13 matches found
CVE-2026-20188 Cisco Crosswork Network Controller and Cisco Network Services Orchestrator Advisory
Following the initial publication of the Security Advisory about a denial of service DoS condition in Cisco Crosswork Network Controller and Cisco Network Services Orchestrator NSO, additional information has been made available to the Cisco Product Security Incident Response Team PSIRT. Upon...
SigningHub 安全漏洞
SigningHub is an electronic signature platform from SigningHub UK. A security vulnerability exists in SigningHub version v8.6.8, which stems from a lack of rate limiting in the component /Home/UploadStreamDocument, which could lead to a denial of service attack...
EUVD-2019-15687
Malware in sbrugna...
Reliance on Untrusted Inputs in a Security Decision
Overview litestar is a Litestar - A production-ready, highly performant, extensible ASGI API Framework Affected versions of this package are vulnerable to Reliance on Untrusted Inputs in a Security Decision due to the use of X-Forwarded-For header in the cachekeyfromrequest function. An attacker...
EUVD-2021-28279
Malicious code in bioql PyPI...
EUVD-2023-56055
Malicious code in bioql PyPI...
CVE-2025-47951
Weblate (localization tool) prior to version 5.12 lacked rate limiting on the second-factor verification endpoint. This allowed an attacker with valid credentials to automate OTP guessing, potentially evading authentication controls. The vulnerability has been fixed in Weblate 5.12 (and patched i...
CVE-2025-48375 Schule Missing Rate Limiting on OTP Email Requests – Susceptible to Abuse & DoS
Schule is open-source school management system software. Prior to version 1.0.1, the file forgotpassword.php or equivalent endpoint responsible for email-based OTP generation lacks proper rate limiting controls, allowing attackers to abuse the OTP request functionality. This vulnerability can be...
CVE-2025-22273 Lack of rate-limiting in password change mechanism in CyberArk Endpoint Privilege Manager
Application does not limit the number or frequency of user interactions, such as the number of incoming requests. At the "/EPMUI/VfManager.asmx/ChangePassword" endpoint it is possible to perform a brute force attack on the current password in use. This issue affects CyberArk Endpoint Privilege...
CVE-2023-51297
A lack of rate limiting in the 'Email Settings' feature of PHPJabbers Hotel Booking System v4.0 allows attackers to send an excessive amount of email for a legitimate user, leading to a possible Denial of Service DoS via a large amount of generated e-mail messages...
Bus Reservation System Security Vulnerability
Bus Reservation System is PHPJabbers open source a bus reservation system . Bus Reservation System 1.1 version has a security vulnerability , the vulnerability stems from the existence of a lost rate limit vulnerability...
PHPJabbers Restaurant Booking System Security Vulnerability
PHPJabbers Restaurant Booking System is a restaurant booking system from the Serbian company PHPJabbers. A security vulnerability exists in PHPJabbers Restaurant Booking System version 3.0, which originates from a lost rate limit vulnerability...
PT-2022-11487
Name of the Vulnerable Software and Affected Versions M-Files Server versions prior to 21.12.10873.0 M-Files Web versions prior to 21.12.10873.0 Description The issue is related to a lack of rate limiting in certain types of user accounts, which allows for an unlimited number of attempts, making ...