Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-307 (过多认证尝试的限制不恰当) — Vulnerability Class 327

327 vulnerabilities classified as CWE-307 (过多认证尝试的限制不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-0787 Improper Restriction of Excessive Authentication Attempts in phpipam/phpipam — phpipam/phpipam 9.8AICriticalAI2024-11-15
CVE-2024-9832 No limit on failed login attempts with Clinician Password or Serial Number Clinician Password on Life2000 Ventilator — Life2000 Ventilation System 9.3 Critical2024-11-14
CVE-2024-51720 Vulnerabilities in SecuSUITE Server Components Impact SecuSUITE — SecuSUITE 4.8 Medium2024-11-12
CVE-2024-11126 Digistar AG-30 Plus Login Page excessive authentication — AG-30 Plus 3.1 Low2024-11-12
CVE-2024-47592 Information Disclosure Vulnerability in SAP NetWeaver Application Server Java (Logon Application) — SAP NetWeaver Application Server Java (Logon Application) 5.3 Medium2024-11-12
CVE-2024-51558 Brute Force Attack Vulnerability in Wave 2.0 — Wave 2.0 9.8AICriticalAI2024-11-04
CVE-2024-7292 Account Controller allows high count of login attempts — Telerik Report Server 7.5 High2024-10-09
CVE-2024-47656 User Enumeration vulnerability — Client Dashboard 9.8 -2024-10-04
CVE-2024-47088 User Enumeration vulnerability — LD Geo 9.8AICriticalAI2024-09-19
CVE-2024-5682 User Enumeration in Yordam Information Technology's Yordam Library Automation System — Yordam Library Automation System 9.1AICriticalAI2024-09-18
CVE-2024-45790 User Enumeration vulnerability — Mutual Fund Distribution Product (aiM-Star) 9.8AICriticalAI2024-09-11
CVE-2024-45327 Fortinet FortiSOAR 安全漏洞 — FortiSOAR 7.1 High2024-09-11
CVE-2024-32771 QTS, QuTS hero — QTS 2.6 Low2024-09-06
CVE-2024-8462 Windmill HTTP Request users.rs excessive authentication — Windmill 3.7 Low2024-09-05
CVE-2024-42466 Lack of resources and rate limiting - login — upKeeper Manager 9.8AICriticalAI2024-08-16
CVE-2024-42465 Lack of resources and rate limiting - two factor authentication — upKeeper Manager 9.8AICriticalAI2024-08-16
CVE-2024-39398 OTP 2FA can be bruteforced — Adobe Commerce 7.4 High2024-08-14
CVE-2024-41904 Siemens SINEC Traffic Analyzer 安全漏洞 — SINEC Traffic Analyzer 7.5 High2024-08-13
CVE-2024-41682 Siemens Location Intelligence Perpetual 安全漏洞 — Location Intelligence family 5.3 Medium2024-08-13
CVE-2024-38176 GroupMe Elevation of Privilege Vulnerability — GroupMe 8.1 High2024-07-23
CVE-2024-39917 xrdp allows an ininite number of login attempts — xrdp 7.2 High2024-07-12
CVE-2024-39874 Siemens SINEMA Remote Connect 安全漏洞 — SINEMA Remote Connect Server 7.5 High2024-07-09
CVE-2024-39873 Siemens SINEMA Remote Connect Server 安全漏洞 — SINEMA Remote Connect Server 7.5 High2024-07-09
CVE-2024-25031 IBM Storage Defender information disclosure — Storage Defender - Resiliency Service 6.5 Medium2024-06-28
CVE-2024-5862 User Enumeration in Mia Technology's Mia-Med Health Aplication — Mia-Med Health Aplication 7.5 High2024-06-24
CVE-2024-28022 Hitachi FOXMAN-UN 安全漏洞 — FOXMAN-UN 6.5 Medium2024-06-11
CVE-2024-35747 WordPress Contact Form Builder, Contact Widget plugin <= 2.1.7 - Bypass Vulnerability vulnerability — Contact Form Builder, Contact Widget 5.3 Medium2024-06-10
CVE-2024-28833 Missing brute-force protection for two factor authentication — Checkmk 5.9 Medium2024-06-10
CVE-2024-3102 JSON Injection in mintplex-labs/anything-llm — mintplex-labs/anything-llm 7.5AIHighAI2024-06-06
CVE-2023-48745 WordPress Captcha Code plugin <= 2.9 - Captcha Bypass vulnerability — Captcha Code 5.3 Medium2024-06-04

Vulnerabilities classified as CWE-307 (过多认证尝试的限制不恰当) represent 327 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.