Search for packages
| purl | pkg:deb/debian/pypy@7.0.0%2Bdfsg-3 |
| Next non-vulnerable version | 7.3.3+dfsg-2 |
| Latest non-vulnerable version | 7.3.3+dfsg-2 |
| Risk | 3.5 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-g2ay-gsja-aaaj
Aliases: CVE-2019-16935 |
The documentation XML-RPC server in Python through 2.7.16, 3.x through 3.6.9, and 3.7.x through 3.7.4 has XSS via the server_title field. This occurs in Lib/DocXMLRPCServer.py in Python 2.x, and in Lib/xmlrpc/server.py in Python 3.x. If set_server_title is called with untrusted input, arbitrary JavaScript can be delivered to clients that visit the http URL for this server. |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-06-21T05:24:43.861035+00:00 | Debian Oval Importer | Affected by | VCID-g2ay-gsja-aaaj | None | 36.1.3 |
| 2025-06-21T02:59:14.056144+00:00 | Debian Importer | Affected by | VCID-g2ay-gsja-aaaj | None | 36.1.3 |
| 2025-06-21T00:09:46.592364+00:00 | Debian Importer | Affected by | VCID-g2ay-gsja-aaaj | https://security-tracker.debian.org/tracker/data/json | 36.1.3 |
| 2025-06-07T23:02:29.053224+00:00 | Debian Oval Importer | Affected by | VCID-g2ay-gsja-aaaj | None | 36.1.0 |
| 2025-04-12T21:29:04.725985+00:00 | Debian Oval Importer | Affected by | VCID-g2ay-gsja-aaaj | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-07T21:34:32.291108+00:00 | Debian Oval Importer | Affected by | VCID-g2ay-gsja-aaaj | None | 36.0.0 |
| 2025-04-04T05:46:19.615924+00:00 | Debian Importer | Affected by | VCID-g2ay-gsja-aaaj | None | 36.0.0 |
| 2025-04-04T02:51:37.894222+00:00 | Debian Importer | Affected by | VCID-g2ay-gsja-aaaj | https://security-tracker.debian.org/tracker/data/json | 36.0.0 |
| 2025-02-19T07:36:17.993379+00:00 | Debian Importer | Affected by | VCID-g2ay-gsja-aaaj | https://security-tracker.debian.org/tracker/data/json | 35.1.0 |
| 2025-02-19T07:36:11.338633+00:00 | Debian Importer | Affected by | VCID-g2ay-gsja-aaaj | None | 35.1.0 |
| 2024-11-22T04:53:21.296040+00:00 | Debian Importer | Affected by | VCID-g2ay-gsja-aaaj | None | 35.0.0 |
| 2024-11-20T03:38:33.651639+00:00 | Debian Importer | Affected by | VCID-g2ay-gsja-aaaj | None | 34.3.2 |
| 2024-10-09T04:30:06.944662+00:00 | Debian Importer | Affected by | VCID-g2ay-gsja-aaaj | None | 34.0.2 |
| 2024-09-18T15:42:27.407995+00:00 | Debian Importer | Affected by | VCID-g2ay-gsja-aaaj | None | 34.0.1 |
| 2024-04-24T14:52:26.080827+00:00 | Debian Importer | Affected by | VCID-g2ay-gsja-aaaj | https://security-tracker.debian.org/tracker/data/json | 34.0.0rc4 |
| 2024-04-24T14:52:20.357303+00:00 | Debian Importer | Affected by | VCID-g2ay-gsja-aaaj | None | 34.0.0rc4 |
| 2024-01-10T17:35:14.979525+00:00 | Debian Importer | Affected by | VCID-g2ay-gsja-aaaj | https://security-tracker.debian.org/tracker/data/json | 34.0.0rc2 |
| 2024-01-10T17:35:08.992145+00:00 | Debian Importer | Affected by | VCID-g2ay-gsja-aaaj | None | 34.0.0rc2 |
| 2024-01-04T07:11:52.430016+00:00 | Debian Importer | Affected by | VCID-g2ay-gsja-aaaj | https://security-tracker.debian.org/tracker/data/json | 34.0.0rc1 |
| 2024-01-04T07:11:46.524846+00:00 | Debian Importer | Affected by | VCID-g2ay-gsja-aaaj | None | 34.0.0rc1 |