CVE-2021-47824

Medium CVSS: 4.6

iDailyDiary 4.30 contains a denial of service vulnerability that allows attackers to crash the application by overflowing the preferences tab name field. Attackers can paste a 2,000,000 character buffer into the default diary tab name to trigger an application crash.

Vendor

Product

CWE

CWE-1284

Yayın Tarihi

2026-01-16 19:16:07

Güncelleme

2026-01-26 15:05:57

Source Identifier

disclosure@vulncheck.com

KEV Date Added

Kategoriler

CWE-1284 MEDIUM 2026

Referanslar

https://www.exploit-db.com/exploits/49898 https://www.splinterware.com/index.html https://www.vulncheck.com/advisories/idailydiary-denial-of-service-poc