16 matches found
CVE-2009-0242
gmetad in Ganglia 3.1.1, when supporting multiple requests per connection on an interactive port, allows remote attackers to cause a denial of service via a request to the gmetad service with a path that does not exist, which causes Ganglia to 1 perform excessive CPU computation and 2 send the...
CVE-2024-21658
discourse-calendar is a discourse plugin which adds the ability to create a dynamic calendar in the first post of a topic. The limit on region value length is too generous. This allows a malicious actor to cause a Discourse instance to use excessive bandwidth and disk space. This issue has been...
CVE-2024-21658 Insufficient control of region value length in discourse-calendar
discourse-calendar is a discourse plugin which adds the ability to create a dynamic calendar in the first post of a topic. The limit on region value length is too generous. This allows a malicious actor to cause a Discourse instance to use excessive bandwidth and disk space. This issue has been...
Discourse Calendar 资源管理错误漏洞
Discourse Calendar is an open source calendar plugin for Discourse. A resource management error vulnerability exists in Discourse Calendar, which stems from an overly loose restriction on the length of data, which can lead to abnormal bandwidth and disk space usage...
PT-2024-19002 · Discourse · Discourse
Name of the Vulnerable Software and Affected Versions: Discourse versions prior to 3.1.4 Discourse versions prior to 3.2.0.beta4 Description: Discourse is a platform for community discussion. For fields that are client editable, limits on sizes are not imposed. This allows a malicious actor to...
PT-2023-33029 · Cometbft · Cometbft
Name of the Vulnerable Software and Affected Versions: CometBFT versions prior to the next release of each branch Description: A default configuration in CometBFT has been found to be large for common use cases, which may affect block times and consensus participation when fully utilized by chain...
CVE-2021-32917
An issue was discovered in Prosody before 0.11.9. The proxy65 component allows open access by default, even if neither of the users has an XMPP account on the local server, allowing unrestricted use of the server's bandwidth...
DigitalOcean Data Leak Incident Exposed Some of Its Customers Data
DigitalOcean, one of the biggest modern web hosting platforms, recently hit with a concerning data leak incident that exposed some of its customers' data to unknown and unauthorized third parties. Though the hosting company has not yet publicly released a statement, it did has started warning...
Network Wide Hardware Ad Blocking: Pi-Hole
The Pi-hole can block ads for all devices on your network. All you need is a Raspberry Pi connected to your router. It was inspired as a low-cost,open source alternative to the AdTrap. The Pi-hole works on the the B, B+and Pi 2 it can also run on the Zero, but you need a micro-USB-to-Ethernet...
New Relic: Too many included lookups
Your SPF record required more than 10 DNS Lookups to be performed during the test. The number of "include" mechanisms and chained "redirect' modifiers should be kept to a minimum. According to RFC 4408, 'SPF implementations MUST limit the number of mechanisms and modifiers that do DNS Lookups to ...
Bandwidth Monitor – NetHogs
Bandwidth Monitor NetHogs is a small ‘net top’ tool. Instead of breaking the traffic down per protocol or per subnet, like most tools do, it groups bandwidth by process. NetHogs does not rely on a special kernel module to be loaded. If there’s suddenly a lot of network traffic, you can fire up...
Debian: Security Advisory (DSA-2179-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
DSA-2179-1 dtc - SQL injection
Bulletin has no description...
dtc -- multiple vulnerabilities
Ansgar Burchardt reports: Ansgar Burchardt discovered several vulnerabilities in DTC, a web control panel for admin and accounting hosting services: The bwpermoth.php graph contains an SQL injection vulnerability; insufficient checks in bwpermonth.php can lead to bandwidth usage information...
PRTG Network Monitor Detection
PRTG Network Monitor, a web-based tool for displaying network and bandwidth usage data, is hosted on the remote web server. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid51874; scriptversion"1.9"; scriptsetattributeattribute:"pluginmodificationdate",...
Fedora 12 : kvirc-4.0.0-1.fc12 (2010-10529)
KVIrc 4.0.0 Notable new features of this release include: - Definitive and stable port to the Qt4 libraries - Better support for server tecnologies: CAPS, STARTTLS, SASL, irc services... - A new UPnP module to control and remotely map your router ports for DCC - A totally rewritten MDI subsystem,...