Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-2jta-dshu-e7hb

Summary WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. In affected versions the widgets editor introduced in WordPress 5.8 beta 1 has improper handling of HTML input in the Custom HTML feature. This leads to stored XSS in the custom HTML widget. This has been patched in WordPress 5.8. It was only present during the testing/beta phase of WordPress 5.8.

Aliases

alias	CVE-2021-39202

Fixed_packages

url	pkg:deb/debian/wordpress@0?distro=trixie
purl	pkg:deb/debian/wordpress@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@0%3Fdistro=trixie

url pkg:deb/debian/wordpress@5.7.11%2Bdfsg1-0%2Bdeb11u1?distro=trixie

purl pkg:deb/debian/wordpress@5.7.11%2Bdfsg1-0%2Bdeb11u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-gyaq-8pvh-p7gg

vulnerability	VCID-jghn-eujf-zbdn

vulnerability	VCID-yqam-kpce-dfg7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@5.7.11%252Bdfsg1-0%252Bdeb11u1%3Fdistro=trixie

url pkg:deb/debian/wordpress@6.1.9%2Bdfsg1-0%2Bdeb12u1?distro=trixie

purl pkg:deb/debian/wordpress@6.1.9%2Bdfsg1-0%2Bdeb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-gyaq-8pvh-p7gg

vulnerability	VCID-jghn-eujf-zbdn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.1.9%252Bdfsg1-0%252Bdeb12u1%3Fdistro=trixie

url	pkg:deb/debian/wordpress@6.8.3%2Bdfsg1-0%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/wordpress@6.8.3%2Bdfsg1-0%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.8.3%252Bdfsg1-0%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/wordpress@6.9.4%2Bdfsg1-1?distro=trixie
purl	pkg:deb/debian/wordpress@6.9.4%2Bdfsg1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/wordpress@6.9.4%252Bdfsg1-1%3Fdistro=trixie

Affected_packages

References

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-39202

reference_id

reference_type

scores

value	0.00817
scoring_system	epss
scoring_elements	0.74301
published_at	2026-04-01T12:55:00Z

value	0.00817
scoring_system	epss
scoring_elements	0.74304
published_at	2026-04-02T12:55:00Z

value	0.00817
scoring_system	epss
scoring_elements	0.74332
published_at	2026-04-04T12:55:00Z

value	0.00817
scoring_system	epss
scoring_elements	0.74305
published_at	2026-04-07T12:55:00Z

value	0.00817
scoring_system	epss
scoring_elements	0.74338
published_at	2026-04-08T12:55:00Z

value	0.00817
scoring_system	epss
scoring_elements	0.74353
published_at	2026-04-09T12:55:00Z

value	0.00817
scoring_system	epss
scoring_elements	0.74374
published_at	2026-04-11T12:55:00Z

value	0.00817
scoring_system	epss
scoring_elements	0.74354
published_at	2026-04-12T12:55:00Z

value	0.00817
scoring_system	epss
scoring_elements	0.74346
published_at	2026-04-13T12:55:00Z

value	0.00817
scoring_system	epss
scoring_elements	0.74383
published_at	2026-04-16T12:55:00Z

value	0.00817
scoring_system	epss
scoring_elements	0.74391
published_at	2026-04-18T12:55:00Z

value	0.00817
scoring_system	epss
scoring_elements	0.74384
published_at	2026-04-21T12:55:00Z

value	0.00817
scoring_system	epss
scoring_elements	0.74417
published_at	2026-04-24T12:55:00Z

value	0.00817
scoring_system	epss
scoring_elements	0.74425
published_at	2026-04-26T12:55:00Z

value	0.00817
scoring_system	epss
scoring_elements	0.74424
published_at	2026-04-29T12:55:00Z

value	0.00817
scoring_system	epss
scoring_elements	0.74421
published_at	2026-05-05T12:55:00Z

value	0.00817
scoring_system	epss
scoring_elements	0.7445
published_at	2026-05-07T12:55:00Z

value	0.00817
scoring_system	epss
scoring_elements	0.74477
published_at	2026-05-09T12:55:00Z

value	0.00817
scoring_system	epss
scoring_elements	0.74443
published_at	2026-05-11T12:55:00Z

value	0.00817
scoring_system	epss
scoring_elements	0.74464
published_at	2026-05-12T12:55:00Z

value	0.00817
scoring_system	epss
scoring_elements	0.7452
published_at	2026-05-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-39202

Weaknesses

Exploits

Severity_range_score null

Exploitability null

Weighted_severity null

Risk_score null

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2jta-dshu-e7hb

Vulnerability Instance