Lucene search
K

25 matches found

Veracode
Veracode
•added 2020/07/08 3:21 a.m.•28 views

Denial Of Service (DoS)

firefox is vulnerable to denial of service. Memory corruption due to missing sign-extension for ValueTags on ARM64 allows an attacker to crash the application...

8.8CVSS3.3AI score0.02688EPSS
Exploits1References13Affected Software4
OSV
OSV
•added 2020/06/03 11:15 p.m.•4 views

DEBIAN-CVE-2020-11080

In nghttp2 before version 1.41.0, the overly large HTTP/2 SETTINGS frame payload causes denial of service. The proof of concept attack involves a malicious client constructing a SETTINGS frame with a length of 14,400 bytes 2400 individual settings entries over and over again. The attack causes th...

7.5CVSS6.3AI score0.05316EPSS
Exploits0References1
OSV
OSV
•added 2020/03/20 3:15 a.m.•4 views

CVE-2019-19484

Open redirect via parameter ā€˜p’ in login.php in Centreon 19.04.4 and below allows an attacker to craft a payload and execute unintended behavior...

6.1CVSS6.7AI score0.05345EPSS
Exploits0References1
Packet Storm
Packet Storm
•added 2018/06/21 12:0 a.m.•35 views

LFCMS 3.7.0 Cross Site Request Forgery

Exploit Title: A CSRF vulnerability exists in LFCMS3.7.0: administrator account can be added arbitrarily. Date: 2018-06-20 Exploit Author: bay0net Vendor Homepage: https://www.cnblogs.com/v1vvwv/p/9203899.html Software Link: http://www.lfdycms.com/home/down/index/id/26.html Version: 3.7.0 CVE :...

0.6AI score0.03626EPSS
Exploits5
Hacker One
Hacker One
•added 2017/09/28 5:15 a.m.•50 views

Aspen: No Rate Limit (Leads to huge email flooding/email bombing)

Dear sir, At first,i want to say that this sensitive action definitely should be set with rate limit. Note:-This is about huge bombing/brute force on any endpoints. Vulnerability:- -No rate limit has been set for generating account confirmation emails for accounts on above selected domain which i...

7.1AI score
Exploits0
Rows per page
Query Builder