Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Bruteforce Protection Bypass in Windu CMS
Vulnerability Description
Windu CMS implements weak client-side brute-force protection by using parameter loginError. Information about attempt count or timeout is not stored on the server, which allows a malicious attacker to bypass this brute-force protection by resetting this parameter. Only version 4.1 was tested and confirmed as vulnerable. This issue was fixed in version 4.1 build 2250.
CVSS Information
N/A
Vulnerability Type
过多认证尝试的限制不恰当
Vulnerability Title
Windu CMS 安全漏洞
Vulnerability Description
Windu CMS(温杜CMS)是Windu公司的一套轻量级的网站内容管理系统(CMS)。 Windu CMS 4.1版本存在安全漏洞,该漏洞源于客户端暴力破解保护不足,可能导致暴力破解攻击。
CVSS Information
N/A
Vulnerability Type
N/A