{"url":"http://public2.vulnerablecode.io/api/packages/38708?format=json","purl":"pkg:deb/debian/ejabberd@24.12-3%2Bdeb13u2?distro=trixie","type":"deb","namespace":"debian","name":"ejabberd","version":"24.12-3+deb13u2","qualifiers":{"distro":"trixie"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"26.02-1","latest_non_vulnerable_version":"26.02-1","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/212556?format=json","vulnerability_id":"VCID-13nb-b7mx-7yer","summary":"A third-party installer generation tool, possibly BitRock InstallBuilder, as used in products including Process-one ejabberd 1.1.1_1 and earlier, generates an installer that allows local users to cause a denial of service via a symlink attack on the bitrock_installer.log temporary file.  NOTE: it is possible that this vulnerability is present in other products that use this installer.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2006-2221","reference_id":"","reference_type":"","scores":[{"value":"0.00067","scoring_system":"epss","scoring_elements":"0.20944","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2006-2221"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/38704?format=json","purl":"pkg:deb/debian/ejabberd@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/ejabberd@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/38705?format=json","purl":"pkg:deb/debian/ejabberd@21.01-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/ejabberd@21.01-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/38703?format=json","purl":"pkg:deb/debian/ejabberd@23.01-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/ejabberd@23.01-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/38708?format=json","purl":"pkg:deb/debian/ejabberd@24.12-3%2Bdeb13u2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/ejabberd@24.12-3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/38706?format=json","purl":"pkg:deb/debian/ejabberd@26.02-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/ejabberd@26.02-1%3Fdistro=trixie"}],"aliases":["CVE-2006-2221"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-13nb-b7mx-7yer"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/179469?format=json","vulnerability_id":"VCID-235u-y612-c7he","summary":"Multiple vulnerabilities have been found in ejabberd, the worst of\n    which allowing for remote Denial of Service.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-1753","reference_id":"","reference_type":"","scores":[{"value":"0.01937","scoring_system":"epss","scoring_elements":"0.83797","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-1753"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1753","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1753"},{"reference_url":"https://security.gentoo.org/glsa/201206-10","reference_id":"GLSA-201206-10","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201206-10"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/38720?format=json","purl":"pkg:deb/debian/ejabberd@2.1.6-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/ejabberd@2.1.6-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/38705?format=json","purl":"pkg:deb/debian/ejabberd@21.01-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/ejabberd@21.01-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/38703?format=json","purl":"pkg:deb/debian/ejabberd@23.01-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/ejabberd@23.01-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/38708?format=json","purl":"pkg:deb/debian/ejabberd@24.12-3%2Bdeb13u2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/ejabberd@24.12-3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/38706?format=json","purl":"pkg:deb/debian/ejabberd@26.02-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/ejabberd@26.02-1%3Fdistro=trixie"}],"aliases":["CVE-2011-1753"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-235u-y612-c7he"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/201404?format=json","vulnerability_id":"VCID-4au8-ag9j-uycq","summary":"Cross-site scripting (XSS) vulnerability in ejabberd before 2.0.4 allows remote attackers to inject arbitrary web script or HTML via unknown vectors related to links and MUC logs.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0934.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0934.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2009-0934","reference_id":"","reference_type":"","scores":[{"value":"0.00749","scoring_system":"epss","scoring_elements":"0.73584","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2009-0934"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0934","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0934"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=490902","reference_id":"490902","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=490902"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=520852","reference_id":"520852","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=520852"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/38713?format=json","purl":"pkg:deb/debian/ejabberd@2.0.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/ejabberd@2.0.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/38705?format=json","purl":"pkg:deb/debian/ejabberd@21.01-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/ejabberd@21.01-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/38703?format=json","purl":"pkg:deb/debian/ejabberd@23.01-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/ejabberd@23.01-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/38708?format=json","purl":"pkg:deb/debian/ejabberd@24.12-3%2Bdeb13u2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/ejabberd@24.12-3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/38706?format=json","purl":"pkg:deb/debian/ejabberd@26.02-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/ejabberd@26.02-1%3Fdistro=trixie"}],"aliases":["CVE-2009-0934"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4au8-ag9j-uycq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/200594?format=json","vulnerability_id":"VCID-dfap-xkkc-qbgu","summary":"Unspecified vulnerability in the mod_roster_odbc module in ejabberd before 1.1.3 has unknown impact and attack vectors.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-0903","reference_id":"","reference_type":"","scores":[{"value":"0.00736","scoring_system":"epss","scoring_elements":"0.73285","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-0903"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0903","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0903"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/38709?format=json","purl":"pkg:deb/debian/ejabberd@1.1.2-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/ejabberd@1.1.2-5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/38705?format=json","purl":"pkg:deb/debian/ejabberd@21.01-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/ejabberd@21.01-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/38703?format=json","purl":"pkg:deb/debian/ejabberd@23.01-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/ejabberd@23.01-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/38708?format=json","purl":"pkg:deb/debian/ejabberd@24.12-3%2Bdeb13u2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/ejabberd@24.12-3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/38706?format=json","purl":"pkg:deb/debian/ejabberd@26.02-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/ejabberd@26.02-1%3Fdistro=trixie"}],"aliases":["CVE-2007-0903"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-dfap-xkkc-qbgu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/179470?format=json","vulnerability_id":"VCID-ebcd-heh8-2ycr","summary":"Multiple vulnerabilities have been found in ejabberd, the worst of\n    which allowing for remote Denial of Service.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-4320","reference_id":"","reference_type":"","scores":[{"value":"0.01178","scoring_system":"epss","scoring_elements":"0.7915","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-4320"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4320","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4320"},{"reference_url":"https://github.com/processone/ejabberd","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/processone/ejabberd"},{"reference_url":"https://github.com/processone/ejabberd/commit/d3c4eab46f3cd54f7686cfed740d9c130b6801cf","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/processone/ejabberd/commit/d3c4eab46f3cd54f7686cfed740d9c130b6801cf"},{"reference_url":"https://github.com/processone/ejabberd/commit/d5b4d6785879f0a5192c26f5b5e218aec8104798","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/processone/ejabberd/commit/d5b4d6785879f0a5192c26f5b5e218aec8104798"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2011-4320","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2011-4320"},{"reference_url":"https://support.process-one.net/browse/EJAB-1498","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://support.process-one.net/browse/EJAB-1498"},{"reference_url":"http://www.openwall.com/lists/oss-security/2011/11/19/1","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://www.openwall.com/lists/oss-security/2011/11/19/1"},{"reference_url":"http://www.openwall.com/lists/oss-security/2011/11/19/2","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://www.openwall.com/lists/oss-security/2011/11/19/2"},{"reference_url":"http://www.process-one.net/en/ejabberd/release_notes/release_note_ejabberd_2.1.9","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://www.process-one.net/en/ejabberd/release_notes/release_note_ejabberd_2.1.9"},{"reference_url":"https://security.gentoo.org/glsa/201206-10","reference_id":"GLSA-201206-10","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201206-10"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/38722?format=json","purl":"pkg:deb/debian/ejabberd@2.1.9-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/ejabberd@2.1.9-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/38705?format=json","purl":"pkg:deb/debian/ejabberd@21.01-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/ejabberd@21.01-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/38703?format=json","purl":"pkg:deb/debian/ejabberd@23.01-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/ejabberd@23.01-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/38708?format=json","purl":"pkg:deb/debian/ejabberd@24.12-3%2Bdeb13u2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/ejabberd@24.12-3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/38706?format=json","purl":"pkg:deb/debian/ejabberd@26.02-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/ejabberd@26.02-1%3Fdistro=trixie"}],"aliases":["CVE-2011-4320","GHSA-2h3q-v47h-f4rc"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ebcd-heh8-2ycr"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/203625?format=json","vulnerability_id":"VCID-nuny-uhys-rkgs","summary":"ejabberd before 2.1.13 does not enforce the starttls_required setting when compression is used, which causes clients to establish connections without encryption.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8760","reference_id":"","reference_type":"","scores":[{"value":"0.00264","scoring_system":"epss","scoring_elements":"0.50209","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8760"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8760","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8760"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=767535","reference_id":"767535","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=767535"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/38729?format=json","purl":"pkg:deb/debian/ejabberd@14.07-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/ejabberd@14.07-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/38705?format=json","purl":"pkg:deb/debian/ejabberd@21.01-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/ejabberd@21.01-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/38703?format=json","purl":"pkg:deb/debian/ejabberd@23.01-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/ejabberd@23.01-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/38708?format=json","purl":"pkg:deb/debian/ejabberd@24.12-3%2Bdeb13u2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/ejabberd@24.12-3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/38706?format=json","purl":"pkg:deb/debian/ejabberd@26.02-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/ejabberd@26.02-1%3Fdistro=trixie"}],"aliases":["CVE-2014-8760"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nuny-uhys-rkgs"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/108132?format=json","vulnerability_id":"VCID-vx7k-59sx-vqc9","summary":"insecure SSL usage","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-6169","reference_id":"","reference_type":"","scores":[{"value":"0.00443","scoring_system":"epss","scoring_elements":"0.63761","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-6169"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6169","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6169"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=722105","reference_id":"722105","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=722105"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/38725?format=json","purl":"pkg:deb/debian/ejabberd@2.1.11-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/ejabberd@2.1.11-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/38705?format=json","purl":"pkg:deb/debian/ejabberd@21.01-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/ejabberd@21.01-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/38703?format=json","purl":"pkg:deb/debian/ejabberd@23.01-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/ejabberd@23.01-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/38708?format=json","purl":"pkg:deb/debian/ejabberd@24.12-3%2Bdeb13u2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/ejabberd@24.12-3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/38706?format=json","purl":"pkg:deb/debian/ejabberd@26.02-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/ejabberd@26.02-1%3Fdistro=trixie"}],"aliases":["CVE-2013-6169"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vx7k-59sx-vqc9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/179468?format=json","vulnerability_id":"VCID-ytgw-prju-63bz","summary":"Multiple vulnerabilities have been found in ejabberd, the worst of\n    which allowing for remote Denial of Service.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-0305.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-0305.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2010-0305","reference_id":"","reference_type":"","scores":[{"value":"0.0188","scoring_system":"epss","scoring_elements":"0.83558","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2010-0305"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0305","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0305"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=559921","reference_id":"559921","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=559921"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=568383","reference_id":"568383","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=568383"},{"reference_url":"https://security.gentoo.org/glsa/201206-10","reference_id":"GLSA-201206-10","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201206-10"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/38716?format=json","purl":"pkg:deb/debian/ejabberd@2.1.2-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/ejabberd@2.1.2-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/38705?format=json","purl":"pkg:deb/debian/ejabberd@21.01-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/ejabberd@21.01-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/38703?format=json","purl":"pkg:deb/debian/ejabberd@23.01-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/ejabberd@23.01-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/38708?format=json","purl":"pkg:deb/debian/ejabberd@24.12-3%2Bdeb13u2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/ejabberd@24.12-3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/38706?format=json","purl":"pkg:deb/debian/ejabberd@26.02-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/ejabberd@26.02-1%3Fdistro=trixie"}],"aliases":["CVE-2010-0305"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ytgw-prju-63bz"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/ejabberd@24.12-3%252Bdeb13u2%3Fdistro=trixie"}