Описание
Missing rate limit for password resets
Concrete CMS (previously concrete5) before 9.1 did not have a rate limit for password resets.
Пакеты
Наименование
concrete5/concrete5
composer
Затронутые версииВерсия исправления
< 9.1.0
9.1.0
Связанные уязвимости
CVSS3: 5.3
nvd
почти 3 года назад
Concrete CMS (previously concrete5) before 9.1 did not have a rate limit for password resets.