Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-j7jf-zzvz-skgm

Summary The XML libraries for Python 3.4, 3.3, 3.2, 3.1, 2.7, and 2.6, as used in OpenStack Keystone Essex, Folsom, and Grizzly; Compute (Nova) Essex and Folsom; Cinder Folsom; Django; and possibly other products allow remote attackers to cause a denial of service (resource consumption and crash) via an XML Entity Expansion (XEE) attack.

Aliases

alias	CVE-2013-1664

alias	GHSA-qrh7-x6fp-c2mp

Fixed_packages

url	pkg:deb/debian/cinder@2012.2.3-1?distro=trixie
purl	pkg:deb/debian/cinder@2012.2.3-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cinder@2012.2.3-1%3Fdistro=trixie

url	pkg:deb/debian/cinder@2:17.0.1-1%2Bdeb11u1?distro=trixie
purl	pkg:deb/debian/cinder@2:17.0.1-1%2Bdeb11u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cinder@2:17.0.1-1%252Bdeb11u1%3Fdistro=trixie

url	pkg:deb/debian/cinder@2:21.3.1-1~deb12u1?distro=trixie
purl	pkg:deb/debian/cinder@2:21.3.1-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cinder@2:21.3.1-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/cinder@2:26.0.0-2?distro=trixie
purl	pkg:deb/debian/cinder@2:26.0.0-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cinder@2:26.0.0-2%3Fdistro=trixie

url	pkg:deb/debian/cinder@2:28.0.0-1?distro=trixie
purl	pkg:deb/debian/cinder@2:28.0.0-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/cinder@2:28.0.0-1%3Fdistro=trixie

url	pkg:deb/debian/keystone@2012.1.1-13?distro=trixie
purl	pkg:deb/debian/keystone@2012.1.1-13?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/keystone@2012.1.1-13%3Fdistro=trixie

url pkg:deb/debian/keystone@2:18.0.0-3%2Bdeb11u1?distro=trixie

purl pkg:deb/debian/keystone@2:18.0.0-3%2Bdeb11u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g2mr-xac1-jue9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/keystone@2:18.0.0-3%252Bdeb11u1%3Fdistro=trixie

url pkg:deb/debian/keystone@2:22.0.2-0%2Bdeb12u1?distro=trixie

purl pkg:deb/debian/keystone@2:22.0.2-0%2Bdeb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ucj-ubyb-27fx

vulnerability	VCID-7b5p-zqzm-3few

vulnerability	VCID-cage-qr17-fude

vulnerability	VCID-eszc-r2p1-xkcv

vulnerability	VCID-g2mr-xac1-jue9

vulnerability	VCID-hyts-mq72-z7de

vulnerability	VCID-v6q4-3362-fyde

vulnerability	VCID-z3ub-exq4-4qgg

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/keystone@2:22.0.2-0%252Bdeb12u1%3Fdistro=trixie

url pkg:deb/debian/keystone@2:27.0.0-3%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/keystone@2:27.0.0-3%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ucj-ubyb-27fx

vulnerability	VCID-7b5p-zqzm-3few

vulnerability	VCID-cage-qr17-fude

vulnerability	VCID-eszc-r2p1-xkcv

vulnerability	VCID-hyts-mq72-z7de

vulnerability	VCID-v6q4-3362-fyde

vulnerability	VCID-z3ub-exq4-4qgg

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/keystone@2:27.0.0-3%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/keystone@2:29.0.1-2?distro=trixie
purl	pkg:deb/debian/keystone@2:29.0.1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/keystone@2:29.0.1-2%3Fdistro=trixie

url	pkg:deb/debian/nova@2012.1.1-13?distro=trixie
purl	pkg:deb/debian/nova@2012.1.1-13?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nova@2012.1.1-13%3Fdistro=trixie

url pkg:deb/debian/nova@2:22.0.1-2%2Bdeb11u1?distro=trixie

purl pkg:deb/debian/nova@2:22.0.1-2%2Bdeb11u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1p6r-bchy-pfdv

vulnerability	VCID-gz88-fmm2-1yd7

vulnerability	VCID-ttgr-j3ja-cbba

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nova@2:22.0.1-2%252Bdeb11u1%3Fdistro=trixie

url	pkg:deb/debian/nova@2:26.2.2-1~deb12u4?distro=trixie
purl	pkg:deb/debian/nova@2:26.2.2-1~deb12u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nova@2:26.2.2-1~deb12u4%3Fdistro=trixie

url	pkg:deb/debian/nova@2:31.0.0-6%2Bdeb13u2?distro=trixie
purl	pkg:deb/debian/nova@2:31.0.0-6%2Bdeb13u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nova@2:31.0.0-6%252Bdeb13u2%3Fdistro=trixie

url	pkg:deb/debian/nova@2:33.0.1-2?distro=trixie
purl	pkg:deb/debian/nova@2:33.0.1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nova@2:33.0.1-2%3Fdistro=trixie

url	pkg:ebuild/app-emulation/emul-linux-x86-baselibs@20140406-r1
purl	pkg:ebuild/app-emulation/emul-linux-x86-baselibs@20140406-r1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/app-emulation/emul-linux-x86-baselibs@20140406-r1

url	pkg:ebuild/dev-libs/libxml2@2.9.1-r1
purl	pkg:ebuild/dev-libs/libxml2@2.9.1-r1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-libs/libxml2@2.9.1-r1

url pkg:pypi/django@1.3.6

purl pkg:pypi/django@1.3.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-29qk-rv5n-efbm

vulnerability	VCID-3kza-a88p-kfg7

vulnerability	VCID-3sg7-t77d-rkc6

vulnerability	VCID-4tyd-97z5-z3ar

vulnerability	VCID-5q58-pzt4-8uey

vulnerability	VCID-5vmb-d4xp-zfgy

vulnerability	VCID-6w99-8w84-jkh9

vulnerability	VCID-6wah-r8vr-5qc4

vulnerability	VCID-7rz2-nqdn-hycc

vulnerability	VCID-8gus-er59-1qak

vulnerability	VCID-8v2c-7739-2ugp

vulnerability	VCID-912q-3eks-4yfm

vulnerability	VCID-9mpt-zxaw-kkeg

vulnerability	VCID-bahz-gfxv-e3b2

vulnerability	VCID-bb8b-hq41-s7a6

vulnerability	VCID-dh12-js4b-h7fw

vulnerability	VCID-ffsr-th58-p3ct

vulnerability	VCID-ga69-9y5g-77c3

vulnerability	VCID-jfya-694v-myar

vulnerability	VCID-ksh8-pazn-dbca

vulnerability	VCID-mccp-khb9-qkb7

vulnerability	VCID-r7tk-79xy-jkhj

vulnerability	VCID-rq19-9v21-47dy

vulnerability	VCID-rxxr-sseq-k7a9

vulnerability	VCID-ta66-7qrm-sbhu

vulnerability	VCID-u4a7-uvcb-9kf8

vulnerability	VCID-u6sd-648r-qbdb

vulnerability	VCID-vdpf-jddk-syda

vulnerability	VCID-weqb-fxu4-17e7

vulnerability	VCID-whgc-pt2s-77ar

vulnerability	VCID-ynt9-h6ww-h7e9

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@1.3.6

url pkg:pypi/django@1.4.4

purl pkg:pypi/django@1.4.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-12d7-vc63-rkdy

vulnerability	VCID-29qk-rv5n-efbm

vulnerability	VCID-3kza-a88p-kfg7

vulnerability	VCID-3sg7-t77d-rkc6

vulnerability	VCID-4tyd-97z5-z3ar

vulnerability	VCID-5q58-pzt4-8uey

vulnerability	VCID-5vmb-d4xp-zfgy

vulnerability	VCID-6w99-8w84-jkh9

vulnerability	VCID-6wah-r8vr-5qc4

vulnerability	VCID-71t1-69yq-c7h6

vulnerability	VCID-7rz2-nqdn-hycc

vulnerability	VCID-8gus-er59-1qak

vulnerability	VCID-8v2c-7739-2ugp

vulnerability	VCID-912q-3eks-4yfm

vulnerability	VCID-9bqp-b6rw-mye7

vulnerability	VCID-9mpt-zxaw-kkeg

vulnerability	VCID-bahz-gfxv-e3b2

vulnerability	VCID-bb8b-hq41-s7a6

vulnerability	VCID-dh12-js4b-h7fw

vulnerability	VCID-ffsr-th58-p3ct

vulnerability	VCID-g2z3-2h8p-c7ge

vulnerability	VCID-ga69-9y5g-77c3

vulnerability	VCID-jfya-694v-myar

vulnerability	VCID-kq8u-td31-uqaa

vulnerability	VCID-ksh8-pazn-dbca

vulnerability	VCID-mccp-khb9-qkb7

vulnerability	VCID-ps24-pjj4-uqd1

vulnerability	VCID-r7tk-79xy-jkhj

vulnerability	VCID-rq19-9v21-47dy

vulnerability	VCID-rtjn-qccc-8kc7

vulnerability	VCID-rxxr-sseq-k7a9

vulnerability	VCID-ta66-7qrm-sbhu

vulnerability	VCID-th75-ys47-d3h8

vulnerability	VCID-u4a7-uvcb-9kf8

vulnerability	VCID-u6sd-648r-qbdb

vulnerability	VCID-vdpf-jddk-syda

vulnerability	VCID-weqb-fxu4-17e7

vulnerability	VCID-whgc-pt2s-77ar

vulnerability	VCID-x212-mskt-9bbw

vulnerability	VCID-ynt9-h6ww-h7e9

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@1.4.4

Affected_packages

url pkg:pypi/django@1.3

purl pkg:pypi/django@1.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-29qk-rv5n-efbm

vulnerability	VCID-38e1-hepp-vkg9

vulnerability	VCID-3juv-mecf-akdp

vulnerability	VCID-3kza-a88p-kfg7

vulnerability	VCID-3sg7-t77d-rkc6

vulnerability	VCID-492e-xffn-3bds

vulnerability	VCID-4tyd-97z5-z3ar

vulnerability	VCID-5brz-383w-pfbb

vulnerability	VCID-5dxz-7swx-rygn

vulnerability	VCID-5q58-pzt4-8uey

vulnerability	VCID-5vmb-d4xp-zfgy

vulnerability	VCID-66ax-8wdn-1bgb

vulnerability	VCID-6w99-8w84-jkh9

vulnerability	VCID-6wah-r8vr-5qc4

vulnerability	VCID-7g7m-bfe1-wkhd

vulnerability	VCID-7rz2-nqdn-hycc

vulnerability	VCID-8gus-er59-1qak

vulnerability	VCID-8v2c-7739-2ugp

vulnerability	VCID-912q-3eks-4yfm

vulnerability	VCID-9bsf-vm3b-ubhw

vulnerability	VCID-9mpt-zxaw-kkeg

vulnerability	VCID-bahz-gfxv-e3b2

vulnerability	VCID-bb8b-hq41-s7a6

vulnerability	VCID-dh12-js4b-h7fw

vulnerability	VCID-ffsr-th58-p3ct

vulnerability	VCID-ga69-9y5g-77c3

vulnerability	VCID-j7jf-zzvz-skgm

vulnerability	VCID-jfya-694v-myar

vulnerability	VCID-ksh8-pazn-dbca

vulnerability	VCID-mccp-khb9-qkb7

vulnerability	VCID-qu99-yudm-57fp

vulnerability	VCID-r7tk-79xy-jkhj

vulnerability	VCID-rq19-9v21-47dy

vulnerability	VCID-rxxr-sseq-k7a9

vulnerability	VCID-ta66-7qrm-sbhu

vulnerability	VCID-u4a7-uvcb-9kf8

vulnerability	VCID-u5u9-xbb6-93hc

vulnerability	VCID-u6sd-648r-qbdb

vulnerability	VCID-vdpf-jddk-syda

vulnerability	VCID-vj5u-2ukv-audq

vulnerability	VCID-weqb-fxu4-17e7

vulnerability	VCID-whgc-pt2s-77ar

vulnerability	VCID-xf2n-qua7-m7fb

vulnerability	VCID-ynt9-h6ww-h7e9

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@1.3

url pkg:pypi/django@1.3.0

purl pkg:pypi/django@1.3.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-j7jf-zzvz-skgm

vulnerability	VCID-qu99-yudm-57fp

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@1.3.0

url pkg:pypi/django@1.3.1

purl pkg:pypi/django@1.3.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-29qk-rv5n-efbm

vulnerability	VCID-3juv-mecf-akdp

vulnerability	VCID-3kza-a88p-kfg7

vulnerability	VCID-3sg7-t77d-rkc6

vulnerability	VCID-492e-xffn-3bds

vulnerability	VCID-4tyd-97z5-z3ar

vulnerability	VCID-5dxz-7swx-rygn

vulnerability	VCID-5q58-pzt4-8uey

vulnerability	VCID-5vmb-d4xp-zfgy

vulnerability	VCID-6w99-8w84-jkh9

vulnerability	VCID-6wah-r8vr-5qc4

vulnerability	VCID-7g7m-bfe1-wkhd

vulnerability	VCID-7rz2-nqdn-hycc

vulnerability	VCID-8gus-er59-1qak

vulnerability	VCID-8v2c-7739-2ugp

vulnerability	VCID-912q-3eks-4yfm

vulnerability	VCID-9bsf-vm3b-ubhw

vulnerability	VCID-9mpt-zxaw-kkeg

vulnerability	VCID-bahz-gfxv-e3b2

vulnerability	VCID-bb8b-hq41-s7a6

vulnerability	VCID-dh12-js4b-h7fw

vulnerability	VCID-ffsr-th58-p3ct

vulnerability	VCID-ga69-9y5g-77c3

vulnerability	VCID-j7jf-zzvz-skgm

vulnerability	VCID-jfya-694v-myar

vulnerability	VCID-ksh8-pazn-dbca

vulnerability	VCID-mccp-khb9-qkb7

vulnerability	VCID-qu99-yudm-57fp

vulnerability	VCID-r7tk-79xy-jkhj

vulnerability	VCID-rq19-9v21-47dy

vulnerability	VCID-rxxr-sseq-k7a9

vulnerability	VCID-ta66-7qrm-sbhu

vulnerability	VCID-u4a7-uvcb-9kf8

vulnerability	VCID-u6sd-648r-qbdb

vulnerability	VCID-vdpf-jddk-syda

vulnerability	VCID-vj5u-2ukv-audq

vulnerability	VCID-weqb-fxu4-17e7

vulnerability	VCID-whgc-pt2s-77ar

vulnerability	VCID-xf2n-qua7-m7fb

vulnerability	VCID-ynt9-h6ww-h7e9

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@1.3.1

url pkg:pypi/django@1.3.2

purl pkg:pypi/django@1.3.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-29qk-rv5n-efbm

vulnerability	VCID-3juv-mecf-akdp

vulnerability	VCID-3kza-a88p-kfg7

vulnerability	VCID-3sg7-t77d-rkc6

vulnerability	VCID-492e-xffn-3bds

vulnerability	VCID-4tyd-97z5-z3ar

vulnerability	VCID-5dxz-7swx-rygn

vulnerability	VCID-5q58-pzt4-8uey

vulnerability	VCID-5vmb-d4xp-zfgy

vulnerability	VCID-6w99-8w84-jkh9

vulnerability	VCID-6wah-r8vr-5qc4

vulnerability	VCID-7rz2-nqdn-hycc

vulnerability	VCID-8gus-er59-1qak

vulnerability	VCID-8v2c-7739-2ugp

vulnerability	VCID-912q-3eks-4yfm

vulnerability	VCID-9mpt-zxaw-kkeg

vulnerability	VCID-bahz-gfxv-e3b2

vulnerability	VCID-bb8b-hq41-s7a6

vulnerability	VCID-dh12-js4b-h7fw

vulnerability	VCID-ffsr-th58-p3ct

vulnerability	VCID-ga69-9y5g-77c3

vulnerability	VCID-j7jf-zzvz-skgm

vulnerability	VCID-jfya-694v-myar

vulnerability	VCID-ksh8-pazn-dbca

vulnerability	VCID-mccp-khb9-qkb7

vulnerability	VCID-qu99-yudm-57fp

vulnerability	VCID-r7tk-79xy-jkhj

vulnerability	VCID-rq19-9v21-47dy

vulnerability	VCID-rxxr-sseq-k7a9

vulnerability	VCID-ta66-7qrm-sbhu

vulnerability	VCID-u4a7-uvcb-9kf8

vulnerability	VCID-u6sd-648r-qbdb

vulnerability	VCID-vdpf-jddk-syda

vulnerability	VCID-weqb-fxu4-17e7

vulnerability	VCID-whgc-pt2s-77ar

vulnerability	VCID-ynt9-h6ww-h7e9

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@1.3.2

url pkg:pypi/django@1.3.3

purl pkg:pypi/django@1.3.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-29qk-rv5n-efbm

vulnerability	VCID-3juv-mecf-akdp

vulnerability	VCID-3kza-a88p-kfg7

vulnerability	VCID-3sg7-t77d-rkc6

vulnerability	VCID-492e-xffn-3bds

vulnerability	VCID-4tyd-97z5-z3ar

vulnerability	VCID-5dxz-7swx-rygn

vulnerability	VCID-5q58-pzt4-8uey

vulnerability	VCID-5vmb-d4xp-zfgy

vulnerability	VCID-6w99-8w84-jkh9

vulnerability	VCID-6wah-r8vr-5qc4

vulnerability	VCID-7rz2-nqdn-hycc

vulnerability	VCID-8gus-er59-1qak

vulnerability	VCID-8v2c-7739-2ugp

vulnerability	VCID-912q-3eks-4yfm

vulnerability	VCID-9mpt-zxaw-kkeg

vulnerability	VCID-bahz-gfxv-e3b2

vulnerability	VCID-bb8b-hq41-s7a6

vulnerability	VCID-dh12-js4b-h7fw

vulnerability	VCID-ffsr-th58-p3ct

vulnerability	VCID-ga69-9y5g-77c3

vulnerability	VCID-j7jf-zzvz-skgm

vulnerability	VCID-jfya-694v-myar

vulnerability	VCID-ksh8-pazn-dbca

vulnerability	VCID-mccp-khb9-qkb7

vulnerability	VCID-qu99-yudm-57fp

vulnerability	VCID-r7tk-79xy-jkhj

vulnerability	VCID-rq19-9v21-47dy

vulnerability	VCID-rxxr-sseq-k7a9

vulnerability	VCID-ta66-7qrm-sbhu

vulnerability	VCID-u4a7-uvcb-9kf8

vulnerability	VCID-u6sd-648r-qbdb

vulnerability	VCID-vdpf-jddk-syda

vulnerability	VCID-weqb-fxu4-17e7

vulnerability	VCID-whgc-pt2s-77ar

vulnerability	VCID-ynt9-h6ww-h7e9

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@1.3.3

url pkg:pypi/django@1.3.4

purl pkg:pypi/django@1.3.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-29qk-rv5n-efbm

vulnerability	VCID-3juv-mecf-akdp

vulnerability	VCID-3kza-a88p-kfg7

vulnerability	VCID-3sg7-t77d-rkc6

vulnerability	VCID-492e-xffn-3bds

vulnerability	VCID-4tyd-97z5-z3ar

vulnerability	VCID-5q58-pzt4-8uey

vulnerability	VCID-5vmb-d4xp-zfgy

vulnerability	VCID-6w99-8w84-jkh9

vulnerability	VCID-6wah-r8vr-5qc4

vulnerability	VCID-7rz2-nqdn-hycc

vulnerability	VCID-8gus-er59-1qak

vulnerability	VCID-8v2c-7739-2ugp

vulnerability	VCID-912q-3eks-4yfm

vulnerability	VCID-9mpt-zxaw-kkeg

vulnerability	VCID-bahz-gfxv-e3b2

vulnerability	VCID-bb8b-hq41-s7a6

vulnerability	VCID-dh12-js4b-h7fw

vulnerability	VCID-ffsr-th58-p3ct

vulnerability	VCID-ga69-9y5g-77c3

vulnerability	VCID-j7jf-zzvz-skgm

vulnerability	VCID-jfya-694v-myar

vulnerability	VCID-ksh8-pazn-dbca

vulnerability	VCID-mccp-khb9-qkb7

vulnerability	VCID-qu99-yudm-57fp

vulnerability	VCID-r7tk-79xy-jkhj

vulnerability	VCID-rq19-9v21-47dy

vulnerability	VCID-rxxr-sseq-k7a9

vulnerability	VCID-ta66-7qrm-sbhu

vulnerability	VCID-u4a7-uvcb-9kf8

vulnerability	VCID-u6sd-648r-qbdb

vulnerability	VCID-vdpf-jddk-syda

vulnerability	VCID-weqb-fxu4-17e7

vulnerability	VCID-whgc-pt2s-77ar

vulnerability	VCID-ynt9-h6ww-h7e9

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@1.3.4

url pkg:pypi/django@1.3.5

purl pkg:pypi/django@1.3.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-29qk-rv5n-efbm

vulnerability	VCID-3juv-mecf-akdp

vulnerability	VCID-3kza-a88p-kfg7

vulnerability	VCID-3sg7-t77d-rkc6

vulnerability	VCID-492e-xffn-3bds

vulnerability	VCID-4tyd-97z5-z3ar

vulnerability	VCID-5q58-pzt4-8uey

vulnerability	VCID-5vmb-d4xp-zfgy

vulnerability	VCID-6w99-8w84-jkh9

vulnerability	VCID-6wah-r8vr-5qc4

vulnerability	VCID-7rz2-nqdn-hycc

vulnerability	VCID-8gus-er59-1qak

vulnerability	VCID-8v2c-7739-2ugp

vulnerability	VCID-912q-3eks-4yfm

vulnerability	VCID-9mpt-zxaw-kkeg

vulnerability	VCID-bahz-gfxv-e3b2

vulnerability	VCID-bb8b-hq41-s7a6

vulnerability	VCID-dh12-js4b-h7fw

vulnerability	VCID-ffsr-th58-p3ct

vulnerability	VCID-ga69-9y5g-77c3

vulnerability	VCID-j7jf-zzvz-skgm

vulnerability	VCID-jfya-694v-myar

vulnerability	VCID-ksh8-pazn-dbca

vulnerability	VCID-mccp-khb9-qkb7

vulnerability	VCID-qu99-yudm-57fp

vulnerability	VCID-r7tk-79xy-jkhj

vulnerability	VCID-rq19-9v21-47dy

vulnerability	VCID-rxxr-sseq-k7a9

vulnerability	VCID-ta66-7qrm-sbhu

vulnerability	VCID-u4a7-uvcb-9kf8

vulnerability	VCID-u6sd-648r-qbdb

vulnerability	VCID-vdpf-jddk-syda

vulnerability	VCID-weqb-fxu4-17e7

vulnerability	VCID-whgc-pt2s-77ar

vulnerability	VCID-ynt9-h6ww-h7e9

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@1.3.5

url pkg:pypi/django@1.4

purl pkg:pypi/django@1.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-12d7-vc63-rkdy

vulnerability	VCID-29qk-rv5n-efbm

vulnerability	VCID-3juv-mecf-akdp

vulnerability	VCID-3kza-a88p-kfg7

vulnerability	VCID-3sg7-t77d-rkc6

vulnerability	VCID-492e-xffn-3bds

vulnerability	VCID-4tyd-97z5-z3ar

vulnerability	VCID-5dxz-7swx-rygn

vulnerability	VCID-5q58-pzt4-8uey

vulnerability	VCID-5vmb-d4xp-zfgy

vulnerability	VCID-6w99-8w84-jkh9

vulnerability	VCID-6wah-r8vr-5qc4

vulnerability	VCID-71t1-69yq-c7h6

vulnerability	VCID-7g7m-bfe1-wkhd

vulnerability	VCID-7rz2-nqdn-hycc

vulnerability	VCID-8gus-er59-1qak

vulnerability	VCID-8v2c-7739-2ugp

vulnerability	VCID-912q-3eks-4yfm

vulnerability	VCID-9bqp-b6rw-mye7

vulnerability	VCID-9bsf-vm3b-ubhw

vulnerability	VCID-9mpt-zxaw-kkeg

vulnerability	VCID-bahz-gfxv-e3b2

vulnerability	VCID-bb8b-hq41-s7a6

vulnerability	VCID-dh12-js4b-h7fw

vulnerability	VCID-ffsr-th58-p3ct

vulnerability	VCID-g2z3-2h8p-c7ge

vulnerability	VCID-ga69-9y5g-77c3

vulnerability	VCID-j7jf-zzvz-skgm

vulnerability	VCID-jfya-694v-myar

vulnerability	VCID-kq8u-td31-uqaa

vulnerability	VCID-ksh8-pazn-dbca

vulnerability	VCID-mccp-khb9-qkb7

vulnerability	VCID-ps24-pjj4-uqd1

vulnerability	VCID-qu99-yudm-57fp

vulnerability	VCID-r7tk-79xy-jkhj

vulnerability	VCID-rq19-9v21-47dy

vulnerability	VCID-rtjn-qccc-8kc7

vulnerability	VCID-rxxr-sseq-k7a9

vulnerability	VCID-ta66-7qrm-sbhu

vulnerability	VCID-th75-ys47-d3h8

vulnerability	VCID-u4a7-uvcb-9kf8

vulnerability	VCID-u6sd-648r-qbdb

vulnerability	VCID-vdpf-jddk-syda

vulnerability	VCID-vj5u-2ukv-audq

vulnerability	VCID-weqb-fxu4-17e7

vulnerability	VCID-whgc-pt2s-77ar

vulnerability	VCID-x212-mskt-9bbw

vulnerability	VCID-ynt9-h6ww-h7e9

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@1.4

url pkg:pypi/django@1.4.0

purl pkg:pypi/django@1.4.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-j7jf-zzvz-skgm

vulnerability	VCID-qu99-yudm-57fp

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@1.4.0

url pkg:pypi/django@1.4.1

purl pkg:pypi/django@1.4.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-12d7-vc63-rkdy

vulnerability	VCID-29qk-rv5n-efbm

vulnerability	VCID-3juv-mecf-akdp

vulnerability	VCID-3kza-a88p-kfg7

vulnerability	VCID-3sg7-t77d-rkc6

vulnerability	VCID-492e-xffn-3bds

vulnerability	VCID-4tyd-97z5-z3ar

vulnerability	VCID-5dxz-7swx-rygn

vulnerability	VCID-5q58-pzt4-8uey

vulnerability	VCID-5vmb-d4xp-zfgy

vulnerability	VCID-6w99-8w84-jkh9

vulnerability	VCID-6wah-r8vr-5qc4

vulnerability	VCID-71t1-69yq-c7h6

vulnerability	VCID-7rz2-nqdn-hycc

vulnerability	VCID-8gus-er59-1qak

vulnerability	VCID-8v2c-7739-2ugp

vulnerability	VCID-912q-3eks-4yfm

vulnerability	VCID-9bqp-b6rw-mye7

vulnerability	VCID-9mpt-zxaw-kkeg

vulnerability	VCID-bahz-gfxv-e3b2

vulnerability	VCID-bb8b-hq41-s7a6

vulnerability	VCID-dh12-js4b-h7fw

vulnerability	VCID-ffsr-th58-p3ct

vulnerability	VCID-g2z3-2h8p-c7ge

vulnerability	VCID-ga69-9y5g-77c3

vulnerability	VCID-j7jf-zzvz-skgm

vulnerability	VCID-jfya-694v-myar

vulnerability	VCID-kq8u-td31-uqaa

vulnerability	VCID-ksh8-pazn-dbca

vulnerability	VCID-mccp-khb9-qkb7

vulnerability	VCID-ps24-pjj4-uqd1

vulnerability	VCID-qu99-yudm-57fp

vulnerability	VCID-r7tk-79xy-jkhj

vulnerability	VCID-rq19-9v21-47dy

vulnerability	VCID-rtjn-qccc-8kc7

vulnerability	VCID-rxxr-sseq-k7a9

vulnerability	VCID-ta66-7qrm-sbhu

vulnerability	VCID-th75-ys47-d3h8

vulnerability	VCID-u4a7-uvcb-9kf8

vulnerability	VCID-u6sd-648r-qbdb

vulnerability	VCID-vdpf-jddk-syda

vulnerability	VCID-weqb-fxu4-17e7

vulnerability	VCID-whgc-pt2s-77ar

vulnerability	VCID-x212-mskt-9bbw

vulnerability	VCID-ynt9-h6ww-h7e9

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@1.4.1

url pkg:pypi/django@1.4.2

purl pkg:pypi/django@1.4.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-12d7-vc63-rkdy

vulnerability	VCID-29qk-rv5n-efbm

vulnerability	VCID-3juv-mecf-akdp

vulnerability	VCID-3kza-a88p-kfg7

vulnerability	VCID-3sg7-t77d-rkc6

vulnerability	VCID-492e-xffn-3bds

vulnerability	VCID-4tyd-97z5-z3ar

vulnerability	VCID-5q58-pzt4-8uey

vulnerability	VCID-5vmb-d4xp-zfgy

vulnerability	VCID-6w99-8w84-jkh9

vulnerability	VCID-6wah-r8vr-5qc4

vulnerability	VCID-71t1-69yq-c7h6

vulnerability	VCID-7rz2-nqdn-hycc

vulnerability	VCID-8gus-er59-1qak

vulnerability	VCID-8v2c-7739-2ugp

vulnerability	VCID-912q-3eks-4yfm

vulnerability	VCID-9bqp-b6rw-mye7

vulnerability	VCID-9mpt-zxaw-kkeg

vulnerability	VCID-bahz-gfxv-e3b2

vulnerability	VCID-bb8b-hq41-s7a6

vulnerability	VCID-dh12-js4b-h7fw

vulnerability	VCID-ffsr-th58-p3ct

vulnerability	VCID-g2z3-2h8p-c7ge

vulnerability	VCID-ga69-9y5g-77c3

vulnerability	VCID-j7jf-zzvz-skgm

vulnerability	VCID-jfya-694v-myar

vulnerability	VCID-kq8u-td31-uqaa

vulnerability	VCID-ksh8-pazn-dbca

vulnerability	VCID-mccp-khb9-qkb7

vulnerability	VCID-ps24-pjj4-uqd1

vulnerability	VCID-qu99-yudm-57fp

vulnerability	VCID-r7tk-79xy-jkhj

vulnerability	VCID-rq19-9v21-47dy

vulnerability	VCID-rtjn-qccc-8kc7

vulnerability	VCID-rxxr-sseq-k7a9

vulnerability	VCID-ta66-7qrm-sbhu

vulnerability	VCID-th75-ys47-d3h8

vulnerability	VCID-u4a7-uvcb-9kf8

vulnerability	VCID-u6sd-648r-qbdb

vulnerability	VCID-vdpf-jddk-syda

vulnerability	VCID-weqb-fxu4-17e7

vulnerability	VCID-whgc-pt2s-77ar

vulnerability	VCID-x212-mskt-9bbw

vulnerability	VCID-ynt9-h6ww-h7e9

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@1.4.2

url pkg:pypi/django@1.4.3

purl pkg:pypi/django@1.4.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-12d7-vc63-rkdy

vulnerability	VCID-29qk-rv5n-efbm

vulnerability	VCID-3juv-mecf-akdp

vulnerability	VCID-3kza-a88p-kfg7

vulnerability	VCID-3sg7-t77d-rkc6

vulnerability	VCID-492e-xffn-3bds

vulnerability	VCID-4tyd-97z5-z3ar

vulnerability	VCID-5q58-pzt4-8uey

vulnerability	VCID-5vmb-d4xp-zfgy

vulnerability	VCID-6w99-8w84-jkh9

vulnerability	VCID-6wah-r8vr-5qc4

vulnerability	VCID-71t1-69yq-c7h6

vulnerability	VCID-7rz2-nqdn-hycc

vulnerability	VCID-8gus-er59-1qak

vulnerability	VCID-8v2c-7739-2ugp

vulnerability	VCID-912q-3eks-4yfm

vulnerability	VCID-9bqp-b6rw-mye7

vulnerability	VCID-9mpt-zxaw-kkeg

vulnerability	VCID-bahz-gfxv-e3b2

vulnerability	VCID-bb8b-hq41-s7a6

vulnerability	VCID-dh12-js4b-h7fw

vulnerability	VCID-ffsr-th58-p3ct

vulnerability	VCID-g2z3-2h8p-c7ge

vulnerability	VCID-ga69-9y5g-77c3

vulnerability	VCID-j7jf-zzvz-skgm

vulnerability	VCID-jfya-694v-myar

vulnerability	VCID-kq8u-td31-uqaa

vulnerability	VCID-ksh8-pazn-dbca

vulnerability	VCID-mccp-khb9-qkb7

vulnerability	VCID-ps24-pjj4-uqd1

vulnerability	VCID-qu99-yudm-57fp

vulnerability	VCID-r7tk-79xy-jkhj

vulnerability	VCID-rq19-9v21-47dy

vulnerability	VCID-rtjn-qccc-8kc7

vulnerability	VCID-rxxr-sseq-k7a9

vulnerability	VCID-ta66-7qrm-sbhu

vulnerability	VCID-th75-ys47-d3h8

vulnerability	VCID-u4a7-uvcb-9kf8

vulnerability	VCID-u6sd-648r-qbdb

vulnerability	VCID-vdpf-jddk-syda

vulnerability	VCID-weqb-fxu4-17e7

vulnerability	VCID-whgc-pt2s-77ar

vulnerability	VCID-x212-mskt-9bbw

vulnerability	VCID-ynt9-h6ww-h7e9

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@1.4.3

url pkg:rpm/redhat/Django14@1.4.4-1?arch=el6ost

purl pkg:rpm/redhat/Django14@1.4.4-1?arch=el6ost

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3juv-mecf-akdp

vulnerability	VCID-492e-xffn-3bds

vulnerability	VCID-j7jf-zzvz-skgm

vulnerability	VCID-qu99-yudm-57fp

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/Django14@1.4.4-1%3Farch=el6ost

url pkg:rpm/redhat/openstack-cinder@2012.2.3-4?arch=el6ost

purl pkg:rpm/redhat/openstack-cinder@2012.2.3-4?arch=el6ost

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-j7jf-zzvz-skgm

vulnerability	VCID-qu99-yudm-57fp

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openstack-cinder@2012.2.3-4%3Farch=el6ost

url pkg:rpm/redhat/openstack-keystone@2012.2.3-3?arch=el6ost

purl pkg:rpm/redhat/openstack-keystone@2012.2.3-3?arch=el6ost

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-j7jf-zzvz-skgm

vulnerability	VCID-qu99-yudm-57fp

vulnerability	VCID-wdxs-m2kh-ybfw

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openstack-keystone@2012.2.3-3%3Farch=el6ost

url pkg:rpm/redhat/openstack-nova@2012.2.3-4?arch=el6ost

purl pkg:rpm/redhat/openstack-nova@2012.2.3-4?arch=el6ost

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-j7jf-zzvz-skgm

vulnerability	VCID-qu99-yudm-57fp

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openstack-nova@2012.2.3-4%3Farch=el6ost

References

reference_url

http://blog.python.org/2013/02/announcing-defusedxml-fixes-for-xml.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://blog.python.org/2013/02/announcing-defusedxml-fixes-for-xml.html

reference_url

http://bugs.python.org/issue17239

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://bugs.python.org/issue17239

reference_url

http://lists.openstack.org/pipermail/openstack-announce/2013-February/000078.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://lists.openstack.org/pipermail/openstack-announce/2013-February/000078.html

reference_url

http://rhn.redhat.com/errata/RHSA-2013-0657.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://rhn.redhat.com/errata/RHSA-2013-0657.html

reference_url

http://rhn.redhat.com/errata/RHSA-2013-0658.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://rhn.redhat.com/errata/RHSA-2013-0658.html

reference_url

http://rhn.redhat.com/errata/RHSA-2013-0670.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://rhn.redhat.com/errata/RHSA-2013-0670.html

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1664.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1664.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2013-1664

reference_id

reference_type

scores

value	0.03938
scoring_system	epss
scoring_elements	0.88545
published_at	2026-06-04T12:55:00Z

value	0.03938
scoring_system	epss
scoring_elements	0.88563
published_at	2026-06-08T12:55:00Z

value	0.03938
scoring_system	epss
scoring_elements	0.88564
published_at	2026-06-07T12:55:00Z

value	0.03938
scoring_system	epss
scoring_elements	0.88565
published_at	2026-06-06T12:55:00Z

value	0.03938
scoring_system	epss
scoring_elements	0.88562
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2013-1664

reference_url

https://bugs.launchpad.net/nova/+bug/1100282

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://bugs.launchpad.net/nova/+bug/1100282

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1664
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1664

reference_url

https://github.com/django/django

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django

reference_url

https://github.com/django/django/commit/1c60d07ba23e0350351c278ad28d0bd5aa410b40

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/1c60d07ba23e0350351c278ad28d0bd5aa410b40

reference_url

https://github.com/django/django/commit/d19a27066b2247102e65412aa66917aff0091112

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/d19a27066b2247102e65412aa66917aff0091112

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2013-1664

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2013-1664

reference_url

http://ubuntu.com/usn/usn-1757-1

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://ubuntu.com/usn/usn-1757-1

reference_url

http://www.openwall.com/lists/oss-security/2013/02/19/2

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.openwall.com/lists/oss-security/2013/02/19/2

reference_url

http://www.openwall.com/lists/oss-security/2013/02/19/4

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.openwall.com/lists/oss-security/2013/02/19/4

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=700948
reference_id	700948
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=700948

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=700949
reference_id	700949
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=700949

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=700950
reference_id	700950
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=700950

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=913808
reference_id	913808
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=913808

reference_url

https://github.com/advisories/GHSA-qrh7-x6fp-c2mp

reference_id

GHSA-qrh7-x6fp-c2mp

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-qrh7-x6fp-c2mp

reference_url	https://security.gentoo.org/glsa/201311-06
reference_id	GLSA-201311-06
reference_type
scores
url	https://security.gentoo.org/glsa/201311-06

reference_url	https://security.gentoo.org/glsa/201412-11
reference_id	GLSA-201412-11
reference_type
scores
url	https://security.gentoo.org/glsa/201412-11

reference_url	https://access.redhat.com/errata/RHSA-2013:0596
reference_id	RHSA-2013:0596
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:0596

reference_url	https://access.redhat.com/errata/RHSA-2013:0657
reference_id	RHSA-2013:0657
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:0657

reference_url	https://access.redhat.com/errata/RHSA-2013:0658
reference_id	RHSA-2013:0658
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:0658

reference_url	https://access.redhat.com/errata/RHSA-2013:0670
reference_id	RHSA-2013:0670
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:0670

reference_url	https://usn.ubuntu.com/1730-1/
reference_id	USN-1730-1
reference_type
scores
url	https://usn.ubuntu.com/1730-1/

reference_url	https://usn.ubuntu.com/1731-1/
reference_id	USN-1731-1
reference_type
scores
url	https://usn.ubuntu.com/1731-1/

reference_url	https://usn.ubuntu.com/1734-1/
reference_id	USN-1734-1
reference_type
scores
url	https://usn.ubuntu.com/1734-1/

reference_url	https://usn.ubuntu.com/1757-1/
reference_id	USN-1757-1
reference_type
scores
url	https://usn.ubuntu.com/1757-1/

Weaknesses

cwe_id	611
name	Improper Restriction of XML External Entity Reference
description	The product processes an XML document that can contain XML entities with URIs that resolve to documents outside of the intended sphere of control, causing the product to embed incorrect documents into its output.

cwe_id	937
name	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.

cwe_id	1035
name	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.

Exploits

Severity_range_score 4.0 - 6.9

Exploitability 0.5

Weighted_severity 6.2

Risk_score 3.1

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-j7jf-zzvz-skgm

Vulnerability Instance