$PD^3F$: a Pluggable and Dynamic DoS-Defense Framework against Resource Consumption Attacks Targeting Large Language Models

Large Language Models LLMs, due to substantial computational requirements, are vulnerable to resource consumption attacks, which can severely degrade server performance or even cause crashes, as demonstrated by denial-of-service DoS attacks designed for LLMs. However, existing works lack mitigati...

U.S. Dept Of Defense: Sensitive Images & Files Exposed Through Directory Listing

During reconnaissance, a directory listing was identified that provided an index of resources located inside the directory. The specific files exposed were not provided. The affected system host was not disclosed...

CVE-2021-45446

A vulnerability in Hitachi Vantara Pentaho Business Analytics Server versions before 9.2.0.2 and 8.3.0.25 does not cascade the hidden property to the children of the Home folder. This directory listing provides an attacker with the complete index of all the resources located inside the directory...

WAGO 信息泄露漏洞

WAGO is a 750-88x series programmable logic controller from WAGO, Germany. The device is designed for use in industrial environments as an electronic system for the operation of digital algorithms. A security vulnerability exists in WAGO. An attacker could use this vulnerability to gain access to...

RATELIMITED: Open Directory

Summary: A misconfigured server can show a directory listing, which could potentially yield sensitive information to an attacker. Solution : 1. Disable directory listings in the web- or application-server configuration by default. 2. Restrict access to unnecessary directories and files. 3. Create...