Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:deb/debian/matomo@5.3.1%2Bdfsg-1?distro=trixie
Typedeb
Namespacedebian
Namematomo
Version5.3.1+dfsg-1
Qualifiers
distro trixie
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version5.8.0-1
Latest_non_vulnerable_version5.8.0-1
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-2aqx-we3j-rybv
vulnerability_id VCID-2aqx-we3j-rybv
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2010-2786
reference_id
reference_type
scores
0
value 0.00507
scoring_system epss
scoring_elements 0.6657
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2010-2786
fixed_packages
0
url pkg:deb/debian/matomo@0?distro=trixie
purl pkg:deb/debian/matomo@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@0%3Fdistro=trixie
1
url pkg:deb/debian/matomo@5.3.1%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/matomo@5.3.1%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@5.3.1%252Bdfsg-1%3Fdistro=trixie
2
url pkg:deb/debian/matomo@5.8.0-1?distro=trixie
purl pkg:deb/debian/matomo@5.8.0-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@5.8.0-1%3Fdistro=trixie
aliases CVE-2010-2786
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2aqx-we3j-rybv
1
url VCID-4mcg-tyw5-zbhh
vulnerability_id VCID-4mcg-tyw5-zbhh
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2011-0398
reference_id
reference_type
scores
0
value 0.00262
scoring_system epss
scoring_elements 0.4976
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2011-0398
fixed_packages
0
url pkg:deb/debian/matomo@0?distro=trixie
purl pkg:deb/debian/matomo@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@0%3Fdistro=trixie
1
url pkg:deb/debian/matomo@5.3.1%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/matomo@5.3.1%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@5.3.1%252Bdfsg-1%3Fdistro=trixie
2
url pkg:deb/debian/matomo@5.8.0-1?distro=trixie
purl pkg:deb/debian/matomo@5.8.0-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@5.8.0-1%3Fdistro=trixie
aliases CVE-2011-0398
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4mcg-tyw5-zbhh
2
url VCID-6jry-bx33-suh9
vulnerability_id VCID-6jry-bx33-suh9
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-12215
reference_id
reference_type
scores
0
value 0.00213
scoring_system epss
scoring_elements 0.4387
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-12215
fixed_packages
0
url pkg:deb/debian/matomo@0?distro=trixie
purl pkg:deb/debian/matomo@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@0%3Fdistro=trixie
1
url pkg:deb/debian/matomo@5.3.1%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/matomo@5.3.1%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@5.3.1%252Bdfsg-1%3Fdistro=trixie
2
url pkg:deb/debian/matomo@5.8.0-1?distro=trixie
purl pkg:deb/debian/matomo@5.8.0-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@5.8.0-1%3Fdistro=trixie
aliases CVE-2019-12215
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6jry-bx33-suh9
3
url VCID-96kx-sctq-q7an
vulnerability_id VCID-96kx-sctq-q7an
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2011-0004
reference_id
reference_type
scores
0
value 0.00705
scoring_system epss
scoring_elements 0.72423
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2011-0004
fixed_packages
0
url pkg:deb/debian/matomo@0?distro=trixie
purl pkg:deb/debian/matomo@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@0%3Fdistro=trixie
1
url pkg:deb/debian/matomo@5.3.1%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/matomo@5.3.1%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@5.3.1%252Bdfsg-1%3Fdistro=trixie
2
url pkg:deb/debian/matomo@5.8.0-1?distro=trixie
purl pkg:deb/debian/matomo@5.8.0-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@5.8.0-1%3Fdistro=trixie
aliases CVE-2011-0004
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-96kx-sctq-q7an
4
url VCID-97qx-yu3h-yfez
vulnerability_id VCID-97qx-yu3h-yfez
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2011-0400
reference_id
reference_type
scores
0
value 0.00357
scoring_system epss
scoring_elements 0.58221
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2011-0400
fixed_packages
0
url pkg:deb/debian/matomo@0?distro=trixie
purl pkg:deb/debian/matomo@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@0%3Fdistro=trixie
1
url pkg:deb/debian/matomo@5.3.1%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/matomo@5.3.1%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@5.3.1%252Bdfsg-1%3Fdistro=trixie
2
url pkg:deb/debian/matomo@5.8.0-1?distro=trixie
purl pkg:deb/debian/matomo@5.8.0-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@5.8.0-1%3Fdistro=trixie
aliases CVE-2011-0400
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-97qx-yu3h-yfez
5
url VCID-9at6-8ykc-gfdx
vulnerability_id VCID-9at6-8ykc-gfdx
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2011-0399
reference_id
reference_type
scores
0
value 0.00389
scoring_system epss
scoring_elements 0.60214
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2011-0399
fixed_packages
0
url pkg:deb/debian/matomo@0?distro=trixie
purl pkg:deb/debian/matomo@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@0%3Fdistro=trixie
1
url pkg:deb/debian/matomo@5.3.1%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/matomo@5.3.1%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@5.3.1%252Bdfsg-1%3Fdistro=trixie
2
url pkg:deb/debian/matomo@5.8.0-1?distro=trixie
purl pkg:deb/debian/matomo@5.8.0-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@5.8.0-1%3Fdistro=trixie
aliases CVE-2011-0399
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9at6-8ykc-gfdx
6
url VCID-cbqq-8qua-8qd3
vulnerability_id VCID-cbqq-8qua-8qd3
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2010-1453
reference_id
reference_type
scores
0
value 0.02055
scoring_system epss
scoring_elements 0.84175
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2010-1453
1
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/33814.txt
reference_id CVE-2010-1453;OSVDB-64359
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/33814.txt
2
reference_url https://www.securityfocus.com/bid/39144/info
reference_id CVE-2010-1453;OSVDB-64359
reference_type exploit
scores
url https://www.securityfocus.com/bid/39144/info
fixed_packages
0
url pkg:deb/debian/matomo@0?distro=trixie
purl pkg:deb/debian/matomo@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@0%3Fdistro=trixie
1
url pkg:deb/debian/matomo@5.3.1%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/matomo@5.3.1%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@5.3.1%252Bdfsg-1%3Fdistro=trixie
2
url pkg:deb/debian/matomo@5.8.0-1?distro=trixie
purl pkg:deb/debian/matomo@5.8.0-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@5.8.0-1%3Fdistro=trixie
aliases CVE-2010-1453
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-cbqq-8qua-8qd3
7
url VCID-eepd-vyxv-x3hx
vulnerability_id VCID-eepd-vyxv-x3hx
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2009-1085
reference_id
reference_type
scores
0
value 0.0026
scoring_system epss
scoring_elements 0.49566
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2009-1085
fixed_packages
0
url pkg:deb/debian/matomo@0?distro=trixie
purl pkg:deb/debian/matomo@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@0%3Fdistro=trixie
1
url pkg:deb/debian/matomo@5.3.1%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/matomo@5.3.1%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@5.3.1%252Bdfsg-1%3Fdistro=trixie
2
url pkg:deb/debian/matomo@5.8.0-1?distro=trixie
purl pkg:deb/debian/matomo@5.8.0-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@5.8.0-1%3Fdistro=trixie
aliases CVE-2009-1085
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-eepd-vyxv-x3hx
8
url VCID-ftxv-cf66-fqby
vulnerability_id VCID-ftxv-cf66-fqby
summary 
Piwik (now Matomo) Reveals Sensitive Information by Accepting Input from `POST` Requests
Piwik before 1.11 accepts input from a POST request instead of a GET request in unspecified circumstances, which might allow attackers to obtain sensitive information by leveraging the logging of parameters.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2013-2633
reference_id
reference_type
scores
0
value 0.00257
scoring_system epss
scoring_elements 0.49341
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2013-2633
1
reference_url https://github.com/matomo-org/matomo
reference_id
reference_type
scores
0
value 6.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/matomo-org/matomo
2
reference_url https://web.archive.org/web/20130313093839/http://piwik.org/blog/2013/03/piwik-1-11
reference_id
reference_type
scores
0
value 6.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20130313093839/http://piwik.org/blog/2013/03/piwik-1-11
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2013-2633
reference_id CVE-2013-2633
reference_type
scores
0
value 6.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2013-2633
4
reference_url https://github.com/advisories/GHSA-v8h8-93mx-82h5
reference_id GHSA-v8h8-93mx-82h5
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-v8h8-93mx-82h5
fixed_packages
0
url pkg:deb/debian/matomo@0?distro=trixie
purl pkg:deb/debian/matomo@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@0%3Fdistro=trixie
1
url pkg:deb/debian/matomo@5.3.1%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/matomo@5.3.1%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@5.3.1%252Bdfsg-1%3Fdistro=trixie
2
url pkg:deb/debian/matomo@5.8.0-1?distro=trixie
purl pkg:deb/debian/matomo@5.8.0-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@5.8.0-1%3Fdistro=trixie
aliases CVE-2013-2633, GHSA-v8h8-93mx-82h5
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ftxv-cf66-fqby
9
url VCID-ghky-ke52-9ud1
vulnerability_id VCID-ghky-ke52-9ud1
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2009-4140
reference_id
reference_type
scores
0
value 0.91085
scoring_system epss
scoring_elements 0.99659
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2009-4140
1
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/29091.txt
reference_id CVE-2011-4275;CVE-2009-4140;OSVDB-59051
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/29091.txt
2
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/remote/29210.rb
reference_id CVE-2011-4275;OSVDB-59051;CVE-2009-4140
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/remote/29210.rb
3
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/10532.txt
reference_id CVE-2011-4275;OSVDB-59051;CVE-2009-4140
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/10532.txt
4
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/24969.txt
reference_id CVE-2011-4275;OSVDB-59051;CVE-2009-4140
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/24969.txt
5
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/remote/24529.rb
reference_id OSVDB-90222;CVE-2011-4275;CVE-2009-4140;OSVDB-59051
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/remote/24529.rb
6
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/24492.php
reference_id OSVDB-90222;CVE-2011-4275;CVE-2009-4140;OSVDB-59051
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/24492.php
7
reference_url http://www.zeroscience.mk/en/vulnerabilities/ZSL-2013-5126.php
reference_id OSVDB-90222;CVE-2011-4275;CVE-2009-4140;OSVDB-59051
reference_type exploit
scores
url http://www.zeroscience.mk/en/vulnerabilities/ZSL-2013-5126.php
fixed_packages
0
url pkg:deb/debian/matomo@0?distro=trixie
purl pkg:deb/debian/matomo@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@0%3Fdistro=trixie
1
url pkg:deb/debian/matomo@5.3.1%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/matomo@5.3.1%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@5.3.1%252Bdfsg-1%3Fdistro=trixie
2
url pkg:deb/debian/matomo@5.8.0-1?distro=trixie
purl pkg:deb/debian/matomo@5.8.0-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@5.8.0-1%3Fdistro=trixie
aliases CVE-2009-4140
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ghky-ke52-9ud1
10
url VCID-ht8u-v8ep-uudj
vulnerability_id VCID-ht8u-v8ep-uudj
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2013-0194
reference_id
reference_type
scores
0
value 0.00472
scoring_system epss
scoring_elements 0.64957
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2013-0194
fixed_packages
0
url pkg:deb/debian/matomo@0?distro=trixie
purl pkg:deb/debian/matomo@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@0%3Fdistro=trixie
1
url pkg:deb/debian/matomo@5.3.1%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/matomo@5.3.1%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@5.3.1%252Bdfsg-1%3Fdistro=trixie
2
url pkg:deb/debian/matomo@5.8.0-1?distro=trixie
purl pkg:deb/debian/matomo@5.8.0-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@5.8.0-1%3Fdistro=trixie
aliases CVE-2013-0194
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ht8u-v8ep-uudj
11
url VCID-jbm7-9uag-kbhf
vulnerability_id VCID-jbm7-9uag-kbhf
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2015-7815
reference_id
reference_type
scores
0
value 0.01351
scoring_system epss
scoring_elements 0.80407
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2015-7815
fixed_packages
0
url pkg:deb/debian/matomo@0?distro=trixie
purl pkg:deb/debian/matomo@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@0%3Fdistro=trixie
1
url pkg:deb/debian/matomo@5.3.1%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/matomo@5.3.1%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@5.3.1%252Bdfsg-1%3Fdistro=trixie
2
url pkg:deb/debian/matomo@5.8.0-1?distro=trixie
purl pkg:deb/debian/matomo@5.8.0-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@5.8.0-1%3Fdistro=trixie
aliases CVE-2015-7815
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jbm7-9uag-kbhf
12
url VCID-jpuy-xz3s-e7b7
vulnerability_id VCID-jpuy-xz3s-e7b7
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2013-0193
reference_id
reference_type
scores
0
value 0.00472
scoring_system epss
scoring_elements 0.64957
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2013-0193
fixed_packages
0
url pkg:deb/debian/matomo@0?distro=trixie
purl pkg:deb/debian/matomo@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@0%3Fdistro=trixie
1
url pkg:deb/debian/matomo@5.3.1%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/matomo@5.3.1%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@5.3.1%252Bdfsg-1%3Fdistro=trixie
2
url pkg:deb/debian/matomo@5.8.0-1?distro=trixie
purl pkg:deb/debian/matomo@5.8.0-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@5.8.0-1%3Fdistro=trixie
aliases CVE-2013-0193
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jpuy-xz3s-e7b7
13
url VCID-k55e-kgkn-73dr
vulnerability_id VCID-k55e-kgkn-73dr
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2011-0401
reference_id
reference_type
scores
0
value 0.0119
scoring_system epss
scoring_elements 0.79146
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2011-0401
fixed_packages
0
url pkg:deb/debian/matomo@0?distro=trixie
purl pkg:deb/debian/matomo@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@0%3Fdistro=trixie
1
url pkg:deb/debian/matomo@5.3.1%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/matomo@5.3.1%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@5.3.1%252Bdfsg-1%3Fdistro=trixie
2
url pkg:deb/debian/matomo@5.8.0-1?distro=trixie
purl pkg:deb/debian/matomo@5.8.0-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@5.8.0-1%3Fdistro=trixie
aliases CVE-2011-0401
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-k55e-kgkn-73dr
14
url VCID-py6n-5yzy-wygv
vulnerability_id VCID-py6n-5yzy-wygv
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-34104
reference_id
reference_type
scores
0
value 0.7356
scoring_system epss
scoring_elements 0.98832
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-34104
1
reference_url https://matomo.org/faq/plugins/faq_21/
reference_id faq_21
reference_type
scores
0
value 9.4
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-15T13:34:41Z/
url https://matomo.org/faq/plugins/faq_21/
2
reference_url https://matomo.org/changelog/piwik-3-0-3/
reference_id piwik-3-0-3
reference_type
scores
0
value 9.4
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-15T13:34:41Z/
url https://matomo.org/changelog/piwik-3-0-3/
3
reference_url https://www.vulncheck.com/advisories/piwik-authenticated-rce-via-custom-plugin-upload
reference_id piwik-authenticated-rce-via-custom-plugin-upload
reference_type
scores
0
value 9.4
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-15T13:34:41Z/
url https://www.vulncheck.com/advisories/piwik-authenticated-rce-via-custom-plugin-upload
4
reference_url https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/unix/webapp/piwik_superuser_plugin_upload.rb
reference_id piwik_superuser_plugin_upload.rb
reference_type
scores
0
value 9.4
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-15T13:34:41Z/
url https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/unix/webapp/piwik_superuser_plugin_upload.rb
5
reference_url https://firefart.at/post/turning_piwik_superuser_creds_into_rce/
reference_id turning_piwik_superuser_creds_into_rce
reference_type
scores
0
value 9.4
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-15T13:34:41Z/
url https://firefart.at/post/turning_piwik_superuser_creds_into_rce/
fixed_packages
0
url pkg:deb/debian/matomo@0?distro=trixie
purl pkg:deb/debian/matomo@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@0%3Fdistro=trixie
1
url pkg:deb/debian/matomo@5.3.1%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/matomo@5.3.1%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@5.3.1%252Bdfsg-1%3Fdistro=trixie
2
url pkg:deb/debian/matomo@5.8.0-1?distro=trixie
purl pkg:deb/debian/matomo@5.8.0-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@5.8.0-1%3Fdistro=trixie
aliases CVE-2025-34104
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-py6n-5yzy-wygv
15
url VCID-q76g-jdmt-zfa3
vulnerability_id VCID-q76g-jdmt-zfa3
summary 
Piwik (now Matomo) Vulnerable to Arbitrary Code Execution
Unspecified vulnerability in Piwik 1.2 through 1.4 allows remote attackers with the view permission to execute arbitrary code via unknown attack vectors.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2011-4941
reference_id
reference_type
scores
0
value 0.01404
scoring_system epss
scoring_elements 0.80761
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2011-4941
1
reference_url https://github.com/matomo-org/matomo
reference_id
reference_type
scores
0
value 6.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/matomo-org/matomo
2
reference_url https://web.archive.org/web/20110626223028/http://piwik.org/blog/2011/06/piwik-1-5-security-advisory
reference_id
reference_type
scores
0
value 6.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20110626223028/http://piwik.org/blog/2011/06/piwik-1-5-security-advisory
3
reference_url http://www.openwall.com/lists/oss-security/2012/03/18/1
reference_id
reference_type
scores
0
value 6.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U
1
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.openwall.com/lists/oss-security/2012/03/18/1
4
reference_url http://www.openwall.com/lists/oss-security/2012/03/19/8
reference_id
reference_type
scores
0
value 6.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U
1
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.openwall.com/lists/oss-security/2012/03/19/8
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2011-4941
reference_id CVE-2011-4941
reference_type
scores
0
value 6.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2011-4941
6
reference_url https://github.com/advisories/GHSA-2qr8-h6pq-m27v
reference_id GHSA-2qr8-h6pq-m27v
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-2qr8-h6pq-m27v
fixed_packages
0
url pkg:deb/debian/matomo@0?distro=trixie
purl pkg:deb/debian/matomo@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@0%3Fdistro=trixie
1
url pkg:deb/debian/matomo@5.3.1%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/matomo@5.3.1%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@5.3.1%252Bdfsg-1%3Fdistro=trixie
2
url pkg:deb/debian/matomo@5.8.0-1?distro=trixie
purl pkg:deb/debian/matomo@5.8.0-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@5.8.0-1%3Fdistro=trixie
aliases CVE-2011-4941, GHSA-2qr8-h6pq-m27v
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-q76g-jdmt-zfa3
16
url VCID-uxfm-cu4d-bqhn
vulnerability_id VCID-uxfm-cu4d-bqhn
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2013-0195
reference_id
reference_type
scores
0
value 0.00472
scoring_system epss
scoring_elements 0.64957
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2013-0195
fixed_packages
0
url pkg:deb/debian/matomo@0?distro=trixie
purl pkg:deb/debian/matomo@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@0%3Fdistro=trixie
1
url pkg:deb/debian/matomo@5.3.1%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/matomo@5.3.1%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@5.3.1%252Bdfsg-1%3Fdistro=trixie
2
url pkg:deb/debian/matomo@5.8.0-1?distro=trixie
purl pkg:deb/debian/matomo@5.8.0-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@5.8.0-1%3Fdistro=trixie
aliases CVE-2013-0195
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-uxfm-cu4d-bqhn
17
url VCID-v6ua-9ww4-4qb8
vulnerability_id VCID-v6ua-9ww4-4qb8
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2015-7816
reference_id
reference_type
scores
0
value 0.00423
scoring_system epss
scoring_elements 0.62419
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2015-7816
fixed_packages
0
url pkg:deb/debian/matomo@0?distro=trixie
purl pkg:deb/debian/matomo@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@0%3Fdistro=trixie
1
url pkg:deb/debian/matomo@5.3.1%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/matomo@5.3.1%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@5.3.1%252Bdfsg-1%3Fdistro=trixie
2
url pkg:deb/debian/matomo@5.8.0-1?distro=trixie
purl pkg:deb/debian/matomo@5.8.0-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@5.8.0-1%3Fdistro=trixie
aliases CVE-2015-7816
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-v6ua-9ww4-4qb8
18
url VCID-wq1n-dq4p-n7e8
vulnerability_id VCID-wq1n-dq4p-n7e8
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2009-4137
reference_id
reference_type
scores
0
value 0.04884
scoring_system epss
scoring_elements 0.89738
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2009-4137
fixed_packages
0
url pkg:deb/debian/matomo@0?distro=trixie
purl pkg:deb/debian/matomo@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@0%3Fdistro=trixie
1
url pkg:deb/debian/matomo@5.3.1%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/matomo@5.3.1%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@5.3.1%252Bdfsg-1%3Fdistro=trixie
2
url pkg:deb/debian/matomo@5.8.0-1?distro=trixie
purl pkg:deb/debian/matomo@5.8.0-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@5.8.0-1%3Fdistro=trixie
aliases CVE-2009-4137
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wq1n-dq4p-n7e8
19
url VCID-zvwh-8431-f7a3
vulnerability_id VCID-zvwh-8431-f7a3
summary 
Piwik (now Matomo) Vulnerable to Cross-Site Scripting (XSS)
Cross-site scripting (XSS) vulnerability in Piwik before 1.11 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2013-1844
reference_id
reference_type
scores
0
value 0.00225
scoring_system epss
scoring_elements 0.45336
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2013-1844
1
reference_url https://github.com/matomo-org/matomo
reference_id
reference_type
scores
0
value 1.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:U
1
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/matomo-org/matomo
2
reference_url https://web.archive.org/web/20130313093839/http://piwik.org/blog/2013/03/piwik-1-11
reference_id
reference_type
scores
0
value 1.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:U
1
value LOW
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20130313093839/http://piwik.org/blog/2013/03/piwik-1-11
3
reference_url http://www.openwall.com/lists/oss-security/2013/03/12/4
reference_id
reference_type
scores
0
value 1.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:U
1
value LOW
scoring_system generic_textual
scoring_elements
url http://www.openwall.com/lists/oss-security/2013/03/12/4
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2013-1844
reference_id CVE-2013-1844
reference_type
scores
0
value 1.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:U
1
value LOW
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2013-1844
5
reference_url https://github.com/advisories/GHSA-5fpj-6vq6-fmwh
reference_id GHSA-5fpj-6vq6-fmwh
reference_type
scores
0
value LOW
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-5fpj-6vq6-fmwh
fixed_packages
0
url pkg:deb/debian/matomo@0?distro=trixie
purl pkg:deb/debian/matomo@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@0%3Fdistro=trixie
1
url pkg:deb/debian/matomo@5.3.1%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/matomo@5.3.1%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@5.3.1%252Bdfsg-1%3Fdistro=trixie
2
url pkg:deb/debian/matomo@5.8.0-1?distro=trixie
purl pkg:deb/debian/matomo@5.8.0-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@5.8.0-1%3Fdistro=trixie
aliases CVE-2013-1844, GHSA-5fpj-6vq6-fmwh
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zvwh-8431-f7a3
20
url VCID-zxa4-xkb6-pyhr
vulnerability_id VCID-zxa4-xkb6-pyhr
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2012-4541
reference_id
reference_type
scores
0
value 0.00254
scoring_system epss
scoring_elements 0.48959
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2012-4541
fixed_packages
0
url pkg:deb/debian/matomo@0?distro=trixie
purl pkg:deb/debian/matomo@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@0%3Fdistro=trixie
1
url pkg:deb/debian/matomo@5.3.1%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/matomo@5.3.1%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@5.3.1%252Bdfsg-1%3Fdistro=trixie
2
url pkg:deb/debian/matomo@5.8.0-1?distro=trixie
purl pkg:deb/debian/matomo@5.8.0-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@5.8.0-1%3Fdistro=trixie
aliases CVE-2012-4541
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zxa4-xkb6-pyhr
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:deb/debian/matomo@5.3.1%252Bdfsg-1%3Fdistro=trixie