vulnerability	VCID-d5vz-puw9-t7er

vulnerability	VCID-kw32-af5a-hqg8

vulnerability	VCID-wktm-ya6k-v7dv

vulnerability	VCID-x8t7-agtn-zudu

vulnerability	VCID-zmax-894d-5kfd

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mediawiki@1:1.35.13-1%252Bdeb11u2%3Fdistro=trixie

url pkg:deb/debian/mediawiki@1:1.39.17-1~deb12u1?distro=trixie

purl pkg:deb/debian/mediawiki@1:1.39.17-1~deb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-7831-8u7z-6fep

vulnerability	VCID-cbtm-g4t5-u3am

vulnerability	VCID-d5vz-puw9-t7er

vulnerability	VCID-kw32-af5a-hqg8

vulnerability	VCID-wktm-ya6k-v7dv

vulnerability	VCID-x8t7-agtn-zudu

vulnerability	VCID-zmax-894d-5kfd

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mediawiki@1:1.39.17-1~deb12u1%3Fdistro=trixie

url pkg:deb/debian/mediawiki@1:1.43.6%2Bdfsg-1~deb13u1?distro=trixie

purl pkg:deb/debian/mediawiki@1:1.43.6%2Bdfsg-1~deb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-buwp-69zb-93hs

vulnerability	VCID-cbtm-g4t5-u3am

vulnerability	VCID-d5vz-puw9-t7er

vulnerability	VCID-kw32-af5a-hqg8

vulnerability	VCID-q7k6-59z5-d7a7

vulnerability	VCID-wktm-ya6k-v7dv

vulnerability	VCID-x8t7-agtn-zudu

vulnerability	VCID-xdct-ca96-3uat

vulnerability	VCID-zmax-894d-5kfd

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mediawiki@1:1.43.6%252Bdfsg-1~deb13u1%3Fdistro=trixie

url	pkg:deb/debian/mediawiki@1:1.43.6%2Bdfsg-2?distro=trixie
purl	pkg:deb/debian/mediawiki@1:1.43.6%2Bdfsg-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/mediawiki@1:1.43.6%252Bdfsg-2%3Fdistro=trixie

url pkg:deb/debian/mediawiki@1:1.43.8%2Bdfsg-1?distro=trixie

purl pkg:deb/debian/mediawiki@1:1.43.8%2Bdfsg-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-kw32-af5a-hqg8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mediawiki@1:1.43.8%252Bdfsg-1%3Fdistro=trixie

url	pkg:deb/debian/mediawiki@1:1.43.8%2Bdfsg-2?distro=trixie
purl	pkg:deb/debian/mediawiki@1:1.43.8%2Bdfsg-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/mediawiki@1:1.43.8%252Bdfsg-2%3Fdistro=trixie

url	pkg:ebuild/www-apps/mediawiki@1.18.2
purl	pkg:ebuild/www-apps/mediawiki@1.18.2
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/www-apps/mediawiki@1.18.2

Affected_packages

References

reference_url	http://lists.wikimedia.org/pipermail/mediawiki-announce/2012-March/000109.html
reference_id
reference_type
scores
url	http://lists.wikimedia.org/pipermail/mediawiki-announce/2012-March/000109.html

reference_url	http://lists.wikimedia.org/pipermail/mediawiki-announce/2012-March/000110.html
reference_id
reference_type
scores
url	http://lists.wikimedia.org/pipermail/mediawiki-announce/2012-March/000110.html

reference_url	http://osvdb.org/80361
reference_id
reference_type
scores
url	http://osvdb.org/80361

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2012-1578

reference_id

reference_type

scores

value	0.00302
scoring_system	epss
scoring_elements	0.53589
published_at	2026-04-21T12:55:00Z

value	0.00302
scoring_system	epss
scoring_elements	0.53487
published_at	2026-04-01T12:55:00Z

value	0.00302
scoring_system	epss
scoring_elements	0.53511
published_at	2026-04-02T12:55:00Z

value	0.00302
scoring_system	epss
scoring_elements	0.53535
published_at	2026-04-04T12:55:00Z

value	0.00302
scoring_system	epss
scoring_elements	0.53504
published_at	2026-04-07T12:55:00Z

value	0.00302
scoring_system	epss
scoring_elements	0.53555
published_at	2026-04-08T12:55:00Z

value	0.00302
scoring_system	epss
scoring_elements	0.53551
published_at	2026-04-09T12:55:00Z

value	0.00302
scoring_system	epss
scoring_elements	0.536
published_at	2026-04-11T12:55:00Z

value	0.00302
scoring_system	epss
scoring_elements	0.53583
published_at	2026-04-12T12:55:00Z

value	0.00302
scoring_system	epss
scoring_elements	0.53565
published_at	2026-04-13T12:55:00Z

value	0.00302
scoring_system	epss
scoring_elements	0.53601
published_at	2026-04-16T12:55:00Z

value	0.00302
scoring_system	epss
scoring_elements	0.53607
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2012-1578

reference_url	https://bugzilla.wikimedia.org/show_bug.cgi?id=34212
reference_id
reference_type
scores
url	https://bugzilla.wikimedia.org/show_bug.cgi?id=34212

reference_url	http://secunia.com/advisories/48504
reference_id
reference_type
scores
url	http://secunia.com/advisories/48504

reference_url	https://exchange.xforce.ibmcloud.com/vulnerabilities/78911
reference_id
reference_type
scores
url	https://exchange.xforce.ibmcloud.com/vulnerabilities/78911

reference_url	http://www.openwall.com/lists/oss-security/2012/03/22/9
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2012/03/22/9

reference_url	http://www.openwall.com/lists/oss-security/2012/03/24/1
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2012/03/24/1

reference_url	http://www.securityfocus.com/bid/52689
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/52689

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mediawiki:mediawiki:1.17:::::::*
reference_id	cpe:2.3:a:mediawiki:mediawiki:1.17:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mediawiki:mediawiki:1.17:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mediawiki:mediawiki:1.17.0:::::::*
reference_id	cpe:2.3:a:mediawiki:mediawiki:1.17.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mediawiki:mediawiki:1.17.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mediawiki:mediawiki:1.17.0:rc1::::::
reference_id	cpe:2.3:a:mediawiki:mediawiki:1.17.0:rc1::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mediawiki:mediawiki:1.17.0:rc1::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mediawiki:mediawiki:1.17.1:::::::*
reference_id	cpe:2.3:a:mediawiki:mediawiki:1.17.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mediawiki:mediawiki:1.17.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mediawiki:mediawiki:1.17.2:::::::*
reference_id	cpe:2.3:a:mediawiki:mediawiki:1.17.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mediawiki:mediawiki:1.17.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mediawiki:mediawiki:1.17:beta_1::::::
reference_id	cpe:2.3:a:mediawiki:mediawiki:1.17:beta_1::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mediawiki:mediawiki:1.17:beta_1::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mediawiki:mediawiki:1.18:::::::*
reference_id	cpe:2.3:a:mediawiki:mediawiki:1.18:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mediawiki:mediawiki:1.18:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mediawiki:mediawiki:1.18.0:::::::*
reference_id	cpe:2.3:a:mediawiki:mediawiki:1.18.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mediawiki:mediawiki:1.18.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mediawiki:mediawiki:1.18.0:rc1::::::
reference_id	cpe:2.3:a:mediawiki:mediawiki:1.18.0:rc1::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mediawiki:mediawiki:1.18.0:rc1::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mediawiki:mediawiki:1.18.1:::::::*
reference_id	cpe:2.3:a:mediawiki:mediawiki:1.18.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mediawiki:mediawiki:1.18.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mediawiki:mediawiki:1.18:beta_1::::::
reference_id	cpe:2.3:a:mediawiki:mediawiki:1.18:beta_1::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mediawiki:mediawiki:1.18:beta_1::::::

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2012-1578

reference_id

CVE-2012-1578

reference_type

scores

value	6.8
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:P/I:P/A:P

url

https://nvd.nist.gov/vuln/detail/CVE-2012-1578

reference_url	https://security.gentoo.org/glsa/201206-09
reference_id	GLSA-201206-09
reference_type
scores
url	https://security.gentoo.org/glsa/201206-09

Weaknesses

cwe_id	352
name	Cross-Site Request Forgery (CSRF)
description	The web application does not, or can not, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request.

Exploits

Severity_range_score 6.8 - 6.8

Exploitability null

Weighted_severity null

Risk_score null

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-gy47-pvfy-6qcp

Vulnerability Instance