CVE-2023-5289 - Allocation of Resources Without Limits or Throttling in rdiffweb (GitHub repo ikus060/rdiffweb prior to 2.8.4) — Exploit Analysis and Fix
Rdiffweb is a popular web interface for managing and restoring rdiff-backup repositories. It’s widely used because it makes backup browsing and administration easier. But
CVE-2022-3363 - Business Logic Errors in Rdiffweb (ikus060/rdiffweb) Prior to 2.5.a7 — A Deep Dive
In September 2022, a critical business logic vulnerability (CVE-2022-3363) was disclosed for the widely used backup web interface, Rdiffweb, hosted in the ikus060/rdiffweb GitHub