Vulnerabilities > CVE-2011-1952 - Resource Management Errors vulnerability in Postrev Post Revolution
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
common.php in Post Revolution before 0.8.0c-2 allows remote attackers to cause a denial of service (infinite loop) via malformed HTML markup, as demonstrated by an a< sequence.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 12 |
Common Weakness Enumeration (CWE)
Packetstorm
data source | https://packetstormsecurity.com/files/download/101893/postrevolution-xssxsrfdos.txt |
id | PACKETSTORM:101893 |
last seen | 2016-12-05 |
published | 2011-06-01 |
reporter | Javier Bassi |
source | https://packetstormsecurity.com/files/101893/Post-Revolution-0.8.0c-XSS-XSRF-Denial-Of-Service.html |
title | Post Revolution 0.8.0c XSS / XSRF / Denial Of Service |
References
- http://javierb.com.ar/2011/06/01/postrev-vunls/
- http://postrev.com.ar/verpost.php?id_noticia=59
- http://securityreason.com/securityalert/8270
- http://www.securityfocus.com/archive/1/518205/100/0/threaded
- http://www.securityfocus.com/bid/47967
- http://javierb.com.ar/2011/06/01/postrev-vunls/
- http://www.securityfocus.com/bid/47967
- http://www.securityfocus.com/archive/1/518205/100/0/threaded
- http://securityreason.com/securityalert/8270
- http://postrev.com.ar/verpost.php?id_noticia=59