Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-u7j6-ddbe-zubs
Summary
High severity vulnerability that affects electron
Untrusted search path vulnerability in Atom Electron before 0.33.5 allows local users to gain privileges via a Trojan horse Node.js module in a parent directory of a directory named on a require line.
Aliases
0
alias CVE-2016-1202
1
alias GHSA-gvcj-pfq2-wxj7
Fixed_packages
0
url pkg:npm/electron@1.3.1
purl pkg:npm/electron@1.3.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-7eu1-94qk-nuar
2
vulnerability VCID-a795-r67e-p3ck
3
vulnerability VCID-a84t-cjcb-tqcw
4
vulnerability VCID-dwqm-hym4-xqa9
5
vulnerability VCID-f81v-9fv8-93cd
6
vulnerability VCID-fahk-eg3e-x7cu
7
vulnerability VCID-j7d6-zp3s-67fq
8
vulnerability VCID-mhk8-b26h-wqhy
9
vulnerability VCID-nx5d-r4jc-77df
10
vulnerability VCID-p167-yf3n-6qd5
11
vulnerability VCID-qd52-rbd7-qkbn
12
vulnerability VCID-uzwh-4kbj-9kc8
13
vulnerability VCID-w7f7-5frp-n3br
14
vulnerability VCID-xys1-xe1s-jqha
15
vulnerability VCID-ycrz-abm9-hbat
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@1.3.1
Affected_packages
0
url pkg:npm/electron@0.1.0
purl pkg:npm/electron@0.1.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-7eu1-94qk-nuar
2
vulnerability VCID-a795-r67e-p3ck
3
vulnerability VCID-a84t-cjcb-tqcw
4
vulnerability VCID-dwqm-hym4-xqa9
5
vulnerability VCID-f81v-9fv8-93cd
6
vulnerability VCID-fahk-eg3e-x7cu
7
vulnerability VCID-j7d6-zp3s-67fq
8
vulnerability VCID-mhk8-b26h-wqhy
9
vulnerability VCID-nx5d-r4jc-77df
10
vulnerability VCID-p167-yf3n-6qd5
11
vulnerability VCID-qd52-rbd7-qkbn
12
vulnerability VCID-u7j6-ddbe-zubs
13
vulnerability VCID-uzwh-4kbj-9kc8
14
vulnerability VCID-w7f7-5frp-n3br
15
vulnerability VCID-xys1-xe1s-jqha
16
vulnerability VCID-ycrz-abm9-hbat
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@0.1.0
1
url pkg:npm/electron@0.1.1
purl pkg:npm/electron@0.1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-7eu1-94qk-nuar
2
vulnerability VCID-a795-r67e-p3ck
3
vulnerability VCID-a84t-cjcb-tqcw
4
vulnerability VCID-dwqm-hym4-xqa9
5
vulnerability VCID-f81v-9fv8-93cd
6
vulnerability VCID-fahk-eg3e-x7cu
7
vulnerability VCID-j7d6-zp3s-67fq
8
vulnerability VCID-mhk8-b26h-wqhy
9
vulnerability VCID-nx5d-r4jc-77df
10
vulnerability VCID-p167-yf3n-6qd5
11
vulnerability VCID-qd52-rbd7-qkbn
12
vulnerability VCID-u7j6-ddbe-zubs
13
vulnerability VCID-uzwh-4kbj-9kc8
14
vulnerability VCID-w7f7-5frp-n3br
15
vulnerability VCID-xys1-xe1s-jqha
16
vulnerability VCID-ycrz-abm9-hbat
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@0.1.1
2
url pkg:npm/electron@0.1.2
purl pkg:npm/electron@0.1.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-7eu1-94qk-nuar
2
vulnerability VCID-a795-r67e-p3ck
3
vulnerability VCID-a84t-cjcb-tqcw
4
vulnerability VCID-dwqm-hym4-xqa9
5
vulnerability VCID-f81v-9fv8-93cd
6
vulnerability VCID-fahk-eg3e-x7cu
7
vulnerability VCID-j7d6-zp3s-67fq
8
vulnerability VCID-mhk8-b26h-wqhy
9
vulnerability VCID-nx5d-r4jc-77df
10
vulnerability VCID-p167-yf3n-6qd5
11
vulnerability VCID-qd52-rbd7-qkbn
12
vulnerability VCID-u7j6-ddbe-zubs
13
vulnerability VCID-uzwh-4kbj-9kc8
14
vulnerability VCID-w7f7-5frp-n3br
15
vulnerability VCID-xys1-xe1s-jqha
16
vulnerability VCID-ycrz-abm9-hbat
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@0.1.2
3
url pkg:npm/electron@0.2.0
purl pkg:npm/electron@0.2.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-7eu1-94qk-nuar
2
vulnerability VCID-a795-r67e-p3ck
3
vulnerability VCID-a84t-cjcb-tqcw
4
vulnerability VCID-dwqm-hym4-xqa9
5
vulnerability VCID-f81v-9fv8-93cd
6
vulnerability VCID-fahk-eg3e-x7cu
7
vulnerability VCID-j7d6-zp3s-67fq
8
vulnerability VCID-mhk8-b26h-wqhy
9
vulnerability VCID-nx5d-r4jc-77df
10
vulnerability VCID-p167-yf3n-6qd5
11
vulnerability VCID-qd52-rbd7-qkbn
12
vulnerability VCID-u7j6-ddbe-zubs
13
vulnerability VCID-uzwh-4kbj-9kc8
14
vulnerability VCID-w7f7-5frp-n3br
15
vulnerability VCID-xys1-xe1s-jqha
16
vulnerability VCID-ycrz-abm9-hbat
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@0.2.0
4
url pkg:npm/electron@0.2.1
purl pkg:npm/electron@0.2.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-7eu1-94qk-nuar
2
vulnerability VCID-a795-r67e-p3ck
3
vulnerability VCID-a84t-cjcb-tqcw
4
vulnerability VCID-dwqm-hym4-xqa9
5
vulnerability VCID-f81v-9fv8-93cd
6
vulnerability VCID-fahk-eg3e-x7cu
7
vulnerability VCID-j7d6-zp3s-67fq
8
vulnerability VCID-mhk8-b26h-wqhy
9
vulnerability VCID-nx5d-r4jc-77df
10
vulnerability VCID-p167-yf3n-6qd5
11
vulnerability VCID-qd52-rbd7-qkbn
12
vulnerability VCID-u7j6-ddbe-zubs
13
vulnerability VCID-uzwh-4kbj-9kc8
14
vulnerability VCID-w7f7-5frp-n3br
15
vulnerability VCID-xys1-xe1s-jqha
16
vulnerability VCID-ycrz-abm9-hbat
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@0.2.1
5
url pkg:npm/electron@0.3.0
purl pkg:npm/electron@0.3.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-7eu1-94qk-nuar
2
vulnerability VCID-a795-r67e-p3ck
3
vulnerability VCID-a84t-cjcb-tqcw
4
vulnerability VCID-dwqm-hym4-xqa9
5
vulnerability VCID-f81v-9fv8-93cd
6
vulnerability VCID-fahk-eg3e-x7cu
7
vulnerability VCID-j7d6-zp3s-67fq
8
vulnerability VCID-mhk8-b26h-wqhy
9
vulnerability VCID-nx5d-r4jc-77df
10
vulnerability VCID-p167-yf3n-6qd5
11
vulnerability VCID-qd52-rbd7-qkbn
12
vulnerability VCID-u7j6-ddbe-zubs
13
vulnerability VCID-uzwh-4kbj-9kc8
14
vulnerability VCID-w7f7-5frp-n3br
15
vulnerability VCID-xys1-xe1s-jqha
16
vulnerability VCID-ycrz-abm9-hbat
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@0.3.0
6
url pkg:npm/electron@0.4.0
purl pkg:npm/electron@0.4.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-7eu1-94qk-nuar
2
vulnerability VCID-a795-r67e-p3ck
3
vulnerability VCID-a84t-cjcb-tqcw
4
vulnerability VCID-dwqm-hym4-xqa9
5
vulnerability VCID-f81v-9fv8-93cd
6
vulnerability VCID-fahk-eg3e-x7cu
7
vulnerability VCID-j7d6-zp3s-67fq
8
vulnerability VCID-mhk8-b26h-wqhy
9
vulnerability VCID-nx5d-r4jc-77df
10
vulnerability VCID-p167-yf3n-6qd5
11
vulnerability VCID-qd52-rbd7-qkbn
12
vulnerability VCID-u7j6-ddbe-zubs
13
vulnerability VCID-uzwh-4kbj-9kc8
14
vulnerability VCID-w7f7-5frp-n3br
15
vulnerability VCID-xys1-xe1s-jqha
16
vulnerability VCID-ycrz-abm9-hbat
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@0.4.0
7
url pkg:npm/electron@0.4.1
purl pkg:npm/electron@0.4.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1x44-uf31-1ydv
1
vulnerability VCID-7eu1-94qk-nuar
2
vulnerability VCID-a795-r67e-p3ck
3
vulnerability VCID-a84t-cjcb-tqcw
4
vulnerability VCID-dwqm-hym4-xqa9
5
vulnerability VCID-f81v-9fv8-93cd
6
vulnerability VCID-fahk-eg3e-x7cu
7
vulnerability VCID-j7d6-zp3s-67fq
8
vulnerability VCID-mhk8-b26h-wqhy
9
vulnerability VCID-nx5d-r4jc-77df
10
vulnerability VCID-p167-yf3n-6qd5
11
vulnerability VCID-qd52-rbd7-qkbn
12
vulnerability VCID-u7j6-ddbe-zubs
13
vulnerability VCID-uzwh-4kbj-9kc8
14
vulnerability VCID-w7f7-5frp-n3br
15
vulnerability VCID-xys1-xe1s-jqha
16
vulnerability VCID-ycrz-abm9-hbat
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/electron@0.4.1
References
0
reference_url http://jvndb.jvn.jp/jvndb/JVNDB-2016-000054
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url http://jvndb.jvn.jp/jvndb/JVNDB-2016-000054
1
reference_url http://jvn.jp/en/jp/JVN00324715/index.html
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url http://jvn.jp/en/jp/JVN00324715/index.html
2
reference_url https://api.first.org/data/v1/epss?cve=CVE-2016-1202
reference_id
reference_type
scores
0
value 0.00057
scoring_system epss
scoring_elements 0.17899
published_at 2026-04-13T12:55:00Z
1
value 0.00057
scoring_system epss
scoring_elements 0.17948
published_at 2026-04-12T12:55:00Z
2
value 0.00057
scoring_system epss
scoring_elements 0.17992
published_at 2026-04-11T12:55:00Z
3
value 0.00057
scoring_system epss
scoring_elements 0.17976
published_at 2026-04-09T12:55:00Z
4
value 0.00057
scoring_system epss
scoring_elements 0.17915
published_at 2026-04-08T12:55:00Z
5
value 0.00057
scoring_system epss
scoring_elements 0.18126
published_at 2026-04-04T12:55:00Z
6
value 0.00057
scoring_system epss
scoring_elements 0.17887
published_at 2026-04-21T12:55:00Z
7
value 0.00057
scoring_system epss
scoring_elements 0.17851
published_at 2026-04-18T12:55:00Z
8
value 0.00057
scoring_system epss
scoring_elements 0.17841
published_at 2026-04-16T12:55:00Z
9
value 0.00057
scoring_system epss
scoring_elements 0.18072
published_at 2026-04-02T12:55:00Z
10
value 0.00057
scoring_system epss
scoring_elements 0.17827
published_at 2026-04-07T12:55:00Z
11
value 0.00057
scoring_system epss
scoring_elements 0.17911
published_at 2026-04-01T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2016-1202
3
reference_url https://github.com/electron/electron
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/electron/electron
4
reference_url https://github.com/electron/electron/commit/9a2e2b365d061ec10cd861391fd5b1344af7194d
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/electron/electron/commit/9a2e2b365d061ec10cd861391fd5b1344af7194d
5
reference_url https://github.com/electron/electron/pull/2976
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/electron/electron/pull/2976
6
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:atom:electron:*:*:*:*:*:*:*:*
reference_id cpe:2.3:a:atom:electron:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:atom:electron:*:*:*:*:*:*:*:*
7
reference_url https://nvd.nist.gov/vuln/detail/CVE-2016-1202
reference_id CVE-2016-1202
reference_type
scores
0
value 7.2
scoring_system cvssv2
scoring_elements AV:L/AC:L/Au:N/C:C/I:C/A:C
1
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
2
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
3
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2016-1202
8
reference_url https://github.com/advisories/GHSA-gvcj-pfq2-wxj7
reference_id GHSA-gvcj-pfq2-wxj7
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/advisories/GHSA-gvcj-pfq2-wxj7
Weaknesses
0
cwe_id 1035
name OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.
1
cwe_id 937
name OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.
2
cwe_id 426
name Untrusted Search Path
description The product searches for critical resources using an externally-supplied search path that can point to resources that are not under the product's direct control.
Exploits
Severity_range_score7.0 - 8.9
Exploitability0.5
Weighted_severity8.0
Risk_score4.0
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-u7j6-ddbe-zubs