Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/89657?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/89657?format=api", "purl": "pkg:deb/debian/cacti@0.8.7g-1?distro=trixie", "type": "deb", "namespace": "debian", "name": "cacti", "version": "0.8.7g-1", "qualifiers": { "distro": "trixie" }, "subpath": "", "is_vulnerable": false, "next_non_vulnerable_version": "0.8.7i-1", "latest_non_vulnerable_version": "1.2.30+ds1-3", "affected_by_vulnerabilities": [], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61789?format=api", "vulnerability_id": "VCID-9p39-vcs9-6bcb", "summary": "Multiple cross-site scripting (XSS) vulnerabilities in Cacti before 0.8.7g, as used in Red Hat High Performance Computing (HPC) Solution and other products, allow remote attackers to inject arbitrary web script or HTML via (1) the name element in an XML template to templates_import.php; and allow remote authenticated administrators to inject arbitrary web script or HTML via vectors related to (2) cdef.php, (3) data_input.php, (4) data_queries.php, (5) data_sources.php, (6) data_templates.php, (7) gprint_presets.php, (8) graph.php, (9) graphs_new.php, (10) graphs.php, (11) graph_templates_inputs.php, (12) graph_templates_items.php, (13) graph_templates.php, (14) graph_view.php, (15) host.php, (16) host_templates.php, (17) lib/functions.php, (18) lib/html_form.php, (19) lib/html_form_template.php, (20) lib/html.php, (21) lib/html_tree.php, (22) lib/rrd.php, (23) rra.php, (24) tree.php, and (25) user_admin.php.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2545.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2545.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2545", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01797", "scoring_system": "epss", "scoring_elements": "0.83118", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01797", "scoring_system": "epss", "scoring_elements": "0.83143", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01797", "scoring_system": "epss", "scoring_elements": "0.83144", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01797", "scoring_system": "epss", "scoring_elements": "0.8314", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.01797", "scoring_system": "epss", "scoring_elements": "0.83133", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.01797", "scoring_system": "epss", "scoring_elements": "0.83146", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2545" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2545", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2545" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=459229", "reference_id": "459229", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=459229" }, { "reference_url": "https://security.gentoo.org/glsa/201401-20", "reference_id": "GLSA-201401-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201401-20" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/89657?format=api", "purl": "pkg:deb/debian/cacti@0.8.7g-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@0.8.7g-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/89638?format=api", "purl": "pkg:deb/debian/cacti@1.2.16%2Bds1-2%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3upu-n6rg-jucm" }, { "vulnerability": "VCID-5h87-xv7n-z7hk" }, { "vulnerability": "VCID-gnr2-jzjp-6bfs" }, { "vulnerability": "VCID-tv4b-jnha-yucw" }, { "vulnerability": "VCID-ww9n-y9w8-33dp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.16%252Bds1-2%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/89636?format=api", "purl": "pkg:deb/debian/cacti@1.2.24%2Bds1-1%2Bdeb12u5?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-gnr2-jzjp-6bfs" }, { "vulnerability": "VCID-tv4b-jnha-yucw" }, { "vulnerability": "VCID-ww9n-y9w8-33dp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.24%252Bds1-1%252Bdeb12u5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/89640?format=api", "purl": "pkg:deb/debian/cacti@1.2.30%2Bds1-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.30%252Bds1-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/89639?format=api", "purl": "pkg:deb/debian/cacti@1.2.30%2Bds1-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.30%252Bds1-3%3Fdistro=trixie" } ], "aliases": [ "CVE-2010-2545" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9p39-vcs9-6bcb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61773?format=api", "vulnerability_id": "VCID-fawd-pztn-juhz", "summary": "Multiple cross-site scripting (XSS) vulnerabilities in Cacti before 0.8.7f, as used in Red Hat High Performance Computing (HPC) Solution and other products, allow remote attackers to inject arbitrary web script or HTML via the (1) hostname or (2) description parameter to host.php, or (3) the host_id parameter to data_sources.php.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-1644.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-1644.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-1644", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02039", "scoring_system": "epss", "scoring_elements": "0.84146", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.02039", "scoring_system": "epss", "scoring_elements": "0.84169", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.02039", "scoring_system": "epss", "scoring_elements": "0.84172", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.02039", "scoring_system": "epss", "scoring_elements": "0.84167", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.02039", "scoring_system": "epss", "scoring_elements": "0.84156", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.02039", "scoring_system": "epss", "scoring_elements": "0.84168", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-1644" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1644", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1644" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=609093", "reference_id": "609093", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=609093" }, { "reference_url": "https://security.gentoo.org/glsa/201401-20", "reference_id": "GLSA-201401-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201401-20" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/89657?format=api", "purl": "pkg:deb/debian/cacti@0.8.7g-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@0.8.7g-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/89638?format=api", "purl": "pkg:deb/debian/cacti@1.2.16%2Bds1-2%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3upu-n6rg-jucm" }, { "vulnerability": "VCID-5h87-xv7n-z7hk" }, { "vulnerability": "VCID-gnr2-jzjp-6bfs" }, { "vulnerability": "VCID-tv4b-jnha-yucw" }, { "vulnerability": "VCID-ww9n-y9w8-33dp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.16%252Bds1-2%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/89636?format=api", "purl": "pkg:deb/debian/cacti@1.2.24%2Bds1-1%2Bdeb12u5?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-gnr2-jzjp-6bfs" }, { "vulnerability": "VCID-tv4b-jnha-yucw" }, { "vulnerability": "VCID-ww9n-y9w8-33dp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.24%252Bds1-1%252Bdeb12u5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/89640?format=api", "purl": "pkg:deb/debian/cacti@1.2.30%2Bds1-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.30%252Bds1-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/89639?format=api", "purl": "pkg:deb/debian/cacti@1.2.30%2Bds1-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.30%252Bds1-3%3Fdistro=trixie" } ], "aliases": [ "CVE-2010-1644" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fawd-pztn-juhz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61783?format=api", "vulnerability_id": "VCID-j9na-ysyz-tbgd", "summary": "Cross-site scripting (XSS) vulnerability in include/top_graph_header.php in Cacti before 0.8.7g allows remote attackers to inject arbitrary web script or HTML via the graph_start parameter to graph.php. NOTE: this vulnerability exists because of an incorrect fix for CVE-2009-4032.2.b.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2543.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2543.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2543", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.10513", "scoring_system": "epss", "scoring_elements": "0.93392", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.10513", "scoring_system": "epss", "scoring_elements": "0.93403", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.10513", "scoring_system": "epss", "scoring_elements": "0.93404", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.10513", "scoring_system": "epss", "scoring_elements": "0.93411", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2543" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2543", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2543" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=541279", "reference_id": "541279", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=541279" }, { "reference_url": "https://security.gentoo.org/glsa/201401-20", "reference_id": "GLSA-201401-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201401-20" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/89657?format=api", "purl": "pkg:deb/debian/cacti@0.8.7g-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@0.8.7g-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/89638?format=api", "purl": "pkg:deb/debian/cacti@1.2.16%2Bds1-2%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3upu-n6rg-jucm" }, { "vulnerability": "VCID-5h87-xv7n-z7hk" }, { "vulnerability": "VCID-gnr2-jzjp-6bfs" }, { "vulnerability": "VCID-tv4b-jnha-yucw" }, { "vulnerability": "VCID-ww9n-y9w8-33dp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.16%252Bds1-2%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/89636?format=api", "purl": "pkg:deb/debian/cacti@1.2.24%2Bds1-1%2Bdeb12u5?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-gnr2-jzjp-6bfs" }, { "vulnerability": "VCID-tv4b-jnha-yucw" }, { "vulnerability": "VCID-ww9n-y9w8-33dp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.24%252Bds1-1%252Bdeb12u5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/89640?format=api", "purl": "pkg:deb/debian/cacti@1.2.30%2Bds1-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.30%252Bds1-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/89639?format=api", "purl": "pkg:deb/debian/cacti@1.2.30%2Bds1-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.30%252Bds1-3%3Fdistro=trixie" } ], "aliases": [ "CVE-2010-2543" ], "risk_score": 0.2, "exploitability": "2.0", "weighted_severity": "0.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-j9na-ysyz-tbgd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61776?format=api", "vulnerability_id": "VCID-wsut-jegb-7kex", "summary": "Cacti before 0.8.7f, as used in Red Hat High Performance Computing (HPC) Solution and other products, allows remote authenticated administrators to execute arbitrary commands via shell metacharacters in (1) the FQDN field of a Device or (2) the Vertical Label field of a Graph Template.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-1645.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-1645.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-1645", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02794", "scoring_system": "epss", "scoring_elements": "0.86367", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.02794", "scoring_system": "epss", "scoring_elements": "0.8639", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.02794", "scoring_system": "epss", "scoring_elements": "0.86391", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.02794", "scoring_system": "epss", "scoring_elements": "0.86388", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.02794", "scoring_system": "epss", "scoring_elements": "0.86375", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.02794", "scoring_system": "epss", "scoring_elements": "0.86389", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-1645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1645" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=609115", "reference_id": "609115", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=609115" }, { "reference_url": "https://security.gentoo.org/glsa/201401-20", "reference_id": "GLSA-201401-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201401-20" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/89657?format=api", "purl": "pkg:deb/debian/cacti@0.8.7g-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@0.8.7g-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/89638?format=api", "purl": "pkg:deb/debian/cacti@1.2.16%2Bds1-2%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3upu-n6rg-jucm" }, { "vulnerability": "VCID-5h87-xv7n-z7hk" }, { "vulnerability": "VCID-gnr2-jzjp-6bfs" }, { "vulnerability": "VCID-tv4b-jnha-yucw" }, { "vulnerability": "VCID-ww9n-y9w8-33dp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.16%252Bds1-2%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/89636?format=api", "purl": "pkg:deb/debian/cacti@1.2.24%2Bds1-1%2Bdeb12u5?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-gnr2-jzjp-6bfs" }, { "vulnerability": "VCID-tv4b-jnha-yucw" }, { "vulnerability": "VCID-ww9n-y9w8-33dp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.24%252Bds1-1%252Bdeb12u5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/89640?format=api", "purl": "pkg:deb/debian/cacti@1.2.30%2Bds1-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.30%252Bds1-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/89639?format=api", "purl": "pkg:deb/debian/cacti@1.2.30%2Bds1-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.30%252Bds1-3%3Fdistro=trixie" } ], "aliases": [ "CVE-2010-1645" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wsut-jegb-7kex" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61786?format=api", "vulnerability_id": "VCID-yqjt-83pe-dkby", "summary": "Cross-site scripting (XSS) vulnerability in utilities.php in Cacti before 0.8.7g, as used in Red Hat High Performance Computing (HPC) Solution and other products, allows remote attackers to inject arbitrary web script or HTML via the filter parameter.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2544.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2544.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2544", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.06007", "scoring_system": "epss", "scoring_elements": "0.90854", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.06007", "scoring_system": "epss", "scoring_elements": "0.90868", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.06007", "scoring_system": "epss", "scoring_elements": "0.90865", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.06007", "scoring_system": "epss", "scoring_elements": "0.90863", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.06007", "scoring_system": "epss", "scoring_elements": "0.9088", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2544" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2544", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2544" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=459105", "reference_id": "459105", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=459105" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/34504.txt", "reference_id": "CVE-2010-2544;OSVDB-67412", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/34504.txt" }, { "reference_url": "https://www.securityfocus.com/bid/42575/info", "reference_id": "CVE-2010-2544;OSVDB-67412", "reference_type": "exploit", "scores": [], "url": "https://www.securityfocus.com/bid/42575/info" }, { "reference_url": "https://security.gentoo.org/glsa/201401-20", "reference_id": "GLSA-201401-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201401-20" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/89657?format=api", "purl": "pkg:deb/debian/cacti@0.8.7g-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@0.8.7g-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/89638?format=api", "purl": "pkg:deb/debian/cacti@1.2.16%2Bds1-2%2Bdeb11u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3upu-n6rg-jucm" }, { "vulnerability": "VCID-5h87-xv7n-z7hk" }, { "vulnerability": "VCID-gnr2-jzjp-6bfs" }, { "vulnerability": "VCID-tv4b-jnha-yucw" }, { "vulnerability": "VCID-ww9n-y9w8-33dp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.16%252Bds1-2%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/89636?format=api", "purl": "pkg:deb/debian/cacti@1.2.24%2Bds1-1%2Bdeb12u5?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-gnr2-jzjp-6bfs" }, { "vulnerability": "VCID-tv4b-jnha-yucw" }, { "vulnerability": "VCID-ww9n-y9w8-33dp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.24%252Bds1-1%252Bdeb12u5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/89640?format=api", "purl": "pkg:deb/debian/cacti@1.2.30%2Bds1-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.30%252Bds1-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/89639?format=api", "purl": "pkg:deb/debian/cacti@1.2.30%2Bds1-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@1.2.30%252Bds1-3%3Fdistro=trixie" } ], "aliases": [ "CVE-2010-2544" ], "risk_score": 0.2, "exploitability": "2.0", "weighted_severity": "0.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-yqjt-83pe-dkby" } ], "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/cacti@0.8.7g-1%3Fdistro=trixie" }