### Impact A large response received by the viaduct WSClient can cause a DoS from memory exhaustion. The entire body of the response is being read into memory which could allow an attacker to send a r ...
Continue Reading11 июля, 2022
KubeEdge is an open source system for extending native containerized application orchestration capabilities to hosts at Edge. Prior to versions 1.11.1, 1.10.2, and 1.9.4, a large response received by ...
Continue Reading11 июля, 2022
### Impact A large response received by the viaduct WSClient can cause a DoS from memory exhaustion. The entire body of the response is being read into memory which could allow an attacker to send a r ...
Continue Reading11 июля, 2022
Greetings. I have found a read-beyond-bounds bug in lua_websocket_readbytes() that permits an attacker to exfiltrate a controllable amount of heap data if the victim site runs a suitable LUA program. ...
Continue Reading09 июля, 2022
Node.js reports: HTTP Request Smuggling - Flawed Parsing of Transfer-Encoding (Medium)(CVE-2022-32213) The llhttp parser in the http module does not correctly parse and validate Transfer-Encodin ...
Continue Reading08 июля, 2022
If a web application sends a WebSocket message concurrently with the WebSocket connection closing when running on Apache Tomcat 8.5.0 to 8.5.75 or Apache Tomcat 9.0.0.M1 to 9.0.20, it is possible that ...
Continue Reading07 июля, 2022
Tiny WebSocket library for Go.Read More ...
Continue Reading04 июля, 2022
# Description Admin can add a member to his personal collection .But if admin removed that user from this collection then that user still can see realtime document update content. # Proof of Concept ...
Continue Reading04 июля, 2022
Back to Main