Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:rpm/redhat/openshift-origin-cartridge-cron@1.7.6-1.1?arch=el6op
Typerpm
Namespaceredhat
Nameopenshift-origin-cartridge-cron
Version1.7.6-1.1
Qualifiers
arch el6op
Subpath
Is_vulnerabletrue
Next_non_vulnerable_versionnull
Latest_non_vulnerable_versionnull
Affected_by_vulnerabilities
0
url VCID-hx86-64zz-8bds
vulnerability_id VCID-hx86-64zz-8bds
summary 
Jenkins Cross-Site Request Forgery vulnerabilities
Multiple cross-site request forgery (CSRF) vulnerabilities in Jenkins before 1.514, LTS before 1.509.1, and Enterprise 1.466.x before 1.466.14.1 and 1.480.x before 1.480.4.1 allow remote attackers to hijack the authentication of administrators for requests that (1) execute arbitrary code or (2) initiate deployment of binaries to a Maven repository via unspecified vectors.
references
0
reference_url https://access.redhat.com/errata/RHEA-2013:1032
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHEA-2013:1032
1
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2034.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2034.json
2
reference_url https://access.redhat.com/security/cve/CVE-2013-2034
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/security/cve/CVE-2013-2034
3
reference_url https://api.first.org/data/v1/epss?cve=CVE-2013-2034
reference_id
reference_type
scores
0
value 0.00332
scoring_system epss
scoring_elements 0.56322
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2013-2034
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=958958
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=958958
5
reference_url https://issues.jenkins-ci.org/browse/SECURITY-63
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://issues.jenkins-ci.org/browse/SECURITY-63
6
reference_url https://issues.jenkins-ci.org/browse/SECURITY-69
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://issues.jenkins-ci.org/browse/SECURITY-69
7
reference_url https://nvd.nist.gov/vuln/detail/CVE-2013-2034
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2013-2034
8
reference_url https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2013-05-02
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2013-05-02
9
reference_url http://www.cloudbees.com/jenkins-advisory/jenkins-security-advisory-2013-05-02.cb
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.cloudbees.com/jenkins-advisory/jenkins-security-advisory-2013-05-02.cb
fixed_packages
aliases CVE-2013-2034, GHSA-fg4r-f9j2-36mw
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hx86-64zz-8bds
1
url VCID-hxhy-qrkz-fkf5
vulnerability_id VCID-hxhy-qrkz-fkf5
summary Cross-site scripting (XSS) vulnerability in ZeroClipboard.swf and ZeroClipboard10.swf in ZeroClipboard before 1.0.8, as used in em-shorty, RepRapCalculator, Fulcrum, Django, aCMS, and other products, allows remote attackers to inject arbitrary web script or HTML via the id parameter. NOTE: this is might be the same vulnerability as CVE-2013-1463. If so, it is likely that CVE-2013-1463 will be REJECTed.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1808.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1808.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2013-1808
reference_id
reference_type
scores
0
value 0.01856
scoring_system epss
scoring_elements 0.83388
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2013-1808
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=918054
reference_id 918054
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=918054
fixed_packages
aliases CVE-2013-1808
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hxhy-qrkz-fkf5
2
url VCID-z5ed-ujrf-2ka2
vulnerability_id VCID-z5ed-ujrf-2ka2
summary 
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVE-2013-2033 Jenkins: Build Description XSS
references
0
reference_url https://access.redhat.com/errata/RHEA-2013:1032
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHEA-2013:1032
1
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2033.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2033.json
2
reference_url https://api.first.org/data/v1/epss?cve=CVE-2013-2033
reference_id
reference_type
scores
0
value 0.00178
scoring_system epss
scoring_elements 0.39046
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2013-2033
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=958957
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=958957
4
reference_url https://exchange.xforce.ibmcloud.com/vulnerabilities/84004
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://exchange.xforce.ibmcloud.com/vulnerabilities/84004
5
reference_url https://issues.jenkins-ci.org/browse/SECURITY-67
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://issues.jenkins-ci.org/browse/SECURITY-67
6
reference_url https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2013-05-02
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2013-05-02
7
reference_url http://www.cloudbees.com/jenkins-advisory/jenkins-security-advisory-2013-05-02.cb
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.cloudbees.com/jenkins-advisory/jenkins-security-advisory-2013-05-02.cb
8
reference_url https://access.redhat.com/security/cve/CVE-2013-2033
reference_id CVE-2013-2033
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/security/cve/CVE-2013-2033
9
reference_url https://nvd.nist.gov/vuln/detail/CVE-2013-2033
reference_id CVE-2013-2033
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2013-2033
10
reference_url https://github.com/advisories/GHSA-826f-32qm-vm3j
reference_id GHSA-826f-32qm-vm3j
reference_type
scores
url https://github.com/advisories/GHSA-826f-32qm-vm3j
fixed_packages
aliases CVE-2013-2033, GHSA-826f-32qm-vm3j
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-z5ed-ujrf-2ka2
Fixing_vulnerabilities
Risk_score3.1
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openshift-origin-cartridge-cron@1.7.6-1.1%3Farch=el6op