Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-6cvd-mxks-jfct

Summary Cross-site scripting (XSS) vulnerability in header.php in Ganglia Web 3.5.8 and 3.5.10 allows remote attackers to inject arbitrary web script or HTML via the host_regex parameter to the default URI, which is processed by get_context.php.

Aliases

alias	CVE-2013-6395

Fixed_packages

url	pkg:deb/debian/ganglia@3.6.0-1?distro=sid
purl	pkg:deb/debian/ganglia@3.6.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ganglia@3.6.0-1%3Fdistro=sid

url	pkg:deb/debian/ganglia@3.6.0-6
purl	pkg:deb/debian/ganglia@3.6.0-6
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ganglia@3.6.0-6

url	pkg:deb/debian/ganglia@3.7.2-4?distro=sid
purl	pkg:deb/debian/ganglia@3.7.2-4?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ganglia@3.7.2-4%3Fdistro=sid

url	pkg:deb/debian/ganglia@3.7.2-6?distro=sid
purl	pkg:deb/debian/ganglia@3.7.2-6?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ganglia@3.7.2-6%3Fdistro=sid

url	pkg:deb/debian/ganglia@3.7.2-7?distro=sid
purl	pkg:deb/debian/ganglia@3.7.2-7?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ganglia@3.7.2-7%3Fdistro=sid

url	pkg:deb/debian/ganglia-web@3.6.1-1?distro=trixie
purl	pkg:deb/debian/ganglia-web@3.6.1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ganglia-web@3.6.1-1%3Fdistro=trixie

url	pkg:deb/debian/ganglia-web@3.7.5%2Bdebian-3?distro=trixie
purl	pkg:deb/debian/ganglia-web@3.7.5%2Bdebian-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ganglia-web@3.7.5%252Bdebian-3%3Fdistro=trixie

url	pkg:deb/debian/ganglia-web@3.7.5%2Bdebian-4?distro=trixie
purl	pkg:deb/debian/ganglia-web@3.7.5%2Bdebian-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ganglia-web@3.7.5%252Bdebian-4%3Fdistro=trixie

url	pkg:deb/debian/ganglia-web@3.7.6%2Bdebian-1.1?distro=trixie
purl	pkg:deb/debian/ganglia-web@3.7.6%2Bdebian-1.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ganglia-web@3.7.6%252Bdebian-1.1%3Fdistro=trixie

Affected_packages

url pkg:deb/debian/ganglia@3.1.7-1%2Bsqueeze1

purl pkg:deb/debian/ganglia@3.1.7-1%2Bsqueeze1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6cvd-mxks-jfct

vulnerability	VCID-7acu-gn7k-xudz

vulnerability	VCID-hudz-fdgm-ducn

vulnerability	VCID-ku3u-hzyv-ukee

vulnerability	VCID-nmjy-zdsd-eybg

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ganglia@3.1.7-1%252Bsqueeze1

url pkg:deb/debian/ganglia@3.3.8-1%2Bnmu1

purl pkg:deb/debian/ganglia@3.3.8-1%2Bnmu1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6cvd-mxks-jfct

vulnerability	VCID-hudz-fdgm-ducn

vulnerability	VCID-ku3u-hzyv-ukee

vulnerability	VCID-nmjy-zdsd-eybg

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ganglia@3.3.8-1%252Bnmu1

References

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2013-6395

reference_id

reference_type

scores

value	0.00497
scoring_system	epss
scoring_elements	0.65898
published_at	2026-04-21T12:55:00Z

value	0.00573
scoring_system	epss
scoring_elements	0.68646
published_at	2026-04-02T12:55:00Z

value	0.00573
scoring_system	epss
scoring_elements	0.68665
published_at	2026-04-04T12:55:00Z

value	0.00573
scoring_system	epss
scoring_elements	0.68642
published_at	2026-04-07T12:55:00Z

value	0.00573
scoring_system	epss
scoring_elements	0.68693
published_at	2026-04-08T12:55:00Z

value	0.00573
scoring_system	epss
scoring_elements	0.68628
published_at	2026-04-01T12:55:00Z

value	0.00573
scoring_system	epss
scoring_elements	0.68734
published_at	2026-04-16T12:55:00Z

value	0.00573
scoring_system	epss
scoring_elements	0.6872
published_at	2026-04-12T12:55:00Z

value	0.00573
scoring_system	epss
scoring_elements	0.68691
published_at	2026-04-13T12:55:00Z

value	0.00573
scoring_system	epss
scoring_elements	0.68744
published_at	2026-04-18T12:55:00Z

value	0.00573
scoring_system	epss
scoring_elements	0.68711
published_at	2026-04-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2013-6395

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6395
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6395

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=730507
reference_id	730507
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=730507

Weaknesses

Exploits

Severity_range_score null

Exploitability 0.5

Weighted_severity 0.0

Risk_score null

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6cvd-mxks-jfct

Vulnerability Instance