Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-mpwt-9awb-mkh4
Summary
Mozilla security researcher moz_bug_r_a4 reported that
certain security checks in the location object can be bypassed if chrome code is
called content in a specific manner. This allowed for the loading of restricted
content. This can be combined with other issues to become potentially
exploitable.
Aliases
0
alias CVE-2012-3978
Fixed_packages
0
url pkg:mozilla/Firefox@15.0.0
purl pkg:mozilla/Firefox@15.0.0
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@15.0.0
1
url pkg:mozilla/Firefox%20ESR@10.0.7
purl pkg:mozilla/Firefox%20ESR@10.0.7
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox%2520ESR@10.0.7
2
url pkg:mozilla/SeaMonkey@2.12.0
purl pkg:mozilla/SeaMonkey@2.12.0
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/SeaMonkey@2.12.0
3
url pkg:mozilla/Thunderbird@15.0.0
purl pkg:mozilla/Thunderbird@15.0.0
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@15.0.0
4
url pkg:mozilla/Thunderbird%20ESR@10.0.7
purl pkg:mozilla/Thunderbird%20ESR@10.0.7
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird%2520ESR@10.0.7
Affected_packages
References
0
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3978
reference_id CVE-2012-3978
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3978
1
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2012-70
reference_id mfsa2012-70
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2012-70
Weaknesses
Exploits
Severity_range_score7.0 - 8.9
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-mpwt-9awb-mkh4