Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
prosody prosody 0.8.0 vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2011-2531
Prosody 0.8.x prior to 0.8.1, when MySQL is used, assigns an incorrect data type to the value column in certain tables, which might allow remote malicious users to cause a denial of service (data truncation) by sending a large amount of data.
Prosody Prosody 0.8.0
445
VMScore
CVE-2011-2532
The json.decode function in util/json.lua in Prosody 0.8.x prior to 0.8.1 might allow remote malicious users to cause a denial of service (infinite loop) via invalid JSON data, as demonstrated by truncated data.
Prosody Prosody 0.8.0
694
VMScore
CVE-2014-2745
Prosody prior to 0.9.4 does not properly restrict the processing of compressed XML elements, which allows remote malicious users to cause a denial of service (resource consumption) via a crafted XMPP stream, aka an "xmppbomb" attack, related to core/portmanager.lua and ...
Prosody Prosody 0.8.2
Prosody Prosody 0.8.0
Prosody Prosody 0.1.0
Prosody Prosody 0.3.0
Prosody Prosody 0.9.2
Prosody Prosody 0.6.2
Prosody Prosody 0.6.0
Prosody Prosody 0.4.1
Prosody Prosody 0.5.0
Prosody Prosody 0.5.1
Prosody Prosody 0.4.2
Prosody Prosody 0.5.2
Prosody Prosody 0.6.1
Prosody Prosody
Prosody Prosody 0.9.1
Prosody Prosody 0.4.0
Prosody Prosody 0.2.0
Prosody Prosody 0.7.0
Prosody Prosody 0.8.1
Prosody Prosody 0.9.0
694
VMScore
CVE-2014-2744
plugins/mod_compression.lua in (1) Prosody prior to 0.9.4 and (2) Lightwitch Metronome up to and including 3.4 negotiates stream compression while a session is unauthenticated, which allows remote malicious users to cause a denial of service (resource consumption) via compressed ...
Lightwitch Metronome
Prosody Prosody 0.6.2
Prosody Prosody 0.6.0
Prosody Prosody 0.4.1
Prosody Prosody 0.5.0
Prosody Prosody 0.5.1
Prosody Prosody 0.4.2
Prosody Prosody 0.5.2
Prosody Prosody 0.6.1
Prosody Prosody
Prosody Prosody 0.9.1
Prosody Prosody 0.4.0
Prosody Prosody 0.2.0
Prosody Prosody 0.7.0
Prosody Prosody 0.8.1
Prosody Prosody 0.9.0
Prosody Prosody 0.8.2
Prosody Prosody 0.8.0
Prosody Prosody 0.1.0
Prosody Prosody 0.3.0
Prosody Prosody 0.9.2
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started