CVE-2026-34829

Rack is vulnerable to a Denial of Service caused by unbounded multipart file uploads when a request uses multipart/form-data without a Content-Length header. Prior to versions 2.2.23, 3.1.21, and 3.2.6, Rack::Multipart::Parser only wraps the request body in a BoundedIO if CONTENT_LENGTH exists; w...

EUVD-2016-7360

Malware in sbrugna...

EUVD-2013-0334

Malware in sbrugna...

EUVD-2020-6224

Malware in sbrugna...

CVE-2020-14065

IceWarp Email Server 12.3.0.1 allows remote attackers to upload files and consume disk space...

CVE-2013-0316

The Image module in Drupal 7.x before 7.20 allows remote attackers to cause a denial of service CPU and disk space consumption via a large number of new derivative requests...

CVE-2024-13925

The Klarna Checkout for WooCommerce WordPress plugin before 2.13.5 exposes an unauthenticated WooCommerce Ajax endpoint that allows an attacker to flood the log files with data at the maximum size allowed for a POST parameter per request. This can result in rapid consumption of disk space,...

CVE-2024-37302 Synapse denial of service through media disk space consumption

Synapse is an open-source Matrix homeserver. Synapse versions before 1.106 are vulnerable to a disk fill attack, where an unauthenticated adversary can induce Synapse to download and cache large amounts of remote media. The default rate limit strategy is insufficient to mitigate this. This can le...

Citrix ADC and Citrix Gateway Multiple Vulnerabilities (CTX319135)

The remote Citrix ADC or Citrix Gateway device is version 11.1 before 11.1-65.22, 12.1 before 12.1-62.27 or 13.0 before 13.0-82.45. It is therefore affected by multiple vulnerabilities: - A vulnerability has been discovered in Citrix ADC formerly known as NetScaler ADC and Citrix Gateway formerly...

StackStorm st2 Infinite Loop Condition

StackStorm before 3.4.1, in some situations, has an infinite loop that consumes all available memory and disk space. This can occur if Python 3.x is used, the locale is not utf-8, and there is an attempt to log Unicode data from an action or rule name...

CVE-2020-14065

CVE-2020-14065 affects IceWarp Email Server 12.3.0.1; documented vulnerability allows remote attackers to upload files and consume disk space, with impact described as high availability disruption. The available sources corroborate an unauthorized file upload path in IceWarp’s 12.3.0.1 release; n...

Code injection

An issue was discovered in PHP 7.3.x before 7.3.0alpha3, 7.2.x before 7.2.8, and before 7.1.20. The php-fpm master process restarts a child process in an endless loop when using program execution functions e.g., passthru, exec, shellexec, or system with a non-blocking STDIN stream, causing this...

CVE-2015-9253

CVE-2015-9253 affects PHP 7.3.x before 7.3.0alpha3, 7.2.x before 7.2.8, and earlier than 7.1.20. The php-fpm master process restarts a child process in an endless loop when using program execution functions (e.g., passthru, exec, shell_exec, system) with a non-blocking STDIN stream, causing the m...

Sun Java Applet Font.createFont Remote Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/17981/info Sun Java is prone to a remote denial-of-service vulnerability because the application fails to properly handle certain Java applets. Successfully exploiting this issue will cause the application to create a...

CVE-2013-0316

Removed by vendor...

RedHat Update for squirrelmail RHSA-2012:0103-01

Check for the Version of squirrelmail OpenVAS Vulnerability Test RedHat Update for squirrelmail RHSA-2012:0103-01 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

CentOS 4 : xpdf (CESA-2005:670)

An updated xpdf package that fixes a security issue is now available for Red Hat Enterprise Linux 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The xpdf package is an X Window System-based viewer for Portable Document Format PDF files. A...

Moderate: Red Hat Security Advisory: gpdf security update

An updated gpdf package that fixes a security issue is now available for Red Hat Enterprise Linux 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The gpdf package is an GNOME based viewer for Portable Document Format PDF files. Marcus Meissn...

Solaris 7.0 - DMI Denial of Service

source: https://www.securityfocus.com/bid/878/info DMI is the Desktop Management Interface, and is a suite of application management programs shipped with Sun's Solaris. Each application that is managed through DMI has a MIF record which contains information about its managable components and...