EPSS
Percentile
32.3%
rdiffweb is vulnerable to denial of service. The vulnerability exists because the rate limit on email triggering is not properly validated, allowing an attacker to send an email flood, resulting in an application crash.
github.com/advisories/GHSA-7q4r-x5qg-mmcp
github.com/ikus060/rdiffweb/commit/6e9ee210548f6d3210704cac302cfc7cdb239765
huntr.dev/bounties/9369681b-8bfc-4146-a54c-c5108442d92c