Описание
AzuraCast missing brute force prevention
The request rate limiting feature on the login page of AzuraCast before version 0.18.3 can be bypassed, which could allow an attacker to brute force login credentials.
Пакеты
Наименование
azuracast/azuracast
composer
Затронутые версииВерсия исправления
< 0.18.3
0.18.3
Связанные уязвимости
CVSS3: 9.8
nvd
почти 3 года назад
Improper Restriction of Excessive Authentication Attempts in GitHub repository azuracast/azuracast prior to 0.18.3.