Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-z455-pxya-jyej

Summary

Bugzilla developer Frédéric Buclin reported
that the X-Frame-Options header is ignored when server push is used
in multi-part responses. This can lead to potential clickjacking on sites that
use X-Frame-Options as a protection.

Aliases

alias	CVE-2013-1696

Fixed_packages

url	pkg:mozilla/Firefox@22.0.0
purl	pkg:mozilla/Firefox@22.0.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@22.0.0

url	pkg:mozilla/SeaMonkey@2.19.0
purl	pkg:mozilla/SeaMonkey@2.19.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/SeaMonkey@2.19.0

Affected_packages

References

reference_url	http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00003.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00003.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00005.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00005.html

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1696.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1696.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2013-1696

reference_id

reference_type

scores

value	0.00432
scoring_system	epss
scoring_elements	0.62787
published_at	2026-05-14T12:55:00Z

value	0.00432
scoring_system	epss
scoring_elements	0.62532
published_at	2026-04-01T12:55:00Z

value	0.00432
scoring_system	epss
scoring_elements	0.62705
published_at	2026-05-11T12:55:00Z

value	0.00432
scoring_system	epss
scoring_elements	0.62731
published_at	2026-05-12T12:55:00Z

value	0.00432
scoring_system	epss
scoring_elements	0.62589
published_at	2026-04-02T12:55:00Z

value	0.00432
scoring_system	epss
scoring_elements	0.62622
published_at	2026-04-04T12:55:00Z

value	0.00432
scoring_system	epss
scoring_elements	0.62587
published_at	2026-04-07T12:55:00Z

value	0.00432
scoring_system	epss
scoring_elements	0.62637
published_at	2026-04-08T12:55:00Z

value	0.00432
scoring_system	epss
scoring_elements	0.62653
published_at	2026-04-09T12:55:00Z

value	0.00432
scoring_system	epss
scoring_elements	0.62671
published_at	2026-04-11T12:55:00Z

value	0.00432
scoring_system	epss
scoring_elements	0.6266
published_at	2026-04-12T12:55:00Z

value	0.00432
scoring_system	epss
scoring_elements	0.62638
published_at	2026-04-13T12:55:00Z

value	0.00432
scoring_system	epss
scoring_elements	0.62679
published_at	2026-04-16T12:55:00Z

value	0.00432
scoring_system	epss
scoring_elements	0.62687
published_at	2026-04-18T12:55:00Z

value	0.00432
scoring_system	epss
scoring_elements	0.62669
published_at	2026-04-21T12:55:00Z

value	0.00432
scoring_system	epss
scoring_elements	0.62682
published_at	2026-04-24T12:55:00Z

value	0.00432
scoring_system	epss
scoring_elements	0.62697
published_at	2026-04-26T12:55:00Z

value	0.00432
scoring_system	epss
scoring_elements	0.62695
published_at	2026-04-29T12:55:00Z

value	0.00432
scoring_system	epss
scoring_elements	0.62646
published_at	2026-05-05T12:55:00Z

value	0.00432
scoring_system	epss
scoring_elements	0.62693
published_at	2026-05-07T12:55:00Z

value	0.00432
scoring_system	epss
scoring_elements	0.62745
published_at	2026-05-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2013-1696

reference_url	https://bugzilla.mozilla.org/show_bug.cgi?id=761667
reference_id
reference_type
scores
url	https://bugzilla.mozilla.org/show_bug.cgi?id=761667

reference_url	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16992
reference_id
reference_type
scores
url	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16992

reference_url	http://www.mozilla.org/security/announce/2013/mfsa2013-58.html
reference_id
reference_type
scores
url	http://www.mozilla.org/security/announce/2013/mfsa2013-58.html

reference_url	http://www.ubuntu.com/usn/USN-1890-1
reference_id
reference_type
scores
url	http://www.ubuntu.com/usn/USN-1890-1

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=977613
reference_id	977613
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=977613

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox::::::::
reference_id	cpe:2.3:a:mozilla:firefox::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:19.0:::::::*
reference_id	cpe:2.3:a:mozilla:firefox:19.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:19.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:19.0.1:::::::*
reference_id	cpe:2.3:a:mozilla:firefox:19.0.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:19.0.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:19.0.2:::::::*
reference_id	cpe:2.3:a:mozilla:firefox:19.0.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:19.0.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:20.0:::::::*
reference_id	cpe:2.3:a:mozilla:firefox:20.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:20.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:20.0.1:::::::*
reference_id	cpe:2.3:a:mozilla:firefox:20.0.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:20.0.1:::::::*

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1696
reference_id	CVE-2013-1696
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1696

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2013-1696

reference_id

CVE-2013-1696

reference_type

scores

value	4.0
scoring_system	cvssv2
scoring_elements	AV:N/AC:H/Au:N/C:P/I:P/A:N

url

https://nvd.nist.gov/vuln/detail/CVE-2013-1696

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2013-58

reference_id

mfsa2013-58

reference_type

scores

value	none
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2013-58

reference_url	https://usn.ubuntu.com/1890-1/
reference_id	USN-1890-1
reference_type
scores
url	https://usn.ubuntu.com/1890-1/

Weaknesses

cwe_id	264
name	Permissions, Privileges, and Access Controls
description	Weaknesses in this category are related to the management of permissions, privileges, and other security features that are used to perform access control.

Exploits

Severity_range_score 4.0 - 4.0

Exploitability null

Weighted_severity null

Risk_score null

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-z455-pxya-jyej

Vulnerability Instance