Froxlor vulnerable to Allocation of Resources Without Limits or Throttling

Froxlor prior to 2.0.16 has a password reset page with no rate limit...

GHSA-4GM9-C9JQ-G523 Froxlor vulnerable to Allocation of Resources Without Limits or Throttling

Froxlor prior to 2.0.16 has a password reset page with no rate limit...

Froxlor Resource Management Error Vulnerability

Froxlor is a set of lightweight server management software from the Froxlor team. A resource management error vulnerability exists in versions of Froxlor prior to 2.0.16 that stems from a failure to properly allocate resources. An attacker can exploit this vulnerability to cause a denial of servi...

SUSE CVE-2023-2666

Allocation of Resources Without Limits or Throttling in GitHub repository froxlor/froxlor prior to 2.0.16...

CVE-2023-2666 Allocation of Resources Without Limits or Throttling in froxlor/froxlor

Allocation of Resources Without Limits or Throttling in GitHub repository froxlor/froxlor prior to 2.0.16...

CVE-2023-2666

Froxlor (versions prior to 2.0.16) has a resource management vulnerability described as Allocation of Resources Without Limits or Throttling. The issue, a resource-management error in Froxlor, can lead to denial of service. This is corroborated by multiple sources (NVD, Red Hat, CNVD/CNNVD, OSV, ...

Froxlor 安全漏洞

Froxlor is a set of lightweight server management software from the Froxlor team. A resource management error vulnerability exists in versions of Froxlor prior to 2.0.16 that stems from a failure to properly allocate resources. An attacker can exploit this vulnerability to cause a denial of servi...

SUSE CVE-2023-0877

Code Injection in GitHub repository froxlor/froxlor prior to 2.0.11...

SUSE CVE-2023-2034

Unrestricted Upload of File with Dangerous Type in GitHub repository froxlor/froxlor prior to 2.0.14...

froxlor/froxlor vulnerable to unrestricted upload of file with dangerous type

Image files uploaded in froxlor/froxlor prior to 2.0.14 were not properly validated which could result in remote code execution via path manipulation...

GHSA-QWVP-G9J7-28F6 froxlor/froxlor vulnerable to unrestricted upload of file with dangerous type

Image files uploaded in froxlor/froxlor prior to 2.0.14 were not properly validated which could result in remote code execution via path manipulation...

CVE-2023-2034 Unrestricted Upload of File with Dangerous Type in froxlor/froxlor

Unrestricted Upload of File with Dangerous Type in GitHub repository froxlor/froxlor prior to 2.0.14...

Froxlor 代码问题漏洞

Froxlor is a lightweight server management software from the Froxlor team. A code issue vulnerability exists in Froxlor versions prior to 2.0.14, which stems from the presence of unrestricted uploads of dangerous types of files...

CVE-2023-2034

Froxlor/Froxlor versions prior to 2.0.14 are affected by an unrestricted upload of files with dangerous types. The root cause is inadequate validation of uploaded image/dangerous-type files, which could enable remote code execution via path manipulation. Impact is high (possible RCE) as described...

PT-2023-17430 · Froxlor · Froxlor

Name of the Vulnerable Software and Affected Versions: froxlor versions prior to 2.0.14 Description: The issue concerns the unrestricted upload of files with dangerous types in the GitHub repository froxlor/froxlor. Specifically, image files uploaded were not properly validated, which could resul...

Froxlor 2.0.3 Stable Remote Code Execution

!/usr/bin/python3 Exploit Title: Froxlor 2.0.3 Stable - Remote Code Execution RCE Date: 2023-01-08 Exploit Author: Askar @mohammadaskar2 CVE: CVE-2023-0315 Vendor Homepage: https://froxlor.org/ Version: v2.0.3 Tested on: Ubuntu 20.04 / PHP 8.2 import telnetlib import requests import socket import...

Froxlor 2.0.3 Stable - Remote Code Execution (RCE)

!/usr/bin/python3 Exploit Title: Froxlor 2.0.3 Stable - Remote Code Execution RCE Date: 2023-01-08 Exploit Author: Askar @mohammadaskar2 CVE: CVE-2023-0315 Vendor Homepage: https://froxlor.org/ Version: v2.0.3 Tested on: Ubuntu 20.04 / PHP 8.2 import telnetlib import requests import socket import...

Froxlor 2.0.3 Stable - Remote Code Execution Exploit

!/usr/bin/python3 Exploit Title: Froxlor 2.0.3 Stable - Remote Code Execution RCE Date: 2023-01-08 Exploit Author: Askar @mohammadaskar2 CVE: CVE-2023-0315 Vendor Homepage: https://froxlor.org/ Version: v2.0.3 Tested on: Ubuntu 20.04 / PHP 8.2 import telnetlib import requests import socket import...

SUSE CVE-2023-1307

Authentication Bypass by Primary Weakness in GitHub repository froxlor/froxlor prior to 2.0.13...

Froxlor is vulnerable to authentication bypass

Authentication Bypass by Primary Weakness in GitHub repository froxlor/froxlor prior to 2.0.13...