{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/87582?format=json","vulnerability_id":"VCID-k6fb-kgk8-rkfa","summary":"","aliases":[{"alias":"CVE-2014-3866"}],"fixed_packages":[],"affected_packages":[],"references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-3866","reference_id":"","reference_type":"","scores":[{"value":"0.00211","scoring_system":"epss","scoring_elements":"0.43668","published_at":"2026-05-30T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-3866"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/39198.html","reference_id":"CVE-2014-3866;OSVDB-107397","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/39198.html"},{"reference_url":"https://www.securityfocus.com/bid/67604/info","reference_id":"CVE-2014-3866;OSVDB-107397","reference_type":"exploit","scores":[],"url":"https://www.securityfocus.com/bid/67604/info"}],"weaknesses":[],"exploits":[{"date_added":"2014-05-25","description":"User Cake - Cross-Site Request Forgery","required_action":null,"due_date":null,"notes":null,"known_ransomware_campaign_use":true,"source_date_published":"2014-05-25","exploit_type":"webapps","platform":"php","source_date_updated":"2016-01-08","data_source":"Exploit-DB","source_url":"https://www.securityfocus.com/bid/67604/info"}],"severity_range_score":null,"exploitability":null,"weighted_severity":null,"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-k6fb-kgk8-rkfa"}