Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-4avx-e9mf-2yb1
Summary
Uncontrolled Resouce Consumption
An issue was discovered in phpMyAdmin. The transformation feature allows a user to trigger a denial-of-service (DoS) attack against the server.
Aliases
0
alias CVE-2016-6618
1
alias GHSA-rv6m-chvv-wmxg
Fixed_packages
0
url pkg:apk/alpine/phpmyadmin@4.4.15.8-r0?arch=armhf&distroversion=v3.2&reponame=main
purl pkg:apk/alpine/phpmyadmin@4.4.15.8-r0?arch=armhf&distroversion=v3.2&reponame=main
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/phpmyadmin@4.4.15.8-r0%3Farch=armhf&distroversion=v3.2&reponame=main
1
url pkg:apk/alpine/phpmyadmin@4.4.15.8-r0?arch=x86&distroversion=v3.2&reponame=main
purl pkg:apk/alpine/phpmyadmin@4.4.15.8-r0?arch=x86&distroversion=v3.2&reponame=main
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/phpmyadmin@4.4.15.8-r0%3Farch=x86&distroversion=v3.2&reponame=main
2
url pkg:apk/alpine/phpmyadmin@4.4.15.8-r0?arch=x86_64&distroversion=v3.2&reponame=main
purl pkg:apk/alpine/phpmyadmin@4.4.15.8-r0?arch=x86_64&distroversion=v3.2&reponame=main
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/phpmyadmin@4.4.15.8-r0%3Farch=x86_64&distroversion=v3.2&reponame=main
3
url pkg:composer/phpmyadmin/phpmyadmin@4.7.0
purl pkg:composer/phpmyadmin/phpmyadmin@4.7.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2at1-y3qg-77fb
1
vulnerability VCID-32ja-yuuw-bbbh
2
vulnerability VCID-4wn2-pnbv-sked
3
vulnerability VCID-52xs-45kd-w3hz
4
vulnerability VCID-5dd1-nzdy-zfez
5
vulnerability VCID-8rvw-n1fg-ffc2
6
vulnerability VCID-ajf6-bk2g-wkb7
7
vulnerability VCID-axtb-1njj-rbb4
8
vulnerability VCID-bd83-vf81-sfa4
9
vulnerability VCID-dx3h-z4dg-m3e1
10
vulnerability VCID-j2k3-xghw-gfb3
11
vulnerability VCID-kfr7-v6tb-eqau
12
vulnerability VCID-mzuh-5e5y-d3hr
13
vulnerability VCID-p1jn-sxds-mqd1
14
vulnerability VCID-q45d-5bf4-tff5
15
vulnerability VCID-q7rn-1612-quau
16
vulnerability VCID-r4zz-m2mr-9qeb
17
vulnerability VCID-rx9z-rdmm-5fg6
18
vulnerability VCID-w6nk-akeh-4ufg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/phpmyadmin/phpmyadmin@4.7.0
4
url pkg:deb/debian/phpmyadmin@4:4.6.4%2Bdfsg1-1?distro=trixie
purl pkg:deb/debian/phpmyadmin@4:4.6.4%2Bdfsg1-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.4%252Bdfsg1-1%3Fdistro=trixie
5
url pkg:deb/debian/phpmyadmin@4:5.0.4%2Bdfsg2-2%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/phpmyadmin@4:5.0.4%2Bdfsg2-2%2Bdeb11u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-47ju-f89a-eud8
1
vulnerability VCID-d3qn-js1p-7yeq
2
vulnerability VCID-dmqy-9xth-cuhs
3
vulnerability VCID-gx8h-5h14-dqez
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:5.0.4%252Bdfsg2-2%252Bdeb11u1%3Fdistro=trixie
6
url pkg:deb/debian/phpmyadmin@4:5.2.1%2Bdfsg-1%2Bdeb12u1?distro=trixie
purl pkg:deb/debian/phpmyadmin@4:5.2.1%2Bdfsg-1%2Bdeb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-gx8h-5h14-dqez
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:5.2.1%252Bdfsg-1%252Bdeb12u1%3Fdistro=trixie
7
url pkg:deb/debian/phpmyadmin@4:5.2.2-really%2Bdfsg-1%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/phpmyadmin@4:5.2.2-really%2Bdfsg-1%2Bdeb13u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:5.2.2-really%252Bdfsg-1%252Bdeb13u1%3Fdistro=trixie
8
url pkg:deb/debian/phpmyadmin@4:5.2.3%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/phpmyadmin@4:5.2.3%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:5.2.3%252Bdfsg-1%3Fdistro=trixie
9
url pkg:ebuild/dev-db/phpmyadmin@4.6.5.1
purl pkg:ebuild/dev-db/phpmyadmin@4.6.5.1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/phpmyadmin@4.6.5.1
Affected_packages
0
url pkg:composer/phpmyadmin/phpmyadmin@4.0.0
purl pkg:composer/phpmyadmin/phpmyadmin@4.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hvw-4h4d-zkhv
1
vulnerability VCID-23dq-w66r-k3bt
2
vulnerability VCID-2at1-y3qg-77fb
3
vulnerability VCID-2vqn-z4en-duh4
4
vulnerability VCID-32ja-yuuw-bbbh
5
vulnerability VCID-38tp-acy8-57hj
6
vulnerability VCID-3va7-xx14-gkds
7
vulnerability VCID-44uc-xrvp-7bet
8
vulnerability VCID-4avx-e9mf-2yb1
9
vulnerability VCID-4kax-4bpz-g7c5
10
vulnerability VCID-4vgu-cagj-hfhb
11
vulnerability VCID-4wn2-pnbv-sked
12
vulnerability VCID-52xs-45kd-w3hz
13
vulnerability VCID-7vpu-x9mb-q3c6
14
vulnerability VCID-a94q-k98a-6qbw
15
vulnerability VCID-ajf6-bk2g-wkb7
16
vulnerability VCID-amgy-teas-euh5
17
vulnerability VCID-btc1-yng3-ckhx
18
vulnerability VCID-cbjd-e3sk-m7bu
19
vulnerability VCID-dx3h-z4dg-m3e1
20
vulnerability VCID-gmjk-222y-abda
21
vulnerability VCID-gtps-py3z-13cu
22
vulnerability VCID-j2k3-xghw-gfb3
23
vulnerability VCID-jmn8-a5r9-2qc8
24
vulnerability VCID-k5ph-wws1-fqg4
25
vulnerability VCID-kfr7-v6tb-eqau
26
vulnerability VCID-m54t-23nu-3kaa
27
vulnerability VCID-mgu4-pf1x-r3dy
28
vulnerability VCID-mzuh-5e5y-d3hr
29
vulnerability VCID-n66y-s36g-fqck
30
vulnerability VCID-n7cc-xfym-u7g4
31
vulnerability VCID-nuju-ekmt-k7g9
32
vulnerability VCID-nv3j-xj42-wfcw
33
vulnerability VCID-q45d-5bf4-tff5
34
vulnerability VCID-q7pe-bvr1-g3bc
35
vulnerability VCID-qqyb-zags-bbhz
36
vulnerability VCID-r9sb-489v-fqc9
37
vulnerability VCID-rz6q-hthe-1uer
38
vulnerability VCID-tvfz-v881-sufp
39
vulnerability VCID-txba-1at4-ekg2
40
vulnerability VCID-ufzd-pbge-6qhk
41
vulnerability VCID-w6nk-akeh-4ufg
42
vulnerability VCID-ww5r-71kf-tfgr
43
vulnerability VCID-xqf5-yxf3-u3he
44
vulnerability VCID-zvcj-g6rt-s3de
45
vulnerability VCID-zyes-82y3-g7dh
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/phpmyadmin/phpmyadmin@4.0.0
1
url pkg:composer/phpmyadmin/phpmyadmin@4.6.3
purl pkg:composer/phpmyadmin/phpmyadmin@4.6.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3va7-xx14-gkds
1
vulnerability VCID-44uc-xrvp-7bet
2
vulnerability VCID-4avx-e9mf-2yb1
3
vulnerability VCID-4vgu-cagj-hfhb
4
vulnerability VCID-gmjk-222y-abda
5
vulnerability VCID-gtps-py3z-13cu
6
vulnerability VCID-jmn8-a5r9-2qc8
7
vulnerability VCID-mgu4-pf1x-r3dy
8
vulnerability VCID-nuju-ekmt-k7g9
9
vulnerability VCID-q7pe-bvr1-g3bc
10
vulnerability VCID-qqyb-zags-bbhz
11
vulnerability VCID-rz6q-hthe-1uer
12
vulnerability VCID-xqf5-yxf3-u3he
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/phpmyadmin/phpmyadmin@4.6.3
References
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2016-6618
reference_id
reference_type
scores
0
value 0.00756
scoring_system epss
scoring_elements 0.73626
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2016-6618
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6618
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6618
2
reference_url https://github.com/phpmyadmin/composer
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/phpmyadmin/composer
3
reference_url https://lists.debian.org/debian-lts-announce/2018/07/msg00006.html
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.debian.org/debian-lts-announce/2018/07/msg00006.html
4
reference_url https://security.gentoo.org/glsa/201701-32
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://security.gentoo.org/glsa/201701-32
5
reference_url https://www.phpmyadmin.net/security/PMASA-2016-41
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.phpmyadmin.net/security/PMASA-2016-41
6
reference_url http://www.securityfocus.com/bid/95047
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.securityfocus.com/bid/95047
7
reference_url https://nvd.nist.gov/vuln/detail/CVE-2016-6618
reference_id CVE-2016-6618
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2016-6618
Weaknesses
0
cwe_id 1035
name OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.
1
cwe_id 937
name OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.
Exploits
Severity_range_score4.0 - 6.9
Exploitability0.5
Weighted_severity6.2
Risk_score3.1
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-4avx-e9mf-2yb1