Allocation of Resources Without Limits or Throttling
Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.8.4.
Advisories for Pypi/Rdiffweb package
2023
Allocation of Resources Without Limits or Throttling
Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.8.0.
2022
URL Redirection to Untrusted Site ('Open Redirect')
Open Redirect in GitHub repository ikus060/rdiffweb prior to 2.5.5.
rdiffweb vulnerable to Business Logic Errors
Business Logic Errors in GitHub repository ikus060/rdiffweb prior to 2.5.5.
Improper Access Control
Improper Access Control in GitHub repository ikus060/rdiffweb prior to 2.5.5.
Failure to Sanitize Special Elements into a Different Plane (Special Element Injection)
Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) in GitHub repository ikus060/rdiffweb prior to 2.5.5.
Authentication Bypass by Primary Weakness
Authentication Bypass by Primary Weakness in GitHub repository ikus060/rdiffweb prior to 2.5.5.
Allocation of Resources Without Limits or Throttling
Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.5.
URL Redirection to Untrusted Site ('Open Redirect')
Open Redirect in GitHub repository ikus060/rdiffweb prior to 2.5.4.
Cross-Site Request Forgery (CSRF)
Cross-Site Request Forgery (CSRF) in GitHub repository ikus060/rdiffweb prior to 2.5.4.
Improper Privilege Management
Improper Privilege Management in GitHub repository ikus060/rdiffweb prior to 2.5.2.
Missing Authentication for Critical Function
Missing Authentication for Critical Function in GitHub repository ikus060/rdiffweb prior to 2.5.0a6.
Insufficient Session Expiration
Insufficient Session Expiration in GitHub repository ikus060/rdiffweb prior to 2.5.0.
Rdiffweb subject to Business Logic Errors
Business Logic Errors in GitHub repository ikus060/rdiffweb prior to 2.5.0a7.
Missing Authentication for Critical Function
Missing Authentication for Critical Function in GitHub repository ikus060/rdiffweb prior to 2.5.0a6.
Origin Validation Error
Origin Validation Error in GitHub repository ikus060/rdiffweb prior to 2.5.0a5.
Allocation of Resources Without Limits or Throttling
Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0.
Allocation of Resources Without Limits or Throttling
Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0.
URL Redirection to Untrusted Site ('Open Redirect')
Open Redirect in GitHub repository ikus060/rdiffweb prior to 2.5.0a4.
rdiffweb allows a new password to be the same as the previous password
Weak Password Requirements in GitHub repository ikus060/rdiffweb prior to 2.5.0a4.
Inadequate Encryption Strength
Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0a4.
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Path Traversal in GitHub repository ikus060/rdiffweb prior to 2.4.10.
Allocation of Resources Without Limits or Throttling
Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0a3.
rdiffweb vulnerable to password complexity bypass leading to weak passwords
Weak Password Requirements in GitHub repository ikus060/rdiffweb prior to 2.4.9.
Allocation of Resources Without Limits or Throttling
Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0a3.
Use of Cache Containing Sensitive Information
Use of Cache Containing Sensitive Information in GitHub repository ikus060/rdiffweb prior to 2.4.8.
rdiffweb's unlimited username field length can lead to DoS
Improper Handling of Length Parameter Inconsistency in GitHub repository ikus060/rdiffweb prior to 2.4.8.
rdiffweb's unlimited length email field can lead to DoS
Improper Handling of Length Parameter Inconsistency in GitHub repository ikus060/rdiffweb prior to 2.4.8.
Improper Cleanup on Thrown Exception
Improper Cleanup on Thrown Exception in GitHub repository ikus060/rdiffweb prior to 2.4.8.
Allocation of Resources Without Limits or Throttling
Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.4.8.
Allocation of Resources Without Limits or Throttling
Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.4.8.
Session Fixation
Session Fixation in GitHub repository ikus060/rdiffweb prior to 2.4.7.
Cross-Site Request Forgery (CSRF)
Cross-Site Request Forgery (CSRF) in GitHub repository ikus060/rdiffweb prior to 2.4.7.
Cross-Site Request Forgery (CSRF)
Cross-Site Request Forgery (CSRF) in GitHub repository ikus060/rdiffweb prior to 2.4.6.
Sensitive Cookie in HTTPS Session Without 'Secure' Attribute
Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository ikus060/rdiffweb prior to 2.4.6.
Cross-Site Request Forgery (CSRF)
Cross-Site Request Forgery (CSRF) in GitHub repository ikus060/rdiffweb prior to 2.4.6.
Cross-Site Request Forgery (CSRF)
Cross-Site Request Forgery (CSRF) in GitHub repository ikus060/rdiffweb prior to 2.4.5.
Cross-Site Request Forgery (CSRF)
Cross-Site Request Forgery (CSRF) in GitHub repository ikus060/rdiffweb prior to 2.4.3.
Weak Password Requirements
Weak Password Requirements in GitHub repository ikus060/rdiffweb prior to 2.4.2.
Missing Encryption of Sensitive Data
Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository ikus060/rdiffweb prior to 2.4.2.
Missing Custom Error Page
Missing Custom Error Page in GitHub repository ikus060/rdiffweb prior to 2.4.2.
Improper Restriction of Rendered UI Layers or Frames
Improper Restriction of Rendered UI Layers or Frames in GitHub repository ikus060/rdiffweb prior to 2.4.1.