Process-one » Ejabberd : Security Vulnerabilities, CVEs, Published In 2012
The mod_pubsub module (mod_pubsub.erl) in ejabberd 2.1.8 and 3.0.0-alpha-3 allows remote authenticated users to cause a denial of service (infinite loop) via a stanza with a publish tag that lacks a node attribute.
Max CVSS
4.0
EPSS Score
0.58%
Published
2012-02-18
Updated
2012-02-29
1 vulnerabilities found