3 matches found
Uncontrolled Recursion
Overview express-xss-sanitizer is an Express 4.x middleware which sanitizes user input data in req.body, req.query, req.headers and req.params to prevent Cross Site Scripting XSS attack. Affected versions of this package are vulnerable to Uncontrolled Recursion via the sanitize function in...
CVE-2021-34570
Multiple Phoenix Contact PLCnext control devices in versions prior to 2021.0.5 LTS are prone to a DoS attack through special crafted JSON requests...
The vulnerability of the HTTP-server on the RouterOS operating system of MikroTik allows a hacker to cause a service failure.
The vulnerability of the HTTP-server of the RouterOS operating system for MikroTik relates to buffer overflows in memory during recursive processing of JSON requests. Exploiting this vulnerability allows a malicious actor to cause a malfunction of the HTTP-server by using a specially crafted...