Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:composer/october/system@2.1.0
Typecomposer
Namespaceoctober
Namesystem
Version2.1.0
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_versionnull
Latest_non_vulnerable_versionnull
Affected_by_vulnerabilities
0
url VCID-swte-fwyb-yfbz
vulnerability_id VCID-swte-fwyb-yfbz
summary 
Improper Authentication
October is a Content Management System (CMS) and web platform built on the the Laravel PHP Framework. In affected versions administrator accounts which had previously been deleted may still be able to sign in to the backend using October CMS v2.0. The issue has been patched in v2.1.12 of the october/october package. There are no workarounds for this issue and all users should update.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-41126
reference_id
reference_type
scores
0
value 0.00485
scoring_system epss
scoring_elements 0.65656
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-41126
1
reference_url https://github.com/octobercms/october
reference_id
reference_type
scores
0
value 7.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/octobercms/october
2
reference_url https://octobercms.com/changelog
reference_id
reference_type
scores
0
value 7.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://octobercms.com/changelog
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2021-41126
reference_id CVE-2021-41126
reference_type
scores
0
value 7.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2021-41126
4
reference_url https://github.com/advisories/GHSA-6gjf-7w99-j7x7
reference_id GHSA-6gjf-7w99-j7x7
reference_type
scores
url https://github.com/advisories/GHSA-6gjf-7w99-j7x7
5
reference_url https://github.com/octobercms/october/security/advisories/GHSA-6gjf-7w99-j7x7
reference_id GHSA-6gjf-7w99-j7x7
reference_type
scores
0
value 7.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/octobercms/october/security/advisories/GHSA-6gjf-7w99-j7x7
fixed_packages
0
url pkg:composer/october/system@2.1.12
purl pkg:composer/october/system@2.1.12
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/october/system@2.1.12
aliases CVE-2021-41126, GHSA-6gjf-7w99-j7x7
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-swte-fwyb-yfbz
Fixing_vulnerabilities
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:composer/october/system@2.1.0