Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-3d8m-wtww-2yah
Summary
Link injection
`www/logout.php` and `modules/core/www/no_cookie.php` are not checking the URLs obtained via the HTTP request before displaying them as the target of links that the user may click on. It allows attackers to display links targeting a malicious website inside a trusted site running SimpleSAMLphp, due to the lack of security checks involving the `link_href` and `retryURL` HTTP parameters, respectively.
Aliases
0
alias 201606-01
Fixed_packages
0
url pkg:composer/simplesamlphp/simplesamlphp@1.14.4
purl pkg:composer/simplesamlphp/simplesamlphp@1.14.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4gux-4jrc-w7ce
1
vulnerability VCID-6fwf-1xps-t7g5
2
vulnerability VCID-96db-3jav-tkay
3
vulnerability VCID-b3fn-bnh5-qyg4
4
vulnerability VCID-cmqz-hp34-8kcx
5
vulnerability VCID-d1cm-xhdp-8qhv
6
vulnerability VCID-d1d1-jng1-4fe6
7
vulnerability VCID-dgs2-3xbu-c3ff
8
vulnerability VCID-dvwj-zd42-nbhe
9
vulnerability VCID-gwtm-bdae-3ufj
10
vulnerability VCID-k5d6-k216-8ub8
11
vulnerability VCID-mfwu-mfhq-fkh8
12
vulnerability VCID-pskx-9d46-bfdt
13
vulnerability VCID-ugw3-xgan-k3fm
14
vulnerability VCID-va8h-3qxg-uqh2
15
vulnerability VCID-yn8q-d76k-q3h2
16
vulnerability VCID-ywuy-my3f-x7cd
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/simplesamlphp/simplesamlphp@1.14.4
Affected_packages
0
url pkg:composer/simplesamlphp/simplesamlphp@1.12.0
purl pkg:composer/simplesamlphp/simplesamlphp@1.12.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2etk-v7gt-pqhn
1
vulnerability VCID-3d8m-wtww-2yah
2
vulnerability VCID-4gux-4jrc-w7ce
3
vulnerability VCID-6fwf-1xps-t7g5
4
vulnerability VCID-96db-3jav-tkay
5
vulnerability VCID-b3fn-bnh5-qyg4
6
vulnerability VCID-cmqz-hp34-8kcx
7
vulnerability VCID-d1cm-xhdp-8qhv
8
vulnerability VCID-d1d1-jng1-4fe6
9
vulnerability VCID-dgs2-3xbu-c3ff
10
vulnerability VCID-dvwj-zd42-nbhe
11
vulnerability VCID-gwtm-bdae-3ufj
12
vulnerability VCID-j3sv-ccme-rbdn
13
vulnerability VCID-jv7n-m3cf-jfex
14
vulnerability VCID-mfwu-mfhq-fkh8
15
vulnerability VCID-pskx-9d46-bfdt
16
vulnerability VCID-ugw3-xgan-k3fm
17
vulnerability VCID-va8h-3qxg-uqh2
18
vulnerability VCID-yn8q-d76k-q3h2
19
vulnerability VCID-ywuy-my3f-x7cd
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/simplesamlphp/simplesamlphp@1.12.0
1
url pkg:composer/simplesamlphp/simplesamlphp@1.13.0-rc1
purl pkg:composer/simplesamlphp/simplesamlphp@1.13.0-rc1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2etk-v7gt-pqhn
1
vulnerability VCID-3d8m-wtww-2yah
2
vulnerability VCID-4gux-4jrc-w7ce
3
vulnerability VCID-6fwf-1xps-t7g5
4
vulnerability VCID-96db-3jav-tkay
5
vulnerability VCID-b3fn-bnh5-qyg4
6
vulnerability VCID-cmqz-hp34-8kcx
7
vulnerability VCID-d1cm-xhdp-8qhv
8
vulnerability VCID-d1d1-jng1-4fe6
9
vulnerability VCID-dgs2-3xbu-c3ff
10
vulnerability VCID-dvwj-zd42-nbhe
11
vulnerability VCID-gwtm-bdae-3ufj
12
vulnerability VCID-j3sv-ccme-rbdn
13
vulnerability VCID-jv7n-m3cf-jfex
14
vulnerability VCID-mfwu-mfhq-fkh8
15
vulnerability VCID-pskx-9d46-bfdt
16
vulnerability VCID-ugw3-xgan-k3fm
17
vulnerability VCID-va8h-3qxg-uqh2
18
vulnerability VCID-yn8q-d76k-q3h2
19
vulnerability VCID-ywuy-my3f-x7cd
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/simplesamlphp/simplesamlphp@1.13.0-rc1
2
url pkg:composer/simplesamlphp/simplesamlphp@1.13.0-rc2
purl pkg:composer/simplesamlphp/simplesamlphp@1.13.0-rc2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2etk-v7gt-pqhn
1
vulnerability VCID-3d8m-wtww-2yah
2
vulnerability VCID-4gux-4jrc-w7ce
3
vulnerability VCID-6fwf-1xps-t7g5
4
vulnerability VCID-96db-3jav-tkay
5
vulnerability VCID-b3fn-bnh5-qyg4
6
vulnerability VCID-cmqz-hp34-8kcx
7
vulnerability VCID-d1cm-xhdp-8qhv
8
vulnerability VCID-d1d1-jng1-4fe6
9
vulnerability VCID-dgs2-3xbu-c3ff
10
vulnerability VCID-dvwj-zd42-nbhe
11
vulnerability VCID-gwtm-bdae-3ufj
12
vulnerability VCID-j3sv-ccme-rbdn
13
vulnerability VCID-jv7n-m3cf-jfex
14
vulnerability VCID-mfwu-mfhq-fkh8
15
vulnerability VCID-pskx-9d46-bfdt
16
vulnerability VCID-ugw3-xgan-k3fm
17
vulnerability VCID-va8h-3qxg-uqh2
18
vulnerability VCID-yn8q-d76k-q3h2
19
vulnerability VCID-ywuy-my3f-x7cd
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/simplesamlphp/simplesamlphp@1.13.0-rc2
3
url pkg:composer/simplesamlphp/simplesamlphp@1.13.0
purl pkg:composer/simplesamlphp/simplesamlphp@1.13.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2etk-v7gt-pqhn
1
vulnerability VCID-3d8m-wtww-2yah
2
vulnerability VCID-4gux-4jrc-w7ce
3
vulnerability VCID-6fwf-1xps-t7g5
4
vulnerability VCID-96db-3jav-tkay
5
vulnerability VCID-b3fn-bnh5-qyg4
6
vulnerability VCID-cmqz-hp34-8kcx
7
vulnerability VCID-d1cm-xhdp-8qhv
8
vulnerability VCID-d1d1-jng1-4fe6
9
vulnerability VCID-dgs2-3xbu-c3ff
10
vulnerability VCID-dvwj-zd42-nbhe
11
vulnerability VCID-gwtm-bdae-3ufj
12
vulnerability VCID-j3sv-ccme-rbdn
13
vulnerability VCID-jv7n-m3cf-jfex
14
vulnerability VCID-mfwu-mfhq-fkh8
15
vulnerability VCID-pskx-9d46-bfdt
16
vulnerability VCID-ugw3-xgan-k3fm
17
vulnerability VCID-va8h-3qxg-uqh2
18
vulnerability VCID-yn8q-d76k-q3h2
19
vulnerability VCID-ywuy-my3f-x7cd
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/simplesamlphp/simplesamlphp@1.13.0
4
url pkg:composer/simplesamlphp/simplesamlphp@1.13.1
purl pkg:composer/simplesamlphp/simplesamlphp@1.13.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2etk-v7gt-pqhn
1
vulnerability VCID-3d8m-wtww-2yah
2
vulnerability VCID-4gux-4jrc-w7ce
3
vulnerability VCID-6fwf-1xps-t7g5
4
vulnerability VCID-96db-3jav-tkay
5
vulnerability VCID-b3fn-bnh5-qyg4
6
vulnerability VCID-cmqz-hp34-8kcx
7
vulnerability VCID-d1cm-xhdp-8qhv
8
vulnerability VCID-d1d1-jng1-4fe6
9
vulnerability VCID-dgs2-3xbu-c3ff
10
vulnerability VCID-dvwj-zd42-nbhe
11
vulnerability VCID-gwtm-bdae-3ufj
12
vulnerability VCID-j3sv-ccme-rbdn
13
vulnerability VCID-jv7n-m3cf-jfex
14
vulnerability VCID-mfwu-mfhq-fkh8
15
vulnerability VCID-pskx-9d46-bfdt
16
vulnerability VCID-ugw3-xgan-k3fm
17
vulnerability VCID-va8h-3qxg-uqh2
18
vulnerability VCID-yn8q-d76k-q3h2
19
vulnerability VCID-ywuy-my3f-x7cd
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/simplesamlphp/simplesamlphp@1.13.1
5
url pkg:composer/simplesamlphp/simplesamlphp@1.13.2
purl pkg:composer/simplesamlphp/simplesamlphp@1.13.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2etk-v7gt-pqhn
1
vulnerability VCID-3d8m-wtww-2yah
2
vulnerability VCID-4gux-4jrc-w7ce
3
vulnerability VCID-6fwf-1xps-t7g5
4
vulnerability VCID-96db-3jav-tkay
5
vulnerability VCID-b3fn-bnh5-qyg4
6
vulnerability VCID-cmqz-hp34-8kcx
7
vulnerability VCID-d1cm-xhdp-8qhv
8
vulnerability VCID-d1d1-jng1-4fe6
9
vulnerability VCID-dgs2-3xbu-c3ff
10
vulnerability VCID-dvwj-zd42-nbhe
11
vulnerability VCID-gwtm-bdae-3ufj
12
vulnerability VCID-j3sv-ccme-rbdn
13
vulnerability VCID-jv7n-m3cf-jfex
14
vulnerability VCID-mfwu-mfhq-fkh8
15
vulnerability VCID-pskx-9d46-bfdt
16
vulnerability VCID-ugw3-xgan-k3fm
17
vulnerability VCID-va8h-3qxg-uqh2
18
vulnerability VCID-yn8q-d76k-q3h2
19
vulnerability VCID-ywuy-my3f-x7cd
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/simplesamlphp/simplesamlphp@1.13.2
6
url pkg:composer/simplesamlphp/simplesamlphp@1.14.0-rc1
purl pkg:composer/simplesamlphp/simplesamlphp@1.14.0-rc1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2etk-v7gt-pqhn
1
vulnerability VCID-3d8m-wtww-2yah
2
vulnerability VCID-4gux-4jrc-w7ce
3
vulnerability VCID-6fwf-1xps-t7g5
4
vulnerability VCID-96db-3jav-tkay
5
vulnerability VCID-b3fn-bnh5-qyg4
6
vulnerability VCID-cmqz-hp34-8kcx
7
vulnerability VCID-d1cm-xhdp-8qhv
8
vulnerability VCID-d1d1-jng1-4fe6
9
vulnerability VCID-dgs2-3xbu-c3ff
10
vulnerability VCID-dvwj-zd42-nbhe
11
vulnerability VCID-gwtm-bdae-3ufj
12
vulnerability VCID-j3sv-ccme-rbdn
13
vulnerability VCID-jv7n-m3cf-jfex
14
vulnerability VCID-mfwu-mfhq-fkh8
15
vulnerability VCID-pskx-9d46-bfdt
16
vulnerability VCID-ugw3-xgan-k3fm
17
vulnerability VCID-va8h-3qxg-uqh2
18
vulnerability VCID-yn8q-d76k-q3h2
19
vulnerability VCID-ywuy-my3f-x7cd
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/simplesamlphp/simplesamlphp@1.14.0-rc1
7
url pkg:composer/simplesamlphp/simplesamlphp@1.14.0
purl pkg:composer/simplesamlphp/simplesamlphp@1.14.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2etk-v7gt-pqhn
1
vulnerability VCID-3d8m-wtww-2yah
2
vulnerability VCID-4gux-4jrc-w7ce
3
vulnerability VCID-6fwf-1xps-t7g5
4
vulnerability VCID-96db-3jav-tkay
5
vulnerability VCID-b3fn-bnh5-qyg4
6
vulnerability VCID-cmqz-hp34-8kcx
7
vulnerability VCID-d1cm-xhdp-8qhv
8
vulnerability VCID-d1d1-jng1-4fe6
9
vulnerability VCID-dgs2-3xbu-c3ff
10
vulnerability VCID-dvwj-zd42-nbhe
11
vulnerability VCID-gwtm-bdae-3ufj
12
vulnerability VCID-j3sv-ccme-rbdn
13
vulnerability VCID-jv7n-m3cf-jfex
14
vulnerability VCID-k5d6-k216-8ub8
15
vulnerability VCID-mfwu-mfhq-fkh8
16
vulnerability VCID-pskx-9d46-bfdt
17
vulnerability VCID-ugw3-xgan-k3fm
18
vulnerability VCID-va8h-3qxg-uqh2
19
vulnerability VCID-yn8q-d76k-q3h2
20
vulnerability VCID-ywuy-my3f-x7cd
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/simplesamlphp/simplesamlphp@1.14.0
8
url pkg:composer/simplesamlphp/simplesamlphp@1.14.1
purl pkg:composer/simplesamlphp/simplesamlphp@1.14.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2etk-v7gt-pqhn
1
vulnerability VCID-3d8m-wtww-2yah
2
vulnerability VCID-4gux-4jrc-w7ce
3
vulnerability VCID-6fwf-1xps-t7g5
4
vulnerability VCID-96db-3jav-tkay
5
vulnerability VCID-b3fn-bnh5-qyg4
6
vulnerability VCID-cmqz-hp34-8kcx
7
vulnerability VCID-d1cm-xhdp-8qhv
8
vulnerability VCID-d1d1-jng1-4fe6
9
vulnerability VCID-dgs2-3xbu-c3ff
10
vulnerability VCID-dvwj-zd42-nbhe
11
vulnerability VCID-gwtm-bdae-3ufj
12
vulnerability VCID-j3sv-ccme-rbdn
13
vulnerability VCID-k5d6-k216-8ub8
14
vulnerability VCID-mfwu-mfhq-fkh8
15
vulnerability VCID-pskx-9d46-bfdt
16
vulnerability VCID-ugw3-xgan-k3fm
17
vulnerability VCID-va8h-3qxg-uqh2
18
vulnerability VCID-yn8q-d76k-q3h2
19
vulnerability VCID-ywuy-my3f-x7cd
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/simplesamlphp/simplesamlphp@1.14.1
9
url pkg:composer/simplesamlphp/simplesamlphp@1.14.2
purl pkg:composer/simplesamlphp/simplesamlphp@1.14.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2etk-v7gt-pqhn
1
vulnerability VCID-3d8m-wtww-2yah
2
vulnerability VCID-4gux-4jrc-w7ce
3
vulnerability VCID-6fwf-1xps-t7g5
4
vulnerability VCID-96db-3jav-tkay
5
vulnerability VCID-b3fn-bnh5-qyg4
6
vulnerability VCID-cmqz-hp34-8kcx
7
vulnerability VCID-d1cm-xhdp-8qhv
8
vulnerability VCID-d1d1-jng1-4fe6
9
vulnerability VCID-dgs2-3xbu-c3ff
10
vulnerability VCID-dvwj-zd42-nbhe
11
vulnerability VCID-gwtm-bdae-3ufj
12
vulnerability VCID-j3sv-ccme-rbdn
13
vulnerability VCID-k5d6-k216-8ub8
14
vulnerability VCID-mfwu-mfhq-fkh8
15
vulnerability VCID-pskx-9d46-bfdt
16
vulnerability VCID-ugw3-xgan-k3fm
17
vulnerability VCID-va8h-3qxg-uqh2
18
vulnerability VCID-yn8q-d76k-q3h2
19
vulnerability VCID-ywuy-my3f-x7cd
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/simplesamlphp/simplesamlphp@1.14.2
10
url pkg:composer/simplesamlphp/simplesamlphp@1.14.3
purl pkg:composer/simplesamlphp/simplesamlphp@1.14.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2etk-v7gt-pqhn
1
vulnerability VCID-3d8m-wtww-2yah
2
vulnerability VCID-4gux-4jrc-w7ce
3
vulnerability VCID-6fwf-1xps-t7g5
4
vulnerability VCID-96db-3jav-tkay
5
vulnerability VCID-b3fn-bnh5-qyg4
6
vulnerability VCID-cmqz-hp34-8kcx
7
vulnerability VCID-d1cm-xhdp-8qhv
8
vulnerability VCID-d1d1-jng1-4fe6
9
vulnerability VCID-dgs2-3xbu-c3ff
10
vulnerability VCID-dvwj-zd42-nbhe
11
vulnerability VCID-gwtm-bdae-3ufj
12
vulnerability VCID-j3sv-ccme-rbdn
13
vulnerability VCID-k5d6-k216-8ub8
14
vulnerability VCID-mfwu-mfhq-fkh8
15
vulnerability VCID-pskx-9d46-bfdt
16
vulnerability VCID-ugw3-xgan-k3fm
17
vulnerability VCID-va8h-3qxg-uqh2
18
vulnerability VCID-yn8q-d76k-q3h2
19
vulnerability VCID-ywuy-my3f-x7cd
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/simplesamlphp/simplesamlphp@1.14.3
References
0
reference_url https://simplesamlphp.org/security/201606-01
reference_id
reference_type
scores
url https://simplesamlphp.org/security/201606-01
Weaknesses
Exploits
Severity_range_scorenull
Exploitability0.5
Weighted_severity0.0
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-3d8m-wtww-2yah