18 matches found
Malicious code in rocket-koa-query-loop (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 13e9a1af132a8126638baca3a85673704533f89020924385e0120402a4b1d9bc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-122450
Malicious code in rocket-koa-query-loop npm...
MAL-2025-147472 Malicious code in rocket-koa-query-loop (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 13e9a1af132a8126638baca3a85673704533f89020924385e0120402a4b1d9bc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-43875 Malicious code in commitlint-query-loop-gulp (npm)
The package commitlint-query-loop-gulp was found to contain malicious code...
Malicious code in commitlint-query-loop-gulp (npm)
The package commitlint-query-loop-gulp was found to contain malicious code...
CVE-2023-28455
An issue was discovered in Technitium through 11.0.2. The forwarding mode enables attackers to create a query loop using Technitium resolvers, launching amplification attacks and causing potential DoS...
CVE-2023-28455
An issue was discovered in Technitium through 11.0.2. The forwarding mode enables attackers to create a query loop using Technitium resolvers, launching amplification attacks and causing potential DoS...
CVE-2023-28455
An issue was discovered in Technitium through 11.0.2. The forwarding mode enables attackers to create a query loop using Technitium resolvers, launching amplification attacks and causing potential DoS...
CVE-2023-28455
The CVE-2023-28455 issue affects Technitium DNS Server (up to v11.0.2). The root cause is a forwarding mode pattern that can create query loops in Technitium resolvers, enabling amplification and potential DoS. Documented impacts describe denial-of-service risk due to network-based query looping....
CVE-2023-28455
An issue was discovered in Technitium through 11.0.2. The forwarding mode enables attackers to create a query loop using Technitium resolvers, launching amplification attacks and causing potential DoS...
CVE-2024-1452
The GenerateBlocks plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.8.2 via Query Loop. This makes it possible for authenticated attackers, with contributor access and above, to see contents of posts and pages in draft or private status ...
CVE-2024-1452
The GenerateBlocks plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.8.2 via Query Loop. This makes it possible for authenticated attackers, with contributor access and above, to see contents of posts and pages in draft or private status ...
Design/Logic Flaw
The GenerateBlocks plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.8.2 via Query Loop. This makes it possible for authenticated attackers, with contributor access and above, to see contents of posts and pages in draft or private status ...
CVE-2024-1452 GenerateBlocks <= 1.8.2 - Sensitive Information Exposure
The GenerateBlocks plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.8.2 via Query Loop. This makes it possible for authenticated attackers, with contributor access and above, to see contents of posts and pages in draft or private status ...
CVE-2024-1452 GenerateBlocks <= 1.8.2 - Sensitive Information Exposure
The GenerateBlocks plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.8.2 via Query Loop. This makes it possible for authenticated attackers, with contributor access and above, to see contents of posts and pages in draft or private status ...
GenerateBlocks < 1.8.3 - Contributor+ Arbitrary Draft/Private Post Access
Description The plugin is vulnerable to Sensitive Information Exposure via Query Loop, allowing authenticated attackers, with contributor access and above, to see contents of posts and pages in draft or private status as well as those with scheduled publication dates...
K49116387: BIND vulnerabilities CVE-2017-3140 and CVE-2017-3141
Security Advisory Description CVE-2017-3140 If named is configured to use Response Policy Zones RPZ an error processing some rule types can lead to a condition where BIND will endlessly loop while handling a query. Affects BIND 9.9.10, 9.10.5, 9.11.0-9.11.1, 9.9.10-S1, 9.10.5-S1. An error...
SUSE CVE-2017-3140
If named is configured to use Response Policy Zones RPZ an error processing some rule types can lead to a condition where BIND will endlessly loop while handling a query. Affects BIND 9.9.10, 9.10.5, 9.11.0-9.11.1, 9.9.10-S1, 9.10.5-S1...