Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:rpm/redhat/ruby193-rubygem-prototype-rails@3.2.1-1?arch=el6cf

Type rpm

Namespace redhat

Name ruby193-rubygem-prototype-rails

Version 3.2.1-1

Qualifiers

arch	el6cf

Subpath

Is_vulnerable true

Next_non_vulnerable_version null

Latest_non_vulnerable_version null

Affected_by_vulnerabilities

url VCID-66k3-q3b9-5yc5

vulnerability_id VCID-66k3-q3b9-5yc5

summary CFME: dangerous send method in performance.rb

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3642.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3642.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2014-3642

reference_id

reference_type

scores

value	0.00534
scoring_system	epss
scoring_elements	0.67739
published_at	2026-06-04T12:55:00Z

value	0.00534
scoring_system	epss
scoring_elements	0.67779
published_at	2026-06-05T12:55:00Z

value	0.00534
scoring_system	epss
scoring_elements	0.67786
published_at	2026-06-06T12:55:00Z

value	0.00534
scoring_system	epss
scoring_elements	0.67776
published_at	2026-06-07T12:55:00Z

value	0.00534
scoring_system	epss
scoring_elements	0.67759
published_at	2026-06-08T12:55:00Z

value	0.00534
scoring_system	epss
scoring_elements	0.67775
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2014-3642

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1092894
reference_id	1092894
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1092894

reference_url	https://access.redhat.com/errata/RHSA-2014:1317
reference_id	RHSA-2014:1317
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2014:1317

fixed_packages

aliases CVE-2014-3642

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-66k3-q3b9-5yc5

url

VCID-cm7h-jhnn-xbap

vulnerability_id

VCID-cm7h-jhnn-xbap

summary

2: miq_policy/explorer SQL injection

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2050.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2050.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2013-2050

reference_id

reference_type

scores

value	0.54161
scoring_system	epss
scoring_elements	0.98062
published_at	2026-06-09T12:55:00Z

value	0.54161
scoring_system	epss
scoring_elements	0.98063
published_at	2026-06-07T12:55:00Z

value	0.54161
scoring_system	epss
scoring_elements	0.98064
published_at	2026-06-06T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2013-2050

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=959062
reference_id	959062
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=959062

fixed_packages

aliases

CVE-2013-2050

risk_score

1.0

exploitability

2.0

weighted_severity

0.5

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-cm7h-jhnn-xbap

url VCID-ega3-9wzs-muee

vulnerability_id VCID-ega3-9wzs-muee

summary interface: Ruby code injection

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4172.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4172.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2013-4172

reference_id

reference_type

scores

value	0.00558
scoring_system	epss
scoring_elements	0.68573
published_at	2026-06-04T12:55:00Z

value	0.00558
scoring_system	epss
scoring_elements	0.68614
published_at	2026-06-05T12:55:00Z

value	0.00558
scoring_system	epss
scoring_elements	0.68622
published_at	2026-06-06T12:55:00Z

value	0.00558
scoring_system	epss
scoring_elements	0.68615
published_at	2026-06-07T12:55:00Z

value	0.00558
scoring_system	epss
scoring_elements	0.686
published_at	2026-06-08T12:55:00Z

value	0.00558
scoring_system	epss
scoring_elements	0.68618
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2013-4172

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=988644
reference_id	988644
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=988644

reference_url	https://access.redhat.com/errata/RHSA-2013:1157
reference_id	RHSA-2013:1157
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:1157

fixed_packages

aliases CVE-2013-4172

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ega3-9wzs-muee

url VCID-faaq-hgah-37av

vulnerability_id VCID-faaq-hgah-37av

summary Random numbers generated by contrib/pgcrypto functions may be easy for another database user to guessmore details

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1900.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1900.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2013-1900

reference_id

reference_type

scores

value	0.00566
scoring_system	epss
scoring_elements	0.68821
published_at	2026-06-04T12:55:00Z

value	0.00566
scoring_system	epss
scoring_elements	0.68861
published_at	2026-06-07T12:55:00Z

value	0.00566
scoring_system	epss
scoring_elements	0.68869
published_at	2026-06-06T12:55:00Z

value	0.00566
scoring_system	epss
scoring_elements	0.68846
published_at	2026-06-08T12:55:00Z

value	0.00566
scoring_system	epss
scoring_elements	0.68865
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2013-1900

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1899
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1899

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1900
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1900

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1901
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1901

reference_url	https://www.postgresql.org/support/security/CVE-2013-1900/
reference_id
reference_type
scores
url	https://www.postgresql.org/support/security/CVE-2013-1900/

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=929255
reference_id	929255
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=929255

reference_url	https://security.gentoo.org/glsa/201408-15
reference_id	GLSA-201408-15
reference_type
scores
url	https://security.gentoo.org/glsa/201408-15

reference_url	https://access.redhat.com/errata/RHSA-2013:1475
reference_id	RHSA-2013:1475
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:1475

reference_url	https://usn.ubuntu.com/1789-1/
reference_id	USN-1789-1
reference_type
scores
url	https://usn.ubuntu.com/1789-1/

fixed_packages

aliases CVE-2013-1900

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-faaq-hgah-37av

url VCID-kbua-zg8d-1bdy

vulnerability_id VCID-kbua-zg8d-1bdy

summary 2: static secret_token.rb value

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2049.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2049.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2013-2049

reference_id

reference_type

scores

value	0.0016
scoring_system	epss
scoring_elements	0.36585
published_at	2026-06-04T12:55:00Z

value	0.0016
scoring_system	epss
scoring_elements	0.36679
published_at	2026-06-05T12:55:00Z

value	0.0016
scoring_system	epss
scoring_elements	0.36687
published_at	2026-06-06T12:55:00Z

value	0.0016
scoring_system	epss
scoring_elements	0.36651
published_at	2026-06-07T12:55:00Z

value	0.0016
scoring_system	epss
scoring_elements	0.36614
published_at	2026-06-08T12:55:00Z

value	0.0016
scoring_system	epss
scoring_elements	0.36624
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2013-2049

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=959041
reference_id	959041
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=959041

fixed_packages

aliases CVE-2013-2049

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-kbua-zg8d-1bdy

url

VCID-swkw-zcep-subw

vulnerability_id

VCID-swkw-zcep-subw

summary

A connection request containing a database name that begins with "-" may be crafted to damage or destroy files within a server's data directorymore details

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1899.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1899.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2013-1899

reference_id

reference_type

scores

value	0.81124
scoring_system	epss
scoring_elements	0.9918
published_at	2026-06-04T12:55:00Z

value	0.81124
scoring_system	epss
scoring_elements	0.99181
published_at	2026-06-07T12:55:00Z

value	0.81124
scoring_system	epss
scoring_elements	0.99182
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2013-1899

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1899
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1899

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1900
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1900

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1901
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1901

reference_url	https://www.postgresql.org/support/security/CVE-2013-1899/
reference_id
reference_type
scores
url	https://www.postgresql.org/support/security/CVE-2013-1899/

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=929223
reference_id	929223
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=929223

reference_url	https://security.gentoo.org/glsa/201408-15
reference_id	GLSA-201408-15
reference_type
scores
url	https://security.gentoo.org/glsa/201408-15

reference_url	https://usn.ubuntu.com/1789-1/
reference_id	USN-1789-1
reference_type
scores
url	https://usn.ubuntu.com/1789-1/

fixed_packages

aliases

CVE-2013-1899

risk_score

1.4

exploitability

2.0

weighted_severity

0.7

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-swkw-zcep-subw

url VCID-t2tu-jx5e-5uhx

vulnerability_id VCID-t2tu-jx5e-5uhx

summary An unprivileged user can run commands that could interfere with in-progress backups.more details

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1901.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1901.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2013-1901

reference_id

reference_type

scores

value	0.00215
scoring_system	epss
scoring_elements	0.44015
published_at	2026-06-04T12:55:00Z

value	0.00215
scoring_system	epss
scoring_elements	0.44084
published_at	2026-06-05T12:55:00Z

value	0.00215
scoring_system	epss
scoring_elements	0.44092
published_at	2026-06-06T12:55:00Z

value	0.00215
scoring_system	epss
scoring_elements	0.44067
published_at	2026-06-07T12:55:00Z

value	0.00215
scoring_system	epss
scoring_elements	0.44031
published_at	2026-06-08T12:55:00Z

value	0.00215
scoring_system	epss
scoring_elements	0.44042
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2013-1901

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1899
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1899

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1900
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1900

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1901
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1901

reference_url	https://www.postgresql.org/support/security/CVE-2013-1901/
reference_id
reference_type
scores
url	https://www.postgresql.org/support/security/CVE-2013-1901/

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=929328
reference_id	929328
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=929328

reference_url	https://security.gentoo.org/glsa/201408-15
reference_id	GLSA-201408-15
reference_type
scores
url	https://security.gentoo.org/glsa/201408-15

reference_url	https://usn.ubuntu.com/1789-1/
reference_id	USN-1789-1
reference_type
scores
url	https://usn.ubuntu.com/1789-1/

fixed_packages

aliases CVE-2013-1901

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-t2tu-jx5e-5uhx

url VCID-vb9g-cbjt-kybe

vulnerability_id VCID-vb9g-cbjt-kybe

summary CFME: default routes expose controllers and actions

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0140.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0140.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2014-0140

reference_id

reference_type

scores

value	0.00243
scoring_system	epss
scoring_elements	0.47724
published_at	2026-06-04T12:55:00Z

value	0.00243
scoring_system	epss
scoring_elements	0.47787
published_at	2026-06-05T12:55:00Z

value	0.00243
scoring_system	epss
scoring_elements	0.47789
published_at	2026-06-06T12:55:00Z

value	0.00243
scoring_system	epss
scoring_elements	0.47771
published_at	2026-06-07T12:55:00Z

value	0.00243
scoring_system	epss
scoring_elements	0.47742
published_at	2026-06-08T12:55:00Z

value	0.00243
scoring_system	epss
scoring_elements	0.47754
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2014-0140

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1077359
reference_id	1077359
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1077359

reference_url	https://access.redhat.com/errata/RHSA-2014:1317
reference_id	RHSA-2014:1317
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2014:1317

fixed_packages

aliases CVE-2014-0140

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vb9g-cbjt-kybe

url VCID-vf3m-pymd-zbam

vulnerability_id VCID-vf3m-pymd-zbam

summary CloudForms: user password stored in recoverable format

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4423.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4423.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2013-4423

reference_id

reference_type

scores

value	0.00104
scoring_system	epss
scoring_elements	0.27971
published_at	2026-06-04T12:55:00Z

value	0.00104
scoring_system	epss
scoring_elements	0.2804
published_at	2026-06-05T12:55:00Z

value	0.00104
scoring_system	epss
scoring_elements	0.2799
published_at	2026-06-06T12:55:00Z

value	0.00104
scoring_system	epss
scoring_elements	0.27954
published_at	2026-06-07T12:55:00Z

value	0.00104
scoring_system	epss
scoring_elements	0.2791
published_at	2026-06-08T12:55:00Z

value	0.00104
scoring_system	epss
scoring_elements	0.27917
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2013-4423

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1018345
reference_id	1018345
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1018345

fixed_packages

aliases CVE-2013-4423

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vf3m-pymd-zbam

url VCID-vmfv-kch1-uyh6

vulnerability_id VCID-vmfv-kch1-uyh6

summary EVM: CSRF

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-0185.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-0185.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2013-0185

reference_id

reference_type

scores

value	0.00099
scoring_system	epss
scoring_elements	0.27011
published_at	2026-06-08T12:55:00Z

value	0.00099
scoring_system	epss
scoring_elements	0.27108
published_at	2026-06-05T12:55:00Z

value	0.00099
scoring_system	epss
scoring_elements	0.271
published_at	2026-06-06T12:55:00Z

value	0.00099
scoring_system	epss
scoring_elements	0.2706
published_at	2026-06-07T12:55:00Z

value	0.00099
scoring_system	epss
scoring_elements	0.27018
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2013-0185

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=895345
reference_id	895345
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=895345

fixed_packages

aliases CVE-2013-0185

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vmfv-kch1-uyh6

Fixing_vulnerabilities

Risk_score 1.4

Resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ruby193-rubygem-prototype-rails@3.2.1-1%3Farch=el6cf

Package Instance