Pterodactyl 跨站请求伪造漏洞

Pterodactyl is an open source game server management panel built using PHP, Nodejs and Go. A cross-site request forgery vulnerability exists in Pterodactyl, which stems from the lack of proper CSRF protection in the product's routing configuration. An attacker could exploit the vulnerability to...

CVE-2019-15149

core.py in Mitogen before 0.2.8 has a typo that drops the unidirectional-routing protection mechanism in the case of a child that is initiated by another child. The Ansible extension is unaffected. NOTE: the vendor disputes this issue because it is exploitable only in conjunction with hypothetica...

PYSEC-2019-104

DISPUTED core.py in Mitogen before 0.2.8 has a typo that drops the unidirectional-routing protection mechanism in the case of a child that is initiated by another child. The Ansible extension is unaffected. NOTE: the vendor disputes this issue because it is exploitable only in conjunction with...

PYSEC-2019-34

DISPUTED core.py in Mitogen before 0.2.8 has a typo that drops the unidirectional-routing protection mechanism in the case of a child that is initiated by another child. The Ansible extension is unaffected. NOTE: the vendor disputes this issue because it is exploitable only in conjunction with...

Microsoft Windows: MSS: IPv6 source routing protection level

This test checks the setting for policy OpenVAS Vulnerability Test $Id: winmlipv6sourcerouting.nasl 11337 2018-09-11 14:23:53Z emoss $ Check value for MSS: DisableIPSourceRouting IPv6 IP source routing protection level protects against packet spoofing Authors: Emanuel Moss Copyright: Copyright c...