544 matches found
Privilege Escalation
rdiffweb is vulnerable to Privilege Escalation. An origin validation error allows a malicious user to elevate their privileges, due to insufficient validations in setheaders function in tools/secureheaders.py...
Missing rate limit on rdiffweb
Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0...
CVE-2022-3439
Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0...
PYSEC-2022-43159
Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0...
PYSEC-2022-43159
Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0...
GHSA-824X-JCXF-HPFG Origin Validation Error in rdiffweb
ikus060/rdiffweb prior to 2.5.0a5 did not enforce origin validation in web traffic. Users are advised to upgrade to version 2.5.0a5...
Missing rate limit on rdiffweb
Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0...
Origin Validation Error in rdiffweb
ikus060/rdiffweb prior to 2.5.0a5 did not enforce origin validation in web traffic. Users are advised to upgrade to version 2.5.0a5...
PT-2022-22157 · Rdiffweb · Rdiffweb
Name of the Vulnerable Software and Affected Versions: rdiffweb versions prior to 2.5.0 Description: The issue is related to the allocation of resources without limits or throttling in the GitHub repository ikus060/rdiffweb. Recommendations: For versions prior to 2.5.0, update to version 2.5.0 or...
CVE-2022-3439 Allocation of Resources Without Limits or Throttling in ikus060/rdiffweb
Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0...
Rdiffweb 安全漏洞
Rdiffweb is a web application by Patrik Dufresne, an individual developer in the USA. It provides quick access to your archives through an efficient web interface. A security vulnerability exists in Rdiffweb versions prior to 2.5.0, which stems from unrestricted resource allocation...
CVE-2022-3439
CVE-2022-3439 affects rdiffweb in the GitHub repository ikus060/rdiffweb prior to version 2.5.0. The root cause is allocation of resources without limits or throttling, which can impact availability and also affect confidentiality and integrity as indicated by CVSS 3.1/3.0 assessments (high impac...
CVE-2022-3457
Origin Validation Error in GitHub repository ikus060/rdiffweb prior to 2.5.0a5...
PYSEC-2022-43160
Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0...
PYSEC-2022-43160
Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0...
PYSEC-2022-43161
Origin Validation Error in GitHub repository ikus060/rdiffweb prior to 2.5.0a5...
PYSEC-2022-43161
Origin Validation Error in GitHub repository ikus060/rdiffweb prior to 2.5.0a5...
Design/Logic Flaw
Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0...
Rdiffweb 安全漏洞
Rdiffweb is a web application by Patrik Dufresne, an individual developer in the USA. It provides quick access to your archives through an efficient web interface. A security vulnerability exists in Rdiffweb versions prior to 2.5.0 that stems from its failure to limit or throttle resource...
Rdiffweb 访问控制错误漏洞
Rdiffweb is a web application by Patrik Dufresne, an individual developer in the USA. Provides quick access to your archives through an efficient web interface. An access control error vulnerability exists in Rdiffweb 2.5.0a5, which stems from a source validation error...