Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-2t8v-6yek-ckfn
Summary
Aliases
0
alias CVE-2007-3383
1
alias GHSA-wjwr-3jch-479j
Fixed_packages
0
url pkg:apache/tomcat@4.1.37
purl pkg:apache/tomcat@4.1.37
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-j51f-82vz-2kcs
1
vulnerability VCID-ttnn-f8f2-2ugz
2
vulnerability VCID-uq27-qyvn-hfar
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@4.1.37
Affected_packages
0
url pkg:apache/tomcat@4.0.0
purl pkg:apache/tomcat@4.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2ctt-1vkg-j7es
1
vulnerability VCID-2t8v-6yek-ckfn
2
vulnerability VCID-7fzr-e3zp-ukdf
3
vulnerability VCID-938j-55jz-fyf1
4
vulnerability VCID-a1wc-fxfg-kkgv
5
vulnerability VCID-av78-ggg2-x7fw
6
vulnerability VCID-b9kc-tb5j-tfh6
7
vulnerability VCID-f2vk-cyeq-y3ar
8
vulnerability VCID-fqj2-k7e7-rydn
9
vulnerability VCID-fs76-r11b-affm
10
vulnerability VCID-kypf-ay1s-6bah
11
vulnerability VCID-mq75-d7z2-yygg
12
vulnerability VCID-qagy-c28p-qkde
13
vulnerability VCID-rdaa-zvr3-jfdz
14
vulnerability VCID-v7ak-xgna-r3bp
15
vulnerability VCID-y8dz-8914-pydr
16
vulnerability VCID-yhar-1ge6-cqf9
17
vulnerability VCID-yvhh-6p4j-1bdp
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@4.0.0
1
url pkg:apache/tomcat@4.0.6
purl pkg:apache/tomcat@4.0.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2t8v-6yek-ckfn
1
vulnerability VCID-4ma9-urc9-bubh
2
vulnerability VCID-7fzr-e3zp-ukdf
3
vulnerability VCID-938j-55jz-fyf1
4
vulnerability VCID-a1wc-fxfg-kkgv
5
vulnerability VCID-av78-ggg2-x7fw
6
vulnerability VCID-b5tj-a1a5-bfaz
7
vulnerability VCID-b9kc-tb5j-tfh6
8
vulnerability VCID-f2vk-cyeq-y3ar
9
vulnerability VCID-fqj2-k7e7-rydn
10
vulnerability VCID-kypf-ay1s-6bah
11
vulnerability VCID-mq75-d7z2-yygg
12
vulnerability VCID-rdaa-zvr3-jfdz
13
vulnerability VCID-sp28-x6dh-2ffd
14
vulnerability VCID-y8dz-8914-pydr
15
vulnerability VCID-yvhh-6p4j-1bdp
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@4.0.6
2
url pkg:apache/tomcat@4.1.0
purl pkg:apache/tomcat@4.1.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-12ue-np81-1bhx
1
vulnerability VCID-2ctt-1vkg-j7es
2
vulnerability VCID-2t8v-6yek-ckfn
3
vulnerability VCID-4ma9-urc9-bubh
4
vulnerability VCID-938j-55jz-fyf1
5
vulnerability VCID-av78-ggg2-x7fw
6
vulnerability VCID-b5tj-a1a5-bfaz
7
vulnerability VCID-b6dz-e575-xudf
8
vulnerability VCID-b9kc-tb5j-tfh6
9
vulnerability VCID-c96g-va5j-mqau
10
vulnerability VCID-f2vk-cyeq-y3ar
11
vulnerability VCID-fqj2-k7e7-rydn
12
vulnerability VCID-gve5-fam7-g7eh
13
vulnerability VCID-h1uu-cmta-83c1
14
vulnerability VCID-j51f-82vz-2kcs
15
vulnerability VCID-kypf-ay1s-6bah
16
vulnerability VCID-mq75-d7z2-yygg
17
vulnerability VCID-qagy-c28p-qkde
18
vulnerability VCID-qur2-b72r-nff2
19
vulnerability VCID-rdaa-zvr3-jfdz
20
vulnerability VCID-sp28-x6dh-2ffd
21
vulnerability VCID-svq9-dst7-bbac
22
vulnerability VCID-ttnn-f8f2-2ugz
23
vulnerability VCID-uq27-qyvn-hfar
24
vulnerability VCID-v7ak-xgna-r3bp
25
vulnerability VCID-vwjr-b3tg-6kc6
26
vulnerability VCID-y8dz-8914-pydr
27
vulnerability VCID-ytw6-k6vk-akc9
28
vulnerability VCID-yvhh-6p4j-1bdp
29
vulnerability VCID-zfr1-8ew7-vkad
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@4.1.0
3
url pkg:apache/tomcat@4.1.36
purl pkg:apache/tomcat@4.1.36
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-12ue-np81-1bhx
1
vulnerability VCID-2t8v-6yek-ckfn
2
vulnerability VCID-4ma9-urc9-bubh
3
vulnerability VCID-938j-55jz-fyf1
4
vulnerability VCID-b5tj-a1a5-bfaz
5
vulnerability VCID-b6dz-e575-xudf
6
vulnerability VCID-fqj2-k7e7-rydn
7
vulnerability VCID-qur2-b72r-nff2
8
vulnerability VCID-sp28-x6dh-2ffd
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@4.1.36
4
url pkg:maven/org.apache.tomcat/tomcat@4.0.0
purl pkg:maven/org.apache.tomcat/tomcat@4.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2ctt-1vkg-j7es
1
vulnerability VCID-2t8v-6yek-ckfn
2
vulnerability VCID-4ma9-urc9-bubh
3
vulnerability VCID-7fzr-e3zp-ukdf
4
vulnerability VCID-8ksx-d5ug-7kcj
5
vulnerability VCID-938j-55jz-fyf1
6
vulnerability VCID-a1wc-fxfg-kkgv
7
vulnerability VCID-av78-ggg2-x7fw
8
vulnerability VCID-b9kc-tb5j-tfh6
9
vulnerability VCID-f2vk-cyeq-y3ar
10
vulnerability VCID-fqj2-k7e7-rydn
11
vulnerability VCID-fs76-r11b-affm
12
vulnerability VCID-kypf-ay1s-6bah
13
vulnerability VCID-mq75-d7z2-yygg
14
vulnerability VCID-qagy-c28p-qkde
15
vulnerability VCID-rdaa-zvr3-jfdz
16
vulnerability VCID-v7ak-xgna-r3bp
17
vulnerability VCID-y8dz-8914-pydr
18
vulnerability VCID-yhar-1ge6-cqf9
19
vulnerability VCID-yvhh-6p4j-1bdp
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@4.0.0
5
url pkg:maven/org.apache.tomcat/tomcat@4.0.6
purl pkg:maven/org.apache.tomcat/tomcat@4.0.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2t8v-6yek-ckfn
1
vulnerability VCID-4ma9-urc9-bubh
2
vulnerability VCID-7fzr-e3zp-ukdf
3
vulnerability VCID-938j-55jz-fyf1
4
vulnerability VCID-a1wc-fxfg-kkgv
5
vulnerability VCID-av78-ggg2-x7fw
6
vulnerability VCID-b5tj-a1a5-bfaz
7
vulnerability VCID-b9kc-tb5j-tfh6
8
vulnerability VCID-f2vk-cyeq-y3ar
9
vulnerability VCID-fqj2-k7e7-rydn
10
vulnerability VCID-kypf-ay1s-6bah
11
vulnerability VCID-mq75-d7z2-yygg
12
vulnerability VCID-rdaa-zvr3-jfdz
13
vulnerability VCID-sp28-x6dh-2ffd
14
vulnerability VCID-y8dz-8914-pydr
15
vulnerability VCID-yvhh-6p4j-1bdp
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@4.0.6
6
url pkg:maven/org.apache.tomcat/tomcat@4.1.0
purl pkg:maven/org.apache.tomcat/tomcat@4.1.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-12ue-np81-1bhx
1
vulnerability VCID-2ctt-1vkg-j7es
2
vulnerability VCID-2t8v-6yek-ckfn
3
vulnerability VCID-4ma9-urc9-bubh
4
vulnerability VCID-938j-55jz-fyf1
5
vulnerability VCID-av78-ggg2-x7fw
6
vulnerability VCID-b5tj-a1a5-bfaz
7
vulnerability VCID-b6dz-e575-xudf
8
vulnerability VCID-b9kc-tb5j-tfh6
9
vulnerability VCID-c96g-va5j-mqau
10
vulnerability VCID-f2vk-cyeq-y3ar
11
vulnerability VCID-fqj2-k7e7-rydn
12
vulnerability VCID-gve5-fam7-g7eh
13
vulnerability VCID-h1uu-cmta-83c1
14
vulnerability VCID-j51f-82vz-2kcs
15
vulnerability VCID-ja59-geuc-vue8
16
vulnerability VCID-kypf-ay1s-6bah
17
vulnerability VCID-mq75-d7z2-yygg
18
vulnerability VCID-qagy-c28p-qkde
19
vulnerability VCID-qur2-b72r-nff2
20
vulnerability VCID-rdaa-zvr3-jfdz
21
vulnerability VCID-sp28-x6dh-2ffd
22
vulnerability VCID-svq9-dst7-bbac
23
vulnerability VCID-ttnn-f8f2-2ugz
24
vulnerability VCID-uq27-qyvn-hfar
25
vulnerability VCID-v7ak-xgna-r3bp
26
vulnerability VCID-vwjr-b3tg-6kc6
27
vulnerability VCID-y8dz-8914-pydr
28
vulnerability VCID-ytw6-k6vk-akc9
29
vulnerability VCID-yvhh-6p4j-1bdp
30
vulnerability VCID-zfr1-8ew7-vkad
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@4.1.0
7
url pkg:maven/org.apache.tomcat/tomcat@4.1.36
purl pkg:maven/org.apache.tomcat/tomcat@4.1.36
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-12ue-np81-1bhx
1
vulnerability VCID-2t8v-6yek-ckfn
2
vulnerability VCID-4ma9-urc9-bubh
3
vulnerability VCID-938j-55jz-fyf1
4
vulnerability VCID-b5tj-a1a5-bfaz
5
vulnerability VCID-b6dz-e575-xudf
6
vulnerability VCID-fqj2-k7e7-rydn
7
vulnerability VCID-qur2-b72r-nff2
8
vulnerability VCID-sp28-x6dh-2ffd
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@4.1.36
References
0
reference_url http://lists.apple.com/archives/security-announce/2008//Jun/msg00002.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://lists.apple.com/archives/security-announce/2008//Jun/msg00002.html
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2007-3383
reference_id
reference_type
scores
0
value 0.38832
scoring_system epss
scoring_elements 0.97331
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2007-3383
2
reference_url http://seclists.org/fulldisclosure/2007/Jul/0448.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://seclists.org/fulldisclosure/2007/Jul/0448.html
3
reference_url https://exchange.xforce.ibmcloud.com/vulnerabilities/35536
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://exchange.xforce.ibmcloud.com/vulnerabilities/35536
4
reference_url https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5@%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5@%3Cdev.tomcat.apache.org%3E
5
reference_url https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74@%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74@%3Cdev.tomcat.apache.org%3E
6
reference_url https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3@%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3@%3Cdev.tomcat.apache.org%3E
7
reference_url http://support.apple.com/kb/HT2163
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://support.apple.com/kb/HT2163
8
reference_url http://tomcat.apache.org/security-4.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://tomcat.apache.org/security-4.html
9
reference_url http://www.kb.cert.org/vuls/id/862600
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.kb.cert.org/vuls/id/862600
10
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3383
reference_id CVE-2007-3383
reference_type
scores
0
value Low
scoring_system apache_tomcat
scoring_elements
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3383
11
reference_url https://nvd.nist.gov/vuln/detail/CVE-2007-3383
reference_id CVE-2007-3383
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2007-3383
12
reference_url https://github.com/advisories/GHSA-wjwr-3jch-479j
reference_id GHSA-wjwr-3jch-479j
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-wjwr-3jch-479j
Weaknesses
0
cwe_id 1035
name OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.
1
cwe_id 79
name Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
description The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.
2
cwe_id 937
name OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.
3
cwe_id 80
name Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)
description The product receives input from an upstream component, but it does not neutralize or incorrectly neutralizes special characters such as <, >, and & that could be interpreted as web-scripting elements when they are sent to a downstream component that processes web pages.
Exploits
Severity_range_score0.1 - 6.9
Exploitability0.5
Weighted_severity6.2
Risk_score3.1
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-2t8v-6yek-ckfn