EUVD-2022-6294

Malicious code in bioql PyPI...

SUSE CVE-2022-2191

In Eclipse Jetty versions 10.0.0 thru 10.0.9, and 11.0.0 thru 11.0.9 versions, SslConnection does not release ByteBuffers from configured ByteBufferPool in case of error code paths...

Denial Of Service (DoS)

Jetty-IO is vulnerable to denial of service. The vulnerability exists because the buffer utilization of SslConnection is not properly handled which allows an attacker to cause a memory leak leading to an application crash...

Eclipse Jetty DoS Vulnerability (GHSA-8mpp-f3f7-xc28) - Linux

Eclipse Jetty is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:eclipse:jetty";...

CVE-2022-2191

In Eclipse Jetty versions 10.0.0 thru 10.0.9, and 11.0.0 thru 11.0.9 versions, SslConnection does not release ByteBuffers from configured ByteBufferPool in case of error code paths...

CVE-2022-2191

In Eclipse Jetty versions 10.0.0 thru 10.0.9, and 11.0.0 thru 11.0.9 versions, SslConnection does not release ByteBuffers from configured ByteBufferPool in case of error code paths...

CVE-2022-2191

In Eclipse Jetty versions 10.0.0 thru 10.0.9, and 11.0.0 thru 11.0.9 versions, SslConnection does not release ByteBuffers from configured ByteBufferPool in case of error code paths...

UBUNTU-CVE-2022-2191

In Eclipse Jetty versions 10.0.0 thru 10.0.9, and 11.0.0 thru 11.0.9 versions, SslConnection does not release ByteBuffers from configured ByteBufferPool in case of error code paths...

Jetty SslConnection does not release pooled ByteBuffers in case of errors

Impact SslConnection does not release ByteBuffers in case of error code paths. For example, TLS handshakes that require client-auth with clients that send expired certificates will trigger a TLS handshake errors and the ByteBuffers used to process the TLS handshake will be leaked. Workarounds...

CVE-2022-2191

CVE-2022-2191 affects Eclipse Jetty by failing to release ByteBuffers from ByteBufferPool in error paths in Jetty 10.0.0–10.0.9 and 11.0.0–11.0.9. The described root cause is a ByteBuffer lifecycle issue in SslConnection, leading to a potential denial of service with high availability impact. Pub...

CVE-2022-2191

In Eclipse Jetty versions 10.0.0 thru 10.0.9, and 11.0.0 thru 11.0.9 versions, SslConnection does not release ByteBuffers from configured ByteBufferPool in case of error code paths...

PT-2022-6930 · Eclipse · Eclipse Jetty

Name of the Vulnerable Software and Affected Versions: Eclipse Jetty versions 10.0.0 through 10.0.9 Eclipse Jetty versions 11.0.0 through 11.0.9 Description: The issue is related to the SslConnection component of the Eclipse Jetty servlet container, which is associated with resource release error...

soccer365-1.xyz XSS vulnerability

Vulnerable URL: http://soccer365-1.xyz/?a=search=a%27aa%22%22%3E%3C/title%3E%3C/script%3E%3Csvg/onload=prompt/OPENBUGBOUNTY/%3E Details: Description| Value ---|--- Patched:| Yes, at 07.07.2017 Latest check for patch:| 07.07.2017 12:45 GMT Vulnerability type:| XSS Vulnerability status:| Publicly...

webmail.bait.net.pl Open Redirect vulnerability

Vulnerable URL: http://webmail.bait.net.pl/horde/util/go.php?url=https://openbugbounty.org Details: Description| Value ---|--- Patched:| Yes, at 21.09.2017 Latest check for patch:| 21.09.2017 13:57 GMT Vulnerability type:| Open Redirect Vulnerability status:| Publicly disclosed Alexa Rank| Unknow...

origo.lounakirjastot.fi XSS vulnerability

Vulnerable URL: http://origo.lounakirjastot.fi/forssa/index.asp?url=javascript:alert%28/OPENBUGBOUNTY/%29 Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP website status:| No Check...

epc.eu XSS vulnerability

Vulnerable URL: http://www.epc.eu/pubdetails.php?catid=17id=7337%3C/script%3E%22%3E%3Cscript%3Eprompt/OPENBUGBOUNTY/%3C/script%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank|...

chat.travelinsured.com XSS vulnerability

Vulnerable URL: http://chat.travelinsured.com/WebChat/main.aspx?queuename="-alert'OPENBUGBOUNTY'-" Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP websi...

safeaccessnow.org Open Redirect vulnerability

Vulnerable URL: http://www.safeaccessnow.org/r?u=https://www.openbugbounty.org Details: Description| Value ---|--- Patched:| Yes, at 28.07.2017 Latest check for patch:| 28.07.2017 12:06 GMT Vulnerability type:| Open Redirect Vulnerability status:| Publicly disclosed Alexa Rank| 526812 VIP website...

spartaanimalclinic.vetstreet.com XSS vulnerability

Vulnerable URL: http://spartaanimalclinic.vetstreet.com/careguide.html?submit=xss%3Cimg%20src=x%20onerror=confirm%22OPENBUGBOUNTY%22%3E=xss%3Cimg%20src=x%20onerror=confirm%22OPENBUGBOUNTY%22%3E& Details: Description| Value ---|--- Patched:| No Latest check for patch:| 27.07.2017 Vulnerability...

vda.gtarcade.com XSS vulnerability

Vulnerable URL:...