Lucene search
K

4 matches found

RedHat Linux
RedHat Linux
added 2024/04/02 8:57 p.m.4 views

bind9: Specific recursive query patterns may lead to an out-of-memory condition

A flaw was found in the named application, part of the bind9 package, which uses a cache database to speeds up DNS queries. To maintain its efficiency when running as a recursive name resolver, named performs a cache database clean up under certain conditions. This issue may allow an attacker to...

7.5CVSS5.7AI score0.01097EPSS
Exploits0References5
OSV
OSV
added 2022/05/17 3:29 a.m.3 views

GHSA-6WGP-FWFM-MXP3 Django allows user sessions hijacking via an empty string in the session key

The session.flush function in the cacheddb backend in Django 1.8.x before 1.8.2 does not properly flush the session, which allows remote attackers to hijack user sessions via an empty string in the session key...

8.7CVSS6.8AI score0.01748EPSS
Exploits0References6
Prion
Prion
added 2015/06/02 2:59 p.m.20 views

Design/Logic Flaw

The session.flush function in the cacheddb backend in Django 1.8.x before 1.8.2 does not properly flush the session, which allows remote attackers to hijack user sessions via an empty string in the session key...

5CVSS7AI score0.01748EPSS
Exploits0References2Affected Software1
PyPA
PyPA
added 2015/06/02 2:59 p.m.8 views

PYSEC-2015-19

The session.flush function in the cacheddb backend in Django 1.8.x before 1.8.2 does not properly flush the session, which allows remote attackers to hijack user sessions via an empty string in the session key...

5CVSS7AI score0.01748EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder