CVE-2025-53968 EVMAPA Improper Restriction of Excessive Authentication Attempts

This vulnerability arises because there are no limitations on the number of authentication attempts a user can make. An attacker can exploit this weakness by continuously sending authentication requests, leading to a denial-of-service DoS condition. This can overwhelm the authentication system,...

EUVD-2022-0634

Malicious code in bioql PyPI...

Effective API Throttling for Enhanced API Security

APIs are the backbone of modern digital ecosystems, but their misuse can expose systems to cyber threats. Effective API throttling not only optimizes performance but also acts as a critical defense mechanism against abuse, such as denial-of-service attacks. Discover how this powerful strategy...

Denial Of Service (DoS)

drupal/core is vulnerable to denial of service DOS. The vulnerability is due to insufficient validation or rate-limiting of comment reply requests, allowing an attacker to overload the system...

Denial Of Service (DoS)

org.springframework,spring-web is vulnerable to Denial Of Service DoS. The vulnerability is due to improper handling of ETags from If-Match or If-None-Match request headers, allowing attackers to overwhelm the system and cause service disruption...

Debian dla-3360 : ruby-sidekiq - security update

The remote Debian 10 host has a package installed that is affected by multiple vulnerabilities as referenced in the dla-3360 advisory. - ----------------------------------------------------------------------- Debian LTS Advisory DLA-3360-1 [email protected]...

Mike Perham Sidekiq has an unspecified vulnerability

Mike Perham sidekiq is an application open sourced by Mike Perham. Using threads to process many jobs simultaneously in the same process, a security vulnerability exists in Mike Perham Sidekiq, which stems from the api.rb of Sidekiq before 6.4.0, where there is no limit on the number of days to...

CVE-2022-23837

In api.rb in Sidekiq before 5.2.10 and 6.4.0, there is no limit on the number of days when requesting stats for the graph. This overloads the system, affecting the Web UI, and makes it unavailable to users...

CVE-2022-23837

In api.rb in Sidekiq before 5.2.10 and 6.4.0, there is no limit on the number of days when requesting stats for the graph. This overloads the system, affecting the Web UI, and makes it unavailable to users...

CVE-2022-23837

In api.rb in Sidekiq before 5.2.10 and 6.4.0, there is no limit on the number of days when requesting stats for the graph. This overloads the system, affecting the Web UI, and makes it unavailable to users...

CVE-2022-23837

In api.rb in Sidekiq before 5.2.10 and 6.4.0, there is no limit on the number of days when requesting stats for the graph. This overloads the system, affecting the Web UI, and makes it unavailable to users...

PT-2022-16287

Name of the Vulnerable Software and Affected Versions Sidekiq versions prior to 5.2.10 Sidekiq versions prior to 6.4.0 Description The issue arises from the lack of a limit on the number of days when requesting stats for the graph in api.rb in Sidekiq. This leads to an overload of the system,...

CVE-2022-23837

CVE-2022-23837 affects Sidekiq (api.rb): there is no limit on the number of days when requesting graph statistics, which can overload the system and render the Web UI unavailable. Concrete references in connected docs include Debian/DLA-4407-1 (ruby-sidekiq fix in 6.0.4+dfsg-2+deb11u1; also menti...

CVE-2022-23837

In api.rb in Sidekiq before 5.2.10 and 6.4.0, there is no limit on the number of days when requesting stats for the graph. This overloads the system, affecting the Web UI, and makes it unavailable to users...

QEMU Denial of Service Vulnerability (CNVD-2021-39772)

QEMU is a suite of analog processor software. A security vulnerability exists in QEMU. An attacker could exploit this vulnerability to trigger a denial of service on a host system by triggering an overload via QEMU's e1000e null packet descriptor...

Workbox Plugin loads full HTML of JIRA comment, leads to GC loop of death on large comment

To reproduce: start Confluence with GC logging enabled optional, but helps Link Confluence and JIRA create an issue in JIRA watch it add a large comment to the JIRA issue, e.g. paste a 7.7MB log file between \code\ tags open the workbox in Confluence optional: in network tab of web developer tool...

Tplayer V1R10 - Denial of Service

Tplayer V1R10 - Denial of Service !/usr/bin/python print "--------------------Exploit By 41.w4r10r------------------------------\n" print "-------------------41.w4r10r@gmail.com-----------------------------\n" print "----------------Tplayer V1R10 DoS Exploit------------------------------\n" print...

[Full-disclosure] tempnam() open_basedir bypass PHP 4.4.2 and 5.1.2

Source: http://securityreason.com/achievementsecurityalert/36 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 tempnam openbasedir bypass PHP 4.4.2 and 5.1.2 Author: Maksymilian Arciemowicz cXIb8O3 Date: - -Written: 26.3.2006 - -Public: 8.4.2006 from SECURITYREASON.COM CVE-2006-1494 - ---...

HP-UX 11 Linux Kernel 2.4 Windows 2000NT 4.0 IRIX 6.5 - Small TCP MSS Denial of Service

HP-UX 11 Linux Kernel 2.4 Windows 2000NT 4.0 IRIX 6.5 - Small TCP MSS Denial of Service / source: https://www.securityfocus.com/bid/2997/info A potential denial of service vulnerability exists in several TCP stack implementations. TCP has a MSS maximum segment size option that is used by a TCP...

Lockdown vulnerability - All versions

Release Date: May 4, 2000 Systems Affected: All machines running Lockdown Corporation's Lockdown AntiTrojan program ALL VERSIONS. Tested under Windows98. Results may vary under different operating systems, but all are vulnerable to the same problem. THE PROBLEM Lockdowns main display textbox can...