15 matches found
EUVD-2022-1988
Malicious code in bioql PyPI...
Ejabberd DoS via malformed stanza
The modpubsub module modpubsub.erl in ejabberd 2.1.8 and 3.0.0-alpha-3 allows remote authenticated users to cause a denial of service infinite loop via a stanza with a publish tag that lacks a node attribute...
GHSA-2H3Q-V47H-F4RC Ejabberd DoS via malformed stanza
The modpubsub module modpubsub.erl in ejabberd 2.1.8 and 3.0.0-alpha-3 allows remote authenticated users to cause a denial of service infinite loop via a stanza with a publish tag that lacks a node attribute...
openSUSE Security Update : prosody (openSUSE-2021-728)
This update for prosody fixes the following issues : prosody was updated to 0.11.9 : Security : - modlimits, prosody.cfg.lua: Enable rate limits by default - certmanager: Disable renegotiation by default - modproxy65: Restrict access to local c2s connections by default - util.startup: Set more...
Security update for prosody (important)
openSUSE Security Update: Security update for prosody Announcement ID: openSUSE-SU-2021:0728-1 Rating: important References: 1186027 Cross-References: CVE-2021-32917 CVE-2021-32918 CVE-2021-32919 CVE-2021-32920 Affected Products: openSUSE Leap 15.2 An update that fixes four vulnerabilities is now...
CVE-2011-4320
The modpubsub module modpubsub.erl in ejabberd 2.1.8 and 3.0.0-alpha-3 allows remote authenticated users to cause a denial of service infinite loop via a stanza with a publish tag that lacks a node attribute...
CVE-2011-4320
The modpubsub module modpubsub.erl in ejabberd 2.1.8 and 3.0.0-alpha-3 allows remote authenticated users to cause a denial of service infinite loop via a stanza with a publish tag that lacks a node attribute...
DEBIAN-CVE-2011-4320
The modpubsub module modpubsub.erl in ejabberd 2.1.8 and 3.0.0-alpha-3 allows remote authenticated users to cause a denial of service infinite loop via a stanza with a publish tag that lacks a node attribute...
Code injection
The modpubsub module modpubsub.erl in ejabberd 2.1.8 and 3.0.0-alpha-3 allows remote authenticated users to cause a denial of service infinite loop via a stanza with a publish tag that lacks a node attribute...
CVE-2011-4320
The modpubsub module modpubsub.erl in ejabberd 2.1.8 and 3.0.0-alpha-3 allows remote authenticated users to cause a denial of service infinite loop via a stanza with a publish tag that lacks a node attribute...
CVE-2011-4320
The CVE-2011-4320 issue affects the mod_pubsub module (mod_pubsub.erl) in ejabberd 2.1.8 and 3.0.0-alpha-3. An unauthenticated? or remote authenticated user can trigger a denial of service by sending a publish stanza without a node attribute, causing an infinite loop. The root cause is input vali...
CVE-2011-4320
The modpubsub module modpubsub.erl in ejabberd 2.1.8 and 3.0.0-alpha-3 allows remote authenticated users to cause a denial of service infinite loop via a stanza with a publish tag that lacks a node attribute...
CVE-2011-4320
The modpubsub module modpubsub.erl in ejabberd 2.1.8 and 3.0.0-alpha-3 allows remote authenticated users to cause a denial of service infinite loop via a stanza with a publish tag that lacks a node attribute...
ejabberd 'mod_pubsub' Module Denial of Service Vulnerability
ejabberd is prone to a vulnerability that may allow attackers to cause an affected application to enter an infinite loop, resulting in a denial-of- service condition. ejabberd versions prior to 2.1.9 are affected. OpenVAS Vulnerability Test $Id: gbejabberd50737.nasl 7019 2017-08-29 11:51:27Z teis...
ejabberd 'mod_pubsub' Module Denial of Service Vulnerability
ejabberd is prone to a vulnerability that may allow attackers to cause an affected application to enter an infinite loop, resulting in a denial-of-service condition. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C ...