Soft SaschArt SasCAM Webcam Server 2.6.5, 2.7, and earlier allows remote attackers to cause a denial of service (crash) via a large number of requests with a long line, as demonstrated using a long GET request.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-20,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| saschart | sascam_webcam_server | 2.6.5 |
| saschart | sascam_webcam_server | * |
The rich-counter plugin before 1.2.0 for WordPress has JavaScript injection via a User-Agent header.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-74,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| saschart | rich_counter | * |