Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-yjjr-re41-dbde

Summary pacparser_find_proxy in Pacparser before 1.4.2 allows JavaScript injection, and possibly privilege escalation, when the attacker controls the URL (which may be realistic within enterprise security products).

Aliases

alias	CVE-2023-37360

alias	GHSA-62q6-v997-f7v9

alias	PYSEC-2023-93

Fixed_packages

url	pkg:deb/debian/pacparser@1.4.3-1?distro=trixie
purl	pkg:deb/debian/pacparser@1.4.3-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/pacparser@1.4.3-1%3Fdistro=trixie

url	pkg:deb/debian/pacparser@1.4.5-4
purl	pkg:deb/debian/pacparser@1.4.5-4
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/pacparser@1.4.5-4

url	pkg:deb/debian/pacparser@1.4.5-4?distro=trixie
purl	pkg:deb/debian/pacparser@1.4.5-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/pacparser@1.4.5-4%3Fdistro=trixie

url	pkg:deb/debian/pacparser@1.5.0-1?distro=trixie
purl	pkg:deb/debian/pacparser@1.5.0-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/pacparser@1.5.0-1%3Fdistro=trixie

url	pkg:pypi/pacparser@1.4.2
purl	pkg:pypi/pacparser@1.4.2
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:pypi/pacparser@1.4.2

Affected_packages

url pkg:deb/debian/pacparser@1.3.6-1.2

purl pkg:deb/debian/pacparser@1.3.6-1.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-hkfz-s2ek-xbb7

vulnerability	VCID-yjjr-re41-dbde

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pacparser@1.3.6-1.2

url pkg:deb/debian/pacparser@1.3.6-1.2?distro=trixie

purl pkg:deb/debian/pacparser@1.3.6-1.2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-hkfz-s2ek-xbb7

vulnerability	VCID-yjjr-re41-dbde

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pacparser@1.3.6-1.2%3Fdistro=trixie

url pkg:deb/debian/pacparser@1.3.6-1.4

purl pkg:deb/debian/pacparser@1.3.6-1.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-yjjr-re41-dbde

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pacparser@1.3.6-1.4

url pkg:deb/debian/pacparser@1.3.6-1.4?distro=trixie

purl pkg:deb/debian/pacparser@1.3.6-1.4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-yjjr-re41-dbde

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pacparser@1.3.6-1.4%3Fdistro=trixie

url pkg:pypi/pacparser@1.4.2.dev11

purl pkg:pypi/pacparser@1.4.2.dev11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-yjjr-re41-dbde

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pacparser@1.4.2.dev11

url pkg:pypi/pacparser@1.4.2.dev12

purl pkg:pypi/pacparser@1.4.2.dev12

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-yjjr-re41-dbde

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pacparser@1.4.2.dev12

url pkg:pypi/pacparser@1.4.2.dev18

purl pkg:pypi/pacparser@1.4.2.dev18

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-yjjr-re41-dbde

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pacparser@1.4.2.dev18

url pkg:pypi/pacparser@1.4.2.dev19

purl pkg:pypi/pacparser@1.4.2.dev19

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-yjjr-re41-dbde

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pacparser@1.4.2.dev19

url pkg:pypi/pacparser@1.4.2.dev21

purl pkg:pypi/pacparser@1.4.2.dev21

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-yjjr-re41-dbde

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pacparser@1.4.2.dev21

url pkg:pypi/pacparser@1.4.2.dev22

purl pkg:pypi/pacparser@1.4.2.dev22

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-yjjr-re41-dbde

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pacparser@1.4.2.dev22

url pkg:pypi/pacparser@1.4.2.dev8

purl pkg:pypi/pacparser@1.4.2.dev8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-yjjr-re41-dbde

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pacparser@1.4.2.dev8

url pkg:pypi/pacparser@1.3.7rc1

purl pkg:pypi/pacparser@1.3.7rc1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-hkfz-s2ek-xbb7

vulnerability	VCID-yjjr-re41-dbde

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pacparser@1.3.7rc1

url pkg:pypi/pacparser@1.3.7rc5

purl pkg:pypi/pacparser@1.3.7rc5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-hkfz-s2ek-xbb7

vulnerability	VCID-yjjr-re41-dbde

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pacparser@1.3.7rc5

url pkg:pypi/pacparser@1.3.7rc6

purl pkg:pypi/pacparser@1.3.7rc6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-hkfz-s2ek-xbb7

vulnerability	VCID-yjjr-re41-dbde

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pacparser@1.3.7rc6

url pkg:pypi/pacparser@1.3.7

purl pkg:pypi/pacparser@1.3.7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-hkfz-s2ek-xbb7

vulnerability	VCID-yjjr-re41-dbde

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pacparser@1.3.7

url pkg:pypi/pacparser@1.3.8.dev15

purl pkg:pypi/pacparser@1.3.8.dev15

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-hkfz-s2ek-xbb7

vulnerability	VCID-yjjr-re41-dbde

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pacparser@1.3.8.dev15

url pkg:pypi/pacparser@1.3.8.dev18

purl pkg:pypi/pacparser@1.3.8.dev18

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-hkfz-s2ek-xbb7

vulnerability	VCID-yjjr-re41-dbde

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pacparser@1.3.8.dev18

url pkg:pypi/pacparser@1.3.8.dev39

purl pkg:pypi/pacparser@1.3.8.dev39

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-hkfz-s2ek-xbb7

vulnerability	VCID-yjjr-re41-dbde

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pacparser@1.3.8.dev39

url pkg:pypi/pacparser@1.3.9.dev7

purl pkg:pypi/pacparser@1.3.9.dev7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-hkfz-s2ek-xbb7

vulnerability	VCID-yjjr-re41-dbde

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pacparser@1.3.9.dev7

url pkg:pypi/pacparser@1.3.9.dev8

purl pkg:pypi/pacparser@1.3.9.dev8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-hkfz-s2ek-xbb7

vulnerability	VCID-yjjr-re41-dbde

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pacparser@1.3.9.dev8

url pkg:pypi/pacparser@1.3.9

purl pkg:pypi/pacparser@1.3.9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-hkfz-s2ek-xbb7

vulnerability	VCID-yjjr-re41-dbde

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pacparser@1.3.9

url pkg:pypi/pacparser@1.4.0.dev1

purl pkg:pypi/pacparser@1.4.0.dev1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-hkfz-s2ek-xbb7

vulnerability	VCID-yjjr-re41-dbde

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pacparser@1.4.0.dev1

url pkg:pypi/pacparser@1.4.0.dev3

purl pkg:pypi/pacparser@1.4.0.dev3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-hkfz-s2ek-xbb7

vulnerability	VCID-yjjr-re41-dbde

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pacparser@1.4.0.dev3

url pkg:pypi/pacparser@1.4.0

purl pkg:pypi/pacparser@1.4.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-yjjr-re41-dbde

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pacparser@1.4.0

url pkg:pypi/pacparser@1.4.1.dev7

purl pkg:pypi/pacparser@1.4.1.dev7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-yjjr-re41-dbde

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pacparser@1.4.1.dev7

url pkg:pypi/pacparser@1.4.1.dev8

purl pkg:pypi/pacparser@1.4.1.dev8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-yjjr-re41-dbde

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pacparser@1.4.1.dev8

url pkg:pypi/pacparser@1.4.1.dev9

purl pkg:pypi/pacparser@1.4.1.dev9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-yjjr-re41-dbde

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pacparser@1.4.1.dev9

url pkg:pypi/pacparser@1.4.1.dev10

purl pkg:pypi/pacparser@1.4.1.dev10

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-yjjr-re41-dbde

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pacparser@1.4.1.dev10

url pkg:pypi/pacparser@1.4.1.dev13

purl pkg:pypi/pacparser@1.4.1.dev13

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-yjjr-re41-dbde

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pacparser@1.4.1.dev13

url pkg:pypi/pacparser@1.4.1.dev14

purl pkg:pypi/pacparser@1.4.1.dev14

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-yjjr-re41-dbde

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pacparser@1.4.1.dev14

url pkg:pypi/pacparser@1.4.1.dev15

purl pkg:pypi/pacparser@1.4.1.dev15

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-yjjr-re41-dbde

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pacparser@1.4.1.dev15

url pkg:pypi/pacparser@1.4.1.dev16

purl pkg:pypi/pacparser@1.4.1.dev16

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-yjjr-re41-dbde

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pacparser@1.4.1.dev16

url pkg:pypi/pacparser@1.4.1

purl pkg:pypi/pacparser@1.4.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-yjjr-re41-dbde

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pacparser@1.4.1

url pkg:pypi/pacparser@1.4.2.dev1

purl pkg:pypi/pacparser@1.4.2.dev1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-yjjr-re41-dbde

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pacparser@1.4.2.dev1

url pkg:pypi/pacparser@1.4.2.dev4

purl pkg:pypi/pacparser@1.4.2.dev4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-yjjr-re41-dbde

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pacparser@1.4.2.dev4

url pkg:pypi/pacparser@1.4.2.dev5

purl pkg:pypi/pacparser@1.4.2.dev5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-yjjr-re41-dbde

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pacparser@1.4.2.dev5

References

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-37360

reference_id

reference_type

scores

value	0.00064
scoring_system	epss
scoring_elements	0.2
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-37360

reference_url

https://github.com/manugarg/pacparser/security/advisories/GHSA-62q6-v997-f7v9

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AC:L/AV:L/A:L/C:L/I:L/PR:N/S:U/UI:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-26T16:13:44Z/

url

https://github.com/manugarg/pacparser/security/advisories/GHSA-62q6-v997-f7v9

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1041425
reference_id	1041425
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1041425

Weaknesses

Exploits

Severity_range_score 5.9 - 5.9

Exploitability 0.5

Weighted_severity 0.0

Risk_score null

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-yjjr-re41-dbde

Vulnerability Instance