Tag

Recursion

4 briefs RSS

Vvveb Uncontrolled Recursion Denial of Service (CVE-2026-41935)

Vvveb before version 1.0.8.3 is vulnerable to an uncontrolled recursion vulnerability in the admin controller dispatch cycle that allows a low-privilege attacker to cause denial of service by exhausting PHP memory.

Vvveb +1 denial of service web application recursion

1r 2t 1c May 14, 2026

high advisory

webonyx/graphql-php Unbounded Recursion Vulnerability

2 rules 1 TTP

The webonyx/graphql-php library has an unbounded recursion vulnerability in its parser that can lead to a stack overflow, causing a denial of service by terminating the PHP process with a SIGSEGV.

graphql-php +4 graphql denial-of-service recursion php

2r 1t May 6, 2026

medium advisory

xmldom Uncontrolled Recursion DoS Vulnerability

2 rules 1 TTP

The xmldom library is vulnerable to a denial-of-service (DoS) attack due to uncontrolled recursion in XML serialization leading to application crashes.

xmldom dos recursion javascript

2r 1t Apr 23, 2026

high advisory

NestJS Uncontrolled Recursion Denial-of-Service Vulnerability (CVE-2026-40879)

2 rules 1 TTP 1 CVE

NestJS versions before 11.1.19 are susceptible to an uncontrolled recursion vulnerability (CVE-2026-40879) where sending many small JSON messages in a single TCP frame triggers a call stack overflow, resulting in a denial-of-service condition.

denial-of-service nestjs recursion cve-2026-40879 linux

2r 1t 1c Apr 22, 2026