EUVD-2026-25700

A vulnerability was found in Typecho up to 1.3.0. This vulnerability affects the function Service::sendPingHandle of the file var/Widget/Service.php of the component Ping Back Service Endpoint. The manipulation of the argument X-Pingback/link results in server-side request forgery. The attack may...

EUVD-2007-0539

Malware in sbrugna...

EUVD-2007-0538

Malware in sbrugna...

EUVD-2007-0536

Malware in sbrugna...

EUVD-2007-0537

Malware in sbrugna...

CVE-2007-0539

The wpremotefopen function in WordPress before 2.1 allows remote attackers to cause a denial of service bandwidth or thread consumption via pingback service calls with a source URI that corresponds to a large file, which triggers a long download session without a timeout constraint...

Design/Logic Flaw

WordPress allows remote attackers to cause a denial of service bandwidth or thread consumption via pingback service calls with a source URI that corresponds to a file with a binary content type, which is downloaded even though it cannot contain usable pingback data...

CVE-2007-0539

The wpremotefopen function in WordPress before 2.1 allows remote attackers to cause a denial of service bandwidth or thread consumption via pingback service calls with a source URI that corresponds to a large file, which triggers a long download session without a timeout constraint...

CVE-2007-0541

WordPress allows remote attackers to determine the existence of arbitrary files, and possibly read portions of certain files, via pingback service calls with a source URI that corresponds to a local pathname, which triggers different fault codes for existing and non-existing files, and in certain...

CVE-2007-0538

Telligent Community Server 2.1 and earlier allows remote attackers to cause a denial of service bandwidth or thread consumption via pingback service calls with a source URI that corresponds to 1 a large file, which triggers a long download session without a timeout constraint; or 2 a file with a...

CVE-2007-0540

WordPress allows remote attackers to cause a denial of service bandwidth or thread consumption via pingback service calls with a source URI that corresponds to a file with a binary content type, which is downloaded even though it cannot contain usable pingback data...

CVE-2007-0540

WordPress allows remote attackers to cause a denial of service bandwidth or thread consumption via pingback service calls with a source URI that corresponds to a file with a binary content type, which is downloaded even though it cannot contain usable pingback data...

CVE-2007-0541

WordPress allows remote attackers to determine the existence of arbitrary files, and possibly read portions of certain files, via pingback service calls with a source URI that corresponds to a local pathname, which triggers different fault codes for existing and non-existing files, and in certain...

Design/Logic Flaw

Telligent Community Server 2.1 and earlier allows remote attackers to cause a denial of service bandwidth or thread consumption via pingback service calls with a source URI that corresponds to 1 a large file, which triggers a long download session without a timeout constraint; or 2 a file with a...

CVE-2007-0541

WordPress allows remote attackers to determine the existence of arbitrary files, and possibly read portions of certain files, via pingback service calls with a source URI that corresponds to a local pathname, which triggers different fault codes for existing and non-existing files, and in certain...

CVE-2007-0539

The CVE-2007-0539 entry concerns WordPress prior to 2.1, where the wp_remote_fopen function can be abused by remote pingback calls that reference a very large file. This triggers a long download session without a timeout, enabling a denial of service (bandwidth or thread consumption). Connected s...

WordPress <= 2.1 - Denial of Service Attacks

The attackers can cause a denial of service attacks via pingback service calls. Solution Update the WordPress to the latest available version at least 2.2...

DoS against Telligent Community Server

Advisory: DoS against Telligent Community Server Advisory ID: 4tphi-sa-20070111-communityserver Release Date: 01-24-2007 Author: Blake Matheny [email protected] Software: Community Server = 2.1 Impact: Remote DoS Overview: From Wikipedia, "Community Server is a community collaboration platfo...