Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

process-one ejabberd 2.0.0 vulnerabilities and exploits

(subscribe to this query)
4.3
CVSSv2
CVE-2013-6169
The TLS driver in ejabberd prior to 2.1.12 supports (1) SSLv2 and (2) weak SSL ciphers, which makes it easier for remote malicious users to obtain sensitive information via a brute-force attack.
Process-one Ejabberd 2.1.0Process-one Ejabberd 2.0.5Process-one Ejabberd 2.0.4Process-one Ejabberd 2.0.3Process-one Ejabberd 0.9.8Process-one Ejabberd 0.9.1Process-one Ejabberd 0.9Process-one Ejabberd 2.1.9Process-one Ejabberd 2.1.7Process-one Ejabberd 2.1.6Process-one Ejabberd 2.1.5Process-one Ejabberd 2.0.0Process-one Ejabberd 1.1.3Process-one Ejabberd 1.1.2Process-one Ejabberd 1.1.14Process-one Ejabberd 1.1.1.1Process-one Ejabberd 2.1.11Process-one Ejabberd 2.1.8Process-one Ejabberd 2.1.4Process-one Ejabberd 2.1.2Process-one Ejabberd 2.0.1 2Process-one Ejabberd 1.1.1
5
CVSSv2
CVE-2011-1753
expat_erl.c in ejabberd prior to 2.1.7 and 3.x prior to 3.0.0-alpha-3, and exmpp prior to 0.9.7, does not properly detect recursion during entity expansion, which allows remote malicious users to cause a denial of service (memory and CPU consumption) via a crafted XML document co...
Process-one Ejabberd 2.0.5Process-one Ejabberd 2.0.4Process-one Ejabberd 1.1.1.1Process-one Ejabberd 1.1.0Process-one Ejabberd 1.1.1Process-one Ejabberd 1.1.14Process-one Ejabberd 2.1.2Process-one Ejabberd 2.1.1Process-one Ejabberd 2.0.3Process-one Ejabberd 0.9.1Process-one Ejabberd 1.1.1.0Process-one Ejabberd 2.0.0Process-one Ejabberd 3.0.0Process-one Ejabberd 2.1.0Process-one Ejabberd 1.0.0Process-one Ejabberd 0.9Process-one Ejabberd 1.1.3Process-one Ejabberd 2.1.5Process-one EjabberdProcess-one Ejabberd 1.1.2Process-one Ejabberd 0.9.8Process-one Ejabberd 2.0.2
5
CVSSv2
CVE-2010-0305
ejabberd_c2s.erl in ejabberd prior to 2.1.3 allows remote malicious users to cause a denial of service (daemon crash) via a large number of c2s (aka client2server) messages that trigger a queue overload.
Process-one Ejabberd 1.1.2Process-one Ejabberd 0.9.8Process-one Ejabberd 2.0.2Process-one Ejabberd 2.0.1 2Process-one Ejabberd 2.1.1Process-one Ejabberd 2.0.3Process-one Ejabberd 0.9.1Process-one Ejabberd 1.1.1.0Process-one Ejabberd 1.1.1.1Process-one Ejabberd 2.0.0Process-one EjabberdProcess-one Ejabberd 2.1.0Process-one Ejabberd 1.0.0Process-one Ejabberd 0.9Process-one Ejabberd 1.1.3Process-one Ejabberd 2.0.5Process-one Ejabberd 2.0.4Process-one Ejabberd 1.1.0Process-one Ejabberd 1.1.1Process-one Ejabberd 1.1.14
4.3
CVSSv2
CVE-2009-0934
Cross-site scripting (XSS) vulnerability in ejabberd prior to 2.0.4 allows remote malicious users to inject arbitrary web script or HTML via unknown vectors related to links and MUC logs.
Process-one Ejabberd 1.0.0Process-one Ejabberd 0.9Process-one Ejabberd 2.0.0Process-one Ejabberd 1.1.14Process-one Ejabberd 1.1.1.1Process-one Ejabberd 1.1.0Process-one Ejabberd 1.1.1Process-one Ejabberd 1.1.2Process-one Ejabberd 0.9.8Process-one Ejabberd 2.0.2Process-one Ejabberd 2.0.1 2Process-one Ejabberd 0.9.1Process-one Ejabberd 1.1.1.0Process-one Ejabberd 1.1.3Process-one Ejabberd
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTICVE-2024-35863CVE-2024-35910man-in-the-middleCVE-2024-35912CVE-2024-25742LFICVE-2024-32002CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook