Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/mxml@2.6-2

Type deb

Namespace debian

Name mxml

Version 2.6-2

Qualifiers

Subpath

Is_vulnerable true

Next_non_vulnerable_version 4.0.4-5

Latest_non_vulnerable_version 4.0.4-5

Affected_by_vulnerabilities

url VCID-4zz1-24qt-wyge

vulnerability_id VCID-4zz1-24qt-wyge

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-4571

reference_id

reference_type

scores

value	0.00333
scoring_system	epss
scoring_elements	0.56551
published_at	2026-06-11T12:55:00Z

value	0.00333
scoring_system	epss
scoring_elements	0.56671
published_at	2026-06-12T12:55:00Z

value	0.00333
scoring_system	epss
scoring_elements	0.56686
published_at	2026-06-13T12:55:00Z

value	0.00333
scoring_system	epss
scoring_elements	0.56674
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-4571

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4571
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4571

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:N/I:N/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=825855
reference_id	825855
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=825855

fixed_packages

url pkg:deb/debian/mxml@2.10-1

purl pkg:deb/debian/mxml@2.10-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-9tby-9szy-rqdg

vulnerability	VCID-df86-pbkt-hbff

vulnerability	VCID-w3st-vn6a-dbb6

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mxml@2.10-1

aliases CVE-2016-4571

risk_score 1.1

exploitability 0.5

weighted_severity 2.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4zz1-24qt-wyge

url VCID-9tby-9szy-rqdg

vulnerability_id VCID-9tby-9szy-rqdg

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-20592

reference_id

reference_type

scores

value	0.00336
scoring_system	epss
scoring_elements	0.56829
published_at	2026-06-11T12:55:00Z

value	0.00336
scoring_system	epss
scoring_elements	0.5695
published_at	2026-06-12T12:55:00Z

value	0.00336
scoring_system	epss
scoring_elements	0.56964
published_at	2026-06-13T12:55:00Z

value	0.00336
scoring_system	epss
scoring_elements	0.56954
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-20592

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20592
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20592

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.7
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924353
reference_id	924353
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924353

reference_url

https://security.archlinux.org/AVG-922

reference_id

AVG-922

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-922

fixed_packages

url pkg:deb/debian/mxml@3.2-1

purl pkg:deb/debian/mxml@3.2-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-wz94-5y6p-m7ht

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mxml@3.2-1

aliases CVE-2018-20592

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9tby-9szy-rqdg

url VCID-df86-pbkt-hbff

vulnerability_id VCID-df86-pbkt-hbff

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-20004

reference_id

reference_type

scores

value	0.00711
scoring_system	epss
scoring_elements	0.72713
published_at	2026-06-11T12:55:00Z

value	0.00711
scoring_system	epss
scoring_elements	0.72789
published_at	2026-06-12T12:55:00Z

value	0.00711
scoring_system	epss
scoring_elements	0.72804
published_at	2026-06-13T12:55:00Z

value	0.00711
scoring_system	epss
scoring_elements	0.72801
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-20004

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20004
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20004

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=918007
reference_id	918007
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=918007

reference_url

https://security.archlinux.org/AVG-922

reference_id

AVG-922

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-922

fixed_packages

url pkg:deb/debian/mxml@2.12-2

purl pkg:deb/debian/mxml@2.12-2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-9tby-9szy-rqdg

vulnerability	VCID-w3st-vn6a-dbb6

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mxml@2.12-2

aliases CVE-2018-20004

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-df86-pbkt-hbff

url VCID-w3st-vn6a-dbb6

vulnerability_id VCID-w3st-vn6a-dbb6

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-20593

reference_id

reference_type

scores

value	0.00237
scoring_system	epss
scoring_elements	0.46818
published_at	2026-06-11T12:55:00Z

value	0.00237
scoring_system	epss
scoring_elements	0.4696
published_at	2026-06-12T12:55:00Z

value	0.00237
scoring_system	epss
scoring_elements	0.46974
published_at	2026-06-13T12:55:00Z

value	0.00237
scoring_system	epss
scoring_elements	0.46956
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-20593

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20593
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20593

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.7
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924353
reference_id	924353
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924353

reference_url

https://security.archlinux.org/AVG-922

reference_id

AVG-922

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-922

fixed_packages

url pkg:deb/debian/mxml@3.2-1

purl pkg:deb/debian/mxml@3.2-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-wz94-5y6p-m7ht

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mxml@3.2-1

aliases CVE-2018-20593

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-w3st-vn6a-dbb6

url VCID-ztvb-5wqq-kucq

vulnerability_id VCID-ztvb-5wqq-kucq

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-4570

reference_id

reference_type

scores

value	0.00333
scoring_system	epss
scoring_elements	0.56551
published_at	2026-06-11T12:55:00Z

value	0.00333
scoring_system	epss
scoring_elements	0.56671
published_at	2026-06-12T12:55:00Z

value	0.00333
scoring_system	epss
scoring_elements	0.56686
published_at	2026-06-13T12:55:00Z

value	0.00333
scoring_system	epss
scoring_elements	0.56674
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-4570

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4570
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4570

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:N/I:N/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=825855
reference_id	825855
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=825855

fixed_packages

url pkg:deb/debian/mxml@2.10-1

purl pkg:deb/debian/mxml@2.10-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-9tby-9szy-rqdg

vulnerability	VCID-df86-pbkt-hbff

vulnerability	VCID-w3st-vn6a-dbb6

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mxml@2.10-1

aliases CVE-2016-4570

risk_score 1.1

exploitability 0.5

weighted_severity 2.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ztvb-5wqq-kucq

Fixing_vulnerabilities

Risk_score 4.0

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mxml@2.6-2

Package Instance