2 matches found
PT-2026-6873
Rate limiting for certain API calls is not being enforced, making HCL Velocity vulnerable to Denial of Service DoS attacks. An attacker could flood the system with a large number of requests, overwhelming its resources and causing it to become unresponsive to legitimate users. This vulnerability ...
WordPress AdForest theme <= 5.1.7 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Post/Attachment Deletion vulnerability
Missing Authorization to Authenticated Subscriber+ Arbitrary Post/Attachment Deletion vulnerability discovered by Lucio Sá in WordPress Theme AdForest versions = 5.1.7...