Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-307 (过多认证尝试的限制不恰当) — Vulnerability Class 327

327 vulnerabilities classified as CWE-307 (过多认证尝试的限制不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-48318 WordPress Contact Form Email plugin <= 1.3.41 - Captcha Bypass vulnerability — Contact Form Email 5.3 Medium2024-06-04
CVE-2023-48290 WordPress Form Maker by 10Web plugin <= 1.15.20 - Captcha Bypass Vulnerability vulnerability — Form Maker by 10Web 5.3 Medium2024-06-04
CVE-2023-48276 WordPress WP Forms Puzzle Captcha plugin <= 4.1 - Captcha Bypass vulnerability — WP Forms Puzzle Captcha 5.3 Medium2024-06-04
CVE-2023-45009 WordPress Captcha for Contact Form 7 plugin <= 1.11.3 - Capcha Bypass vulnerability — Captcha/Honeypot for Contact Form 7 5.3 Medium2024-06-04
CVE-2023-44235 WordPress WP Captcha plugin <= 2.0.0 - Captcha Bypass vulnerability — WP Captcha 5.3 Medium2024-06-04
CVE-2023-34001 WordPress Hide My WP Ghost – Security Plugin plugin <= 5.0.25 - Captcha Bypass vulnerability — Hide My WP Ghost 5.3 Medium2024-06-04
CVE-2023-23730 WordPress Spectra – WordPress Gutenberg Blocks plugin <= 2.3.0 - Captcha Bypass Vulnerability — Spectra 5.3 Medium2024-06-03
CVE-2024-32774 WordPress ProfileGrid plugin <= 5.8.2 - Group Members Limit Bypass vulnerability — ProfileGrid 4.3 Medium2024-05-17
CVE-2024-32720 WordPress Appointment Hour Booking plugin <= 1.4.56 - Captcha Bypass vulnerability — Appointment Hour Booking 5.3 Medium2024-05-17
CVE-2024-3461 KioWare 安全漏洞 — Kioware 6.2 Medium2024-05-09
CVE-2024-32868 ZITADEL's Improper Lockout Mechanism Leads to MFA Bypass — zitadel 6.5 Medium2024-04-25
CVE-2024-32676 WordPress LoginPress Pro plugin < 3.0.0 - Captcha Bypass vulnerability — LoginPress Pro 5.3 Medium2024-04-25
CVE-2024-28825 Brute-force protection ineffective for some login methods — Checkmk 5.9 Medium2024-04-24
CVE-2024-30390 Junos OS Evolved: Connection limits is not being enforced while the resp. rate limit is being enforced — Junos OS Evolved 5.3 Medium2024-04-12
CVE-2024-3202 codelyfe Stupid Simple CMS Login Page excessive authentication — Stupid Simple CMS 3.7 Low2024-04-02
CVE-2024-21662 Argo CD vulnerable to Bypassing of Rate Limit and Brute Force Protection Using Cache Overflow — argo-cd 7.5 High2024-03-18
CVE-2024-21652 Argo CD vulnerable to Bypassing of Brute Force Protection via Application Crash and In-Memory Data Loss — argo-cd 9.8 Critical2024-03-18
CVE-2024-2051 Schneider Electric Easergy T200 安全漏洞 — Easergy T200 (Modbus) Models: T200I, T200E, T200P, T200S, T200H 9.8 Critical2024-03-18
CVE-2024-24767 CasaOS Improper Restriction of Excessive Authentication Attempts vulnerability — CasaOS-UserService 9.1 Critical2024-03-06
CVE-2024-1104 Temporary denial of service during a brute force attack — Webserv2 7.5 High2024-02-22
CVE-2024-21500 Caddy 安全漏洞 — github.com/greenpau/caddy-security 4.8 Medium2024-02-17
CVE-2024-22425 Dell RecoverPoint for Virtual Machines 安全漏洞 — RecoverPoint for VMs 6.5 Medium2024-02-16
CVE-2023-45191 IBM Engineering Lifecycle Optimization information disclosure — Engineering Lifecycle Optimization - Publishing 7.5 High2024-02-09
CVE-2023-38273 IBM Cloud Pak System information disclosure — Cloud Pak System 7.5 High2024-02-02
CVE-2023-50326 IBM PowerSC information Disclosure — PowerSC 7.5 High2024-02-02
CVE-2022-45790 Omron FINS memory protection susceptible to bruteforce — CJ-series and CS-series CPU modules 8.6 High2024-01-22
CVE-2024-22317 IBM App Connect Enterprise denial of service — App Connect Enterprise 9.1 Critical2024-01-18
CVE-2023-49810 WWBN AVideo 安全漏洞 — AVideo 7.3 High2024-01-10
CVE-2023-49792 Bruteforce protection can be bypassed with misconfigured proxy — security-advisories 5.3 Medium2023-12-22
CVE-2023-6912 Brute force vulnerability in M-Files user authentication — M-Files Server 7.5 High2023-12-20

Vulnerabilities classified as CWE-307 (过多认证尝试的限制不恰当) represent 327 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.