Lucene search
Veracode Vulnerability DatabaseVERACODE:40717HistoryMay 29, 2023 - 4:47 p.m.
Denial Of Service (DoS)
2023-05-2916:47:31
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
froxlor
software
vulnerability
dos
rate-limiting
http request validation
password reset
crash
application
0.001 Low
EPSS
Percentile
47.3%
froxlor/froxlor is vulnerable to Denial Of Service (DoS). The vulnerability exists because of a lack of HTTP request validation in the rate-limiting functionality during a password reset, which allows an attacker to crash the application.
| CPE | Name | Operator | Version |
|---|---|---|---|
| froxlor/froxlor | le | 2.0.15 | |
| froxlor/froxlor | le | 2.0.15 |
Related
github
github
Froxlor vulnerable to Allocation of Resources Without Limits or Throttling
2023-05-19 18:30:25
huntr
huntr
No Rate Limit On Reset Password
2023-02-11 09:47:47
prion
prion
Design/Logic Flaw
2023-05-12 01:15:00
cnvd
cnvd
Froxlor Resource Management Error Vulnerability
2023-05-17 00:00:00
cve
cve
CVE-2023-2666
2023-05-12 01:15:09
osv
osv
CVE-2023-2666
2023-05-12 01:15:09
Froxlor vulnerable to Allocation of Resources Without Limits or Throttling
2023-05-19 18:30:25
nvd
nvd
CVE-2023-2666
2023-05-12 01:15:09
cvelist
cvelist