Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
codelyfe Stupid Simple CMS Login Page excessive authentication
Vulnerability Description
A vulnerability, which was classified as problematic, has been found in codelyfe Stupid Simple CMS 1.2.4. This issue affects some unknown processing of the component Login Page. The manipulation leads to improper restriction of excessive authentication attempts. The attack may be initiated remotely. The complexity of an attack is rather high. The exploitation is known to be difficult. The exploit has been disclosed to the public and may be used. The identifier VDB-259049 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
Vulnerability Type
过多认证尝试的限制不恰当
Vulnerability Title
Stupid Simple CMS 安全漏洞
Vulnerability Description
Stupid Simple CMS是codelyfe个人开发者的一个内容管理系统。 Stupid Simple CMS 1.2.4版本存在安全漏洞,该漏洞源于没有对身份验证的次数进行限制。
CVSS Information
N/A
Vulnerability Type
N/A