CVE-2026-33064

CVE-2026-33064 (Free5GC UDM) affects Free5GC prior to 1.4.2. A crafted POST to /sdm-subscriptions with path traversal and a large JSON payload can trigger a nil pointer dereference in DataChangeNotificationProcedure (notifier.go), causing the UDM service to panic and crash. Impact is disruption o...

Exploit for Use of Uninitialized Resource in Citrix Netscaler_Application_Delivery_Controller

CVE-2025-5777 Citrix NetScaler Memory Leak Exploit !WARNIN...

Brother Printers Debut Embedded HTTP Server Denial of Service (CVE-2017-16249)

The Debut embedded http server contains a remotely exploitable denial of service where a single malformed HTTP POST request can cause the server to hang until eventually replying 300 seconds with an HTTP 500 error. While the server is hung, print jobs over the network are blocked and the web...

EUVD-2001-0374

Malware in sbrugna...

EUVD-2009-0068

Malware in sbrugna...

Denial of service when trying to parse malformed POST requests in aiohttp

...

GHSA-5M98-QGG9-WH84 aiohttp vulnerable to Denial of Service when trying to parse malformed POST requests

Summary An attacker can send a specially crafted POST multipart/form-data request. When the aiohttp server processes it, the server will enter an infinite loop and be unable to process any further requests. Impact An attacker can stop the application from serving requests after sending a single...

CVE-2024-30251 Denial of service when trying to parse malformed POST requests in aiohttp

aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. In affected versions an attacker can send a specially crafted POST multipart/form-data request. When the aiohttp server processes it, the server will enter an infinite loop and be unable to process any further request...

aiohttp 安全漏洞

aiohttp is an open source asynchronous HTTP client/server framework for asyncio and Python. A security vulnerability exists in aiohttp versions prior to 3.9.4, which results in a denial of service when attempting to parse a malformed POST request...

CVE-2016-2961

The integration server in IBM Integration Bus 9 before 9.0.0.6 and 10 before 10.0.0.5 and WebSphere Message Broker 8 before 8.0.0.8 allows remote attackers to obtain sensitive Tomcat version information by sending a malformed POST request and then reading the Java stack trace...

CVE-2016-2961

The integration server in IBM Integration Bus 9 before 9.0.0.6 and 10 before 10.0.0.5 and WebSphere Message Broker 8 before 8.0.0.8 allows remote attackers to obtain sensitive Tomcat version information by sending a malformed POST request and then reading the Java stack trace...

CGIScript.net 1.0 Information Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/4764/info CGIScript.net provides various webmaster related tools and is maintained by Mike Barone and Andy Angrick. It is possible to cause numerous scripts provided by CGIScript.net to disclose sensitive system...

cFos Personal Net 3.09 - Remote Heap Memory Corruption (Denial of Service)

cFos Personal Net 3.09 - Remote Heap Memory Corruption Denial of Service cFos Personal Net v3.09 Remote Heap Memory Corruption Denial of Service Vendor: cFos Software GmbH Product web page: https://www.cfos.de Affected version: 3.09 Summary: cFos Personal Net PNet is a full-featured HTTP server...

Cross site request forgery (csrf)

The Cisco Wireless LAN Controller WLC, Cisco Catalyst 6500 Wireless Services Module WiSM, and Cisco Catalyst 3750 Integrated Wireless LAN Controller with software 4.x before 4.2.176.0 and 5.2.x before 5.2.157.0 allow remote attackers to cause a denial of service device reload via a web...

Helix Universal Server Remote Integer Handling DoS

The remote host is running Helix Universal Server, a digital media delivery platform. There is a flaw in the remote version of this software that could allow an attacker to crash this service by sending a malformed POST request to the remote host. C Tenable Network Security, Inc...

Xitami Malformed POST Request Infinite Loop Remote DoS

The remote host is running a vulnerable version of the Xitami web server. It is possible to freeze the remote web server by sending a malformed POST request. This is known to affect Xitami versions 2.5 and earlier. C Tenable Network Security, Inc. include"compat.inc"; ifdescription scriptid11934;...

[Full-Disclosure] Xitami Denial of Service in Handling malformed request

Xitami Denial of Service in Handling malformed request ================================================= PROGRAM: Xitami HOMEPAGE: http://www.xitami.com VULNERABLE VERSIONS: 2.5 and below DESCRIPTION ================================================= LiteServe is a very powerful, full-featured,...

Moby NetSuite 1.01.2 - POST Handler Buffer Overflow

Moby NetSuite 1.01.2 - POST Handler Buffer Overflow source: https://www.securityfocus.com/bid/6277/info A buffer overflow vulnerability has been reported for Moby NetSuite that may result in a denial of service condition. Reportedly, it is possible to cause NetSuite to crash when a malformed POST...

Moby NetSuite 1.0/1.2 - POST Handler Buffer Overflow

source: https://www.securityfocus.com/bid/6277/info A buffer overflow vulnerability has been reported for Moby NetSuite that may result in a denial of service condition. Reportedly, it is possible to cause NetSuite to crash when a malformed POST request is received. An attacker can exploit this...

IPSwitch IMail Advisory #2

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 2c79cbe14ac7d0b8472d3f129fa1df55 Security Advisory 6 PRODUCT IPSwitch IMail, All Current Versions VULNERABILITY the IMail Web Calendaring service, iwebcal, can be crashed by issuing a malformed POST request.. specifically one that neglects to include ...