Denial of Service in yar

Versions of yar prior to 2.2.0 are affected by a denial of service vulnerability related to an invalid encrypted session cookie value. When an invalid encryped session cookie value is provided, the process will crash. Recommendation Update to version 2.2.0 or later...

hapipass-local (=0.0.1), nails-framework (>=1.0.3 <=1.0.7) +3 more potentially affected by CVE-2014-4179 via yar (>=0.0.5 <=1.1.0)

yar NPM version =0.0.5, =1.0.3, =1.0.0, =0.1.0, =0.4.1 Source cves: CVE-2014-4179 Source advisory: OSV:GHSA-GG6M-FHQV-HG56...

GHSA-GG6M-FHQV-HG56 Denial of Service in yar

Versions of yar prior to 2.2.0 are affected by a denial of service vulnerability related to an invalid encrypted session cookie value. When an invalid encryped session cookie value is provided, the process will crash. Recommendation Update to version 2.2.0 or later...

yar-filarmoniya.ru Cross Site Scripting vulnerability OBB-1249735

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

yar-net.ru Cross Site Scripting vulnerability OBB-1225975

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

yar-filarmoniya.ru Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1018955 Security Researcher g0bl1nsec Helped patch 3766 vulnerabilities Received 4 Coordinated Disclosure badges Received 3 recommendations , a holder of 4 badges for responsible and coordinated disclosure, found a security vulnerability affecting yar-filarmoniya.ru websit...

yar-net.ru XSS vulnerability

Vulnerable URL: http://yar-net.ru/video/playlist.php?server=cam8.yar-net.ru=?prompt/OPENBUGBOUNTY/...

Denial of Service

Overview Versions of yar prior to 2.2.0 are affected by a denial of service vulnerability related to an invalid encrypted session cookie value. When an invalid encryped session cookie value is provided, the process will crash. Recommendation Update to version 2.2.0 or later. References - Issue 34...