Описание
Denial of service in Valine
Valine is a fast, simple & powerful comment system. Valine 1.4.14 allows remote attackers to cause a denial of service (application outage) by supplying a ua (aka User-Agent) value that only specifies the product and version.
Пакеты
Наименование
valine
npm
Затронутые версииВерсия исправления
<= 1.4.14
Отсутствует
Связанные уязвимости
CVSS3: 5.3
nvd
больше 4 лет назад
Valine 1.4.14 allows remote attackers to cause a denial of service (application outage) by supplying a ua (aka User-Agent) value that only specifies the product and version.