Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
prosody prosody 0.8.0 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2011-2532
The json.decode function in util/json.lua in Prosody 0.8.x prior to 0.8.1 might allow remote malicious users to cause a denial of service (infinite loop) via invalid JSON data, as demonstrated by truncated data.
Prosody Prosody 0.8.0
4.3
CVSSv2
CVE-2011-2531
Prosody 0.8.x prior to 0.8.1, when MySQL is used, assigns an incorrect data type to the value column in certain tables, which might allow remote malicious users to cause a denial of service (data truncation) by sending a large amount of data.
Prosody Prosody 0.8.0
7.8
CVSSv2
CVE-2014-2745
Prosody prior to 0.9.4 does not properly restrict the processing of compressed XML elements, which allows remote malicious users to cause a denial of service (resource consumption) via a crafted XMPP stream, aka an "xmppbomb" attack, related to core/portmanager.lua and ...
Prosody Prosody 0.8.2
Prosody Prosody 0.8.0
Prosody Prosody 0.1.0
Prosody Prosody 0.3.0
Prosody Prosody 0.9.2
Prosody Prosody 0.6.2
Prosody Prosody 0.6.0
Prosody Prosody 0.4.1
Prosody Prosody 0.5.0
Prosody Prosody 0.5.1
Prosody Prosody 0.4.2
Prosody Prosody 0.5.2
Prosody Prosody 0.6.1
Prosody Prosody
Prosody Prosody 0.9.1
Prosody Prosody 0.4.0
Prosody Prosody 0.2.0
Prosody Prosody 0.7.0
Prosody Prosody 0.8.1
Prosody Prosody 0.9.0
7.8
CVSSv2
CVE-2014-2744
plugins/mod_compression.lua in (1) Prosody prior to 0.9.4 and (2) Lightwitch Metronome up to and including 3.4 negotiates stream compression while a session is unauthenticated, which allows remote malicious users to cause a denial of service (resource consumption) via compressed ...
Lightwitch Metronome
Prosody Prosody 0.6.2
Prosody Prosody 0.6.0
Prosody Prosody 0.4.1
Prosody Prosody 0.5.0
Prosody Prosody 0.5.1
Prosody Prosody 0.4.2
Prosody Prosody 0.5.2
Prosody Prosody 0.6.1
Prosody Prosody
Prosody Prosody 0.9.1
Prosody Prosody 0.4.0
Prosody Prosody 0.2.0
Prosody Prosody 0.7.0
Prosody Prosody 0.8.1
Prosody Prosody 0.9.0
Prosody Prosody 0.8.2
Prosody Prosody 0.8.0
Prosody Prosody 0.1.0
Prosody Prosody 0.3.0
Prosody Prosody 0.9.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started