Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-uvg6-vnf4-yuh3
SummaryUser provided uploads to the Easy Discuss component for Joomla aren't properly validated. Uploads are purely checked by file extensions, no mime type checks are happening.
Aliases
0
alias CVE-2026-21625
Fixed_packages
Affected_packages
References
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-21625
reference_id
reference_type
scores
0
value 0.0002
scoring_system epss
scoring_elements 0.05794
published_at 2026-06-14T12:55:00Z
1
value 0.00027
scoring_system epss
scoring_elements 0.08122
published_at 2026-06-11T12:55:00Z
2
value 0.00027
scoring_system epss
scoring_elements 0.08157
published_at 2026-06-12T12:55:00Z
3
value 0.00027
scoring_system epss
scoring_elements 0.08153
published_at 2026-06-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-21625
1
reference_url https://stackideas.com/easydiscuss
reference_id easydiscuss
reference_type
scores
0
value 4.8
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-16T15:35:12Z/
url https://stackideas.com/easydiscuss
Weaknesses
0
cwe_id 434
name Unrestricted Upload of File with Dangerous Type
description The product allows the attacker to upload or transfer files of dangerous types that can be automatically processed within the product's environment.
Exploits
Severity_range_score4.8 - 4.8
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-uvg6-vnf4-yuh3