{"url":"http://public2.vulnerablecode.io/api/packages/61667?format=json","purl":"pkg:pypi/django@1.0","type":"pypi","namespace":"","name":"django","version":"1.0","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"1.7b4","latest_non_vulnerable_version":"6.0.5","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/34685?format=json","vulnerability_id":"VCID-18gm-v5zp-tqf9","summary":"Algorithmic complexity vulnerability in the forms library in Django 1.0 before 1.0.4 and 1.1 before 1.1.1 allows remote attackers to cause a denial of service (CPU consumption) via a crafted (1) EmailField (email address) or (2) URLField (URL) that triggers a large amount of backtracking in a regular expression.","references":[{"reference_url":"http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=550457","reference_id":"","reference_type":"","scores":[],"url":"http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=550457"},{"reference_url":"http://groups.google.com/group/django-users/browse_thread/thread/15df9e45118dfc51/","reference_id":"","reference_type":"","scores":[],"url":"http://groups.google.com/group/django-users/browse_thread/thread/15df9e45118dfc51/"},{"reference_url":"http://secunia.com/advisories/36948","reference_id":"","reference_type":"","scores":[],"url":"http://secunia.com/advisories/36948"},{"reference_url":"http://secunia.com/advisories/36968","reference_id":"","reference_type":"","scores":[],"url":"http://secunia.com/advisories/36968"},{"reference_url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/53727","reference_id":"","reference_type":"","scores":[],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/53727"},{"reference_url":"https://github.com/django/django","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/django/django"},{"reference_url":"https://github.com/django/django/commit/594a28a9044120bed58671dde8a805c9e0f6c79a","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/django/django/commit/594a28a9044120bed58671dde8a805c9e0f6c79a"},{"reference_url":"https://github.com/django/django/commit/e3e992e18b368fcd56aabafc1b5bf80a6e11b495","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/django/django/commit/e3e992e18b368fcd56aabafc1b5bf80a6e11b495"},{"reference_url":"https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2009-4.yaml","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2009-4.yaml"},{"reference_url":"https://web.archive.org/web/20091013093057/http://secunia.com/advisories/36968","reference_id":"","reference_type":"","scores":[],"url":"https://web.archive.org/web/20091013093057/http://secunia.com/advisories/36968"},{"reference_url":"https://web.archive.org/web/20091017070244/http://secunia.com/advisories/36948","reference_id":"","reference_type":"","scores":[],"url":"https://web.archive.org/web/20091017070244/http://secunia.com/advisories/36948"},{"reference_url":"https://web.archive.org/web/20200228171918/http://www.securityfocus.com/bid/36655","reference_id":"","reference_type":"","scores":[],"url":"https://web.archive.org/web/20200228171918/http://www.securityfocus.com/bid/36655"},{"reference_url":"http://www.debian.org/security/2009/dsa-1905","reference_id":"","reference_type":"","scores":[],"url":"http://www.debian.org/security/2009/dsa-1905"},{"reference_url":"http://www.djangoproject.com/weblog/2009/oct/09/security/","reference_id":"","reference_type":"","scores":[],"url":"http://www.djangoproject.com/weblog/2009/oct/09/security/"},{"reference_url":"http://www.openwall.com/lists/oss-security/2009/10/13/6","reference_id":"","reference_type":"","scores":[],"url":"http://www.openwall.com/lists/oss-security/2009/10/13/6"},{"reference_url":"http://www.securityfocus.com/bid/36655","reference_id":"","reference_type":"","scores":[],"url":"http://www.securityfocus.com/bid/36655"},{"reference_url":"http://www.vupen.com/english/advisories/2009/2871","reference_id":"","reference_type":"","scores":[],"url":"http://www.vupen.com/english/advisories/2009/2871"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2009-3695","reference_id":"CVE-2009-3695","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2009-3695"},{"reference_url":"https://github.com/advisories/GHSA-p6m5-h7pp-v2x5","reference_id":"GHSA-p6m5-h7pp-v2x5","reference_type":"","scores":[],"url":"https://github.com/advisories/GHSA-p6m5-h7pp-v2x5"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/6843?format=json","purl":"pkg:pypi/django@1.0.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-38e1-hepp-vkg9"},{"vulnerability":"VCID-3kza-a88p-kfg7"},{"vulnerability":"VCID-3sg7-t77d-rkc6"},{"vulnerability":"VCID-4z7r-xd8z-3ybm"},{"vulnerability":"VCID-5brz-383w-pfbb"},{"vulnerability":"VCID-5vmb-d4xp-zfgy"},{"vulnerability":"VCID-66ax-8wdn-1bgb"},{"vulnerability":"VCID-6wah-r8vr-5qc4"},{"vulnerability":"VCID-7cnm-hzsf-tybp"},{"vulnerability":"VCID-7g7m-bfe1-wkhd"},{"vulnerability":"VCID-7rz2-nqdn-hycc"},{"vulnerability":"VCID-8gus-er59-1qak"},{"vulnerability":"VCID-8v2c-7739-2ugp"},{"vulnerability":"VCID-912q-3eks-4yfm"},{"vulnerability":"VCID-9bsf-vm3b-ubhw"},{"vulnerability":"VCID-9mpt-zxaw-kkeg"},{"vulnerability":"VCID-bahz-gfxv-e3b2"},{"vulnerability":"VCID-dh12-js4b-h7fw"},{"vulnerability":"VCID-ffsr-th58-p3ct"},{"vulnerability":"VCID-jfya-694v-myar"},{"vulnerability":"VCID-ksh8-pazn-dbca"},{"vulnerability":"VCID-mccp-khb9-qkb7"},{"vulnerability":"VCID-r2a9-kym9-zqgq"},{"vulnerability":"VCID-r7tk-79xy-jkhj"},{"vulnerability":"VCID-rq19-9v21-47dy"},{"vulnerability":"VCID-rxxr-sseq-k7a9"},{"vulnerability":"VCID-sj21-65x3-buh5"},{"vulnerability":"VCID-ta66-7qrm-sbhu"},{"vulnerability":"VCID-u4a7-uvcb-9kf8"},{"vulnerability":"VCID-u4sa-1yn4-h3ff"},{"vulnerability":"VCID-u5u9-xbb6-93hc"},{"vulnerability":"VCID-u6sd-648r-qbdb"},{"vulnerability":"VCID-ukf6-xwqc-xkdc"},{"vulnerability":"VCID-vdpf-jddk-syda"},{"vulnerability":"VCID-vj5u-2ukv-audq"},{"vulnerability":"VCID-weqb-fxu4-17e7"},{"vulnerability":"VCID-xf2n-qua7-m7fb"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/django@1.0.4"},{"url":"http://public2.vulnerablecode.io/api/packages/6969?format=json","purl":"pkg:pypi/django@1.1.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-38e1-hepp-vkg9"},{"vulnerability":"VCID-3kza-a88p-kfg7"},{"vulnerability":"VCID-3sg7-t77d-rkc6"},{"vulnerability":"VCID-5brz-383w-pfbb"},{"vulnerability":"VCID-5vmb-d4xp-zfgy"},{"vulnerability":"VCID-66ax-8wdn-1bgb"},{"vulnerability":"VCID-6wah-r8vr-5qc4"},{"vulnerability":"VCID-7cnm-hzsf-tybp"},{"vulnerability":"VCID-7g7m-bfe1-wkhd"},{"vulnerability":"VCID-7rz2-nqdn-hycc"},{"vulnerability":"VCID-8gus-er59-1qak"},{"vulnerability":"VCID-8v2c-7739-2ugp"},{"vulnerability":"VCID-912q-3eks-4yfm"},{"vulnerability":"VCID-9bsf-vm3b-ubhw"},{"vulnerability":"VCID-9mpt-zxaw-kkeg"},{"vulnerability":"VCID-bahz-gfxv-e3b2"},{"vulnerability":"VCID-dh12-js4b-h7fw"},{"vulnerability":"VCID-ffsr-th58-p3ct"},{"vulnerability":"VCID-jfya-694v-myar"},{"vulnerability":"VCID-ksh8-pazn-dbca"},{"vulnerability":"VCID-kuyz-3pxs-r7cv"},{"vulnerability":"VCID-mccp-khb9-qkb7"},{"vulnerability":"VCID-n6ps-f6s6-zkbj"},{"vulnerability":"VCID-r2a9-kym9-zqgq"},{"vulnerability":"VCID-r7tk-79xy-jkhj"},{"vulnerability":"VCID-rq19-9v21-47dy"},{"vulnerability":"VCID-rxxr-sseq-k7a9"},{"vulnerability":"VCID-ta66-7qrm-sbhu"},{"vulnerability":"VCID-u4a7-uvcb-9kf8"},{"vulnerability":"VCID-u5u9-xbb6-93hc"},{"vulnerability":"VCID-u6sd-648r-qbdb"},{"vulnerability":"VCID-vdpf-jddk-syda"},{"vulnerability":"VCID-vj5u-2ukv-audq"},{"vulnerability":"VCID-weqb-fxu4-17e7"},{"vulnerability":"VCID-xf2n-qua7-m7fb"},{"vulnerability":"VCID-zd9y-sxbn-kqa3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/django@1.1.1"}],"aliases":["CVE-2009-3695","GHSA-p6m5-h7pp-v2x5","PYSEC-2009-4"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-18gm-v5zp-tqf9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/34679?format=json","vulnerability_id":"VCID-u4sa-1yn4-h3ff","summary":"The Admin media handler in core/servers/basehttp.py in Django 1.0 and 0.96 does not properly map URL requests to expected \"static media files,\" which allows remote attackers to conduct directory traversal attacks and read arbitrary files via a crafted URL.","references":[{"reference_url":"http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=539134","reference_id":"","reference_type":"","scores":[],"url":"http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=539134"},{"reference_url":"http://code.djangoproject.com/changeset/11353","reference_id":"","reference_type":"","scores":[],"url":"http://code.djangoproject.com/changeset/11353"},{"reference_url":"http://secunia.com/advisories/36137","reference_id":"","reference_type":"","scores":[],"url":"http://secunia.com/advisories/36137"},{"reference_url":"http://secunia.com/advisories/36153","reference_id":"","reference_type":"","scores":[],"url":"http://secunia.com/advisories/36153"},{"reference_url":"https://github.com/django/django","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/django/django"},{"reference_url":"https://github.com/django/django/commit/da85d76fd6ca846f3b0ff414e042ddb5e62e2e69","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/django/django/commit/da85d76fd6ca846f3b0ff414e042ddb5e62e2e69"},{"reference_url":"https://github.com/django/django/commit/df7f917b7f51ba969faa49d000ffc79572c5dcb4","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/django/django/commit/df7f917b7f51ba969faa49d000ffc79572c5dcb4"},{"reference_url":"https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2009-3.yaml","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2009-3.yaml"},{"reference_url":"https://web.archive.org/web/20111211001428/http://www.securityfocus.com/bid/35859","reference_id":"","reference_type":"","scores":[],"url":"https://web.archive.org/web/20111211001428/http://www.securityfocus.com/bid/35859"},{"reference_url":"https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00055.html","reference_id":"","reference_type":"","scores":[],"url":"https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00055.html"},{"reference_url":"https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00069.html","reference_id":"","reference_type":"","scores":[],"url":"https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00069.html"},{"reference_url":"http://www.djangoproject.com/weblog/2009/jul/28/security/","reference_id":"","reference_type":"","scores":[],"url":"http://www.djangoproject.com/weblog/2009/jul/28/security/"},{"reference_url":"http://www.openwall.com/lists/oss-security/2009/07/29/2","reference_id":"","reference_type":"","scores":[],"url":"http://www.openwall.com/lists/oss-security/2009/07/29/2"},{"reference_url":"http://www.securityfocus.com/bid/35859","reference_id":"","reference_type":"","scores":[],"url":"http://www.securityfocus.com/bid/35859"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2009-2659","reference_id":"CVE-2009-2659","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2009-2659"},{"reference_url":"https://github.com/advisories/GHSA-9xg7-gg9m-rmq9","reference_id":"GHSA-9xg7-gg9m-rmq9","reference_type":"","scores":[],"url":"https://github.com/advisories/GHSA-9xg7-gg9m-rmq9"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/6842?format=json","purl":"pkg:pypi/django@1.0.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-18gm-v5zp-tqf9"},{"vulnerability":"VCID-38e1-hepp-vkg9"},{"vulnerability":"VCID-3kza-a88p-kfg7"},{"vulnerability":"VCID-3sg7-t77d-rkc6"},{"vulnerability":"VCID-4z7r-xd8z-3ybm"},{"vulnerability":"VCID-5brz-383w-pfbb"},{"vulnerability":"VCID-5vmb-d4xp-zfgy"},{"vulnerability":"VCID-66ax-8wdn-1bgb"},{"vulnerability":"VCID-6wah-r8vr-5qc4"},{"vulnerability":"VCID-7cnm-hzsf-tybp"},{"vulnerability":"VCID-7g7m-bfe1-wkhd"},{"vulnerability":"VCID-7rz2-nqdn-hycc"},{"vulnerability":"VCID-8gus-er59-1qak"},{"vulnerability":"VCID-8v2c-7739-2ugp"},{"vulnerability":"VCID-912q-3eks-4yfm"},{"vulnerability":"VCID-9bsf-vm3b-ubhw"},{"vulnerability":"VCID-9mpt-zxaw-kkeg"},{"vulnerability":"VCID-bahz-gfxv-e3b2"},{"vulnerability":"VCID-dh12-js4b-h7fw"},{"vulnerability":"VCID-ffsr-th58-p3ct"},{"vulnerability":"VCID-jfya-694v-myar"},{"vulnerability":"VCID-ksh8-pazn-dbca"},{"vulnerability":"VCID-mccp-khb9-qkb7"},{"vulnerability":"VCID-r2a9-kym9-zqgq"},{"vulnerability":"VCID-r7tk-79xy-jkhj"},{"vulnerability":"VCID-rq19-9v21-47dy"},{"vulnerability":"VCID-rxxr-sseq-k7a9"},{"vulnerability":"VCID-sj21-65x3-buh5"},{"vulnerability":"VCID-ta66-7qrm-sbhu"},{"vulnerability":"VCID-u4a7-uvcb-9kf8"},{"vulnerability":"VCID-u4sa-1yn4-h3ff"},{"vulnerability":"VCID-u5u9-xbb6-93hc"},{"vulnerability":"VCID-u6sd-648r-qbdb"},{"vulnerability":"VCID-ukf6-xwqc-xkdc"},{"vulnerability":"VCID-vdpf-jddk-syda"},{"vulnerability":"VCID-vj5u-2ukv-audq"},{"vulnerability":"VCID-weqb-fxu4-17e7"},{"vulnerability":"VCID-xf2n-qua7-m7fb"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/django@1.0.3"},{"url":"http://public2.vulnerablecode.io/api/packages/6844?format=json","purl":"pkg:pypi/django@1.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-18gm-v5zp-tqf9"},{"vulnerability":"VCID-38e1-hepp-vkg9"},{"vulnerability":"VCID-3kza-a88p-kfg7"},{"vulnerability":"VCID-3sg7-t77d-rkc6"},{"vulnerability":"VCID-5brz-383w-pfbb"},{"vulnerability":"VCID-5vmb-d4xp-zfgy"},{"vulnerability":"VCID-66ax-8wdn-1bgb"},{"vulnerability":"VCID-6wah-r8vr-5qc4"},{"vulnerability":"VCID-7cnm-hzsf-tybp"},{"vulnerability":"VCID-7g7m-bfe1-wkhd"},{"vulnerability":"VCID-7rz2-nqdn-hycc"},{"vulnerability":"VCID-8gus-er59-1qak"},{"vulnerability":"VCID-8v2c-7739-2ugp"},{"vulnerability":"VCID-912q-3eks-4yfm"},{"vulnerability":"VCID-9bsf-vm3b-ubhw"},{"vulnerability":"VCID-9mpt-zxaw-kkeg"},{"vulnerability":"VCID-bahz-gfxv-e3b2"},{"vulnerability":"VCID-dh12-js4b-h7fw"},{"vulnerability":"VCID-ffsr-th58-p3ct"},{"vulnerability":"VCID-jfya-694v-myar"},{"vulnerability":"VCID-ksh8-pazn-dbca"},{"vulnerability":"VCID-kuyz-3pxs-r7cv"},{"vulnerability":"VCID-mccp-khb9-qkb7"},{"vulnerability":"VCID-n6ps-f6s6-zkbj"},{"vulnerability":"VCID-r2a9-kym9-zqgq"},{"vulnerability":"VCID-r7tk-79xy-jkhj"},{"vulnerability":"VCID-rq19-9v21-47dy"},{"vulnerability":"VCID-rxxr-sseq-k7a9"},{"vulnerability":"VCID-ta66-7qrm-sbhu"},{"vulnerability":"VCID-u4a7-uvcb-9kf8"},{"vulnerability":"VCID-u5u9-xbb6-93hc"},{"vulnerability":"VCID-u6sd-648r-qbdb"},{"vulnerability":"VCID-vdpf-jddk-syda"},{"vulnerability":"VCID-vj5u-2ukv-audq"},{"vulnerability":"VCID-weqb-fxu4-17e7"},{"vulnerability":"VCID-xf2n-qua7-m7fb"},{"vulnerability":"VCID-zd9y-sxbn-kqa3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/django@1.1"}],"aliases":["CVE-2009-2659","GHSA-9xg7-gg9m-rmq9","PYSEC-2009-3"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-u4sa-1yn4-h3ff"}],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/43162?format=json","vulnerability_id":"VCID-84qe-mdwm-y3ey","summary":"Django Improper Access Control\nThe LazyUser class in the AuthenticationMiddleware for Django 0.95 does not properly cache the user name across requests, which allows remote authenticated users to gain the privileges of a different user.","references":[{"reference_url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/31628","reference_id":"","reference_type":"","scores":[],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/31628"},{"reference_url":"https://github.com/django/django","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/django/django"},{"reference_url":"https://github.com/django/django/commit/3c5782287e","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/django/django/commit/3c5782287e"},{"reference_url":"https://github.com/django/django/commit/e89f0a65581f82a5740bfe989136cea75d09cd67","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/django/django/commit/e89f0a65581f82a5740bfe989136cea75d09cd67"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2007-0405","reference_id":"CVE-2007-0405","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2007-0405"},{"reference_url":"https://github.com/advisories/GHSA-mwv2-398h-v489","reference_id":"GHSA-mwv2-398h-v489","reference_type":"","scores":[],"url":"https://github.com/advisories/GHSA-mwv2-398h-v489"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/61667?format=json","purl":"pkg:pypi/django@1.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-18gm-v5zp-tqf9"},{"vulnerability":"VCID-u4sa-1yn4-h3ff"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/django@1.0"}],"aliases":["CVE-2007-0405","GHSA-mwv2-398h-v489"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-84qe-mdwm-y3ey"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/43091?format=json","vulnerability_id":"VCID-kc75-qwxj-hbec","summary":"Django Arbitrary Code Execution\n`bin/compile-messages.py` in Django 0.95 does not quote argument strings before invoking the msgfmt program through the os.system function, which allows attackers to execute arbitrary commands via shell metacharacters in a (1) .po or (2) .mo file.","references":[{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=407519","reference_id":"","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=407519"},{"reference_url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/31627","reference_id":"","reference_type":"","scores":[],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/31627"},{"reference_url":"https://github.com/django/django","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/django/django"},{"reference_url":"https://github.com/django/django/commit/518d406e53","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/django/django/commit/518d406e53"},{"reference_url":"https://github.com/django/django/commit/a132d411c6986418ee6c0edc331080aa792fee6e","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/django/django/commit/a132d411c6986418ee6c0edc331080aa792fee6e"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2007-0404","reference_id":"CVE-2007-0404","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2007-0404"},{"reference_url":"https://github.com/advisories/GHSA-qc99-g3wm-hgxr","reference_id":"GHSA-qc99-g3wm-hgxr","reference_type":"","scores":[],"url":"https://github.com/advisories/GHSA-qc99-g3wm-hgxr"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/61667?format=json","purl":"pkg:pypi/django@1.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-18gm-v5zp-tqf9"},{"vulnerability":"VCID-u4sa-1yn4-h3ff"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/django@1.0"}],"aliases":["CVE-2007-0404","GHSA-qc99-g3wm-hgxr"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kc75-qwxj-hbec"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/django@1.0"}