Lucene search
K

27 matches found

ATTACKERKB
ATTACKERKB
added 2026/06/01 2:30 a.m.10 views

CVE-2026-10216

A vulnerability was detected in unitedbyai droidclaw up to 0.5.3. The affected element is an unknown function of the file server/src/routes/pairing.ts of the component claim Endpoint. The manipulation results in improper restriction of excessive authentication attempts. The attack may be launched...

6.3CVSS5.2AI score0.00406EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2026/05/21 2:8 p.m.43 views

CVE-2026-1816 OTP Bypass in TEİAŞ's Mobile Application

Improper restriction of excessive authentication attempts vulnerability in Turkiye Electricity Transmission Corporation TEİAŞ Mobile Application allows Brute Force. This issue affects Mobile Application: from 1.6.2 before 1.13...

6.3CVSS0.00184EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/04/15 12:0 a.m.10 views

Schneider Electric PowerChute Serial Shutdown < 1.5 Multiple Vulnerabilities (SEVD-2026-104-01)

The version of Schneider Electric PowerChute Serial Shutdown installed on the remote host is prior to 1.5. It is, therefore, affected by multiple vulnerabilities, including: - An improper limitation of a pathname to a restricted directory vulnerability exists that could cause critical files to be...

6.9CVSS5.9AI score0.00274EPSS
Exploits0References8
EUVD
EUVD
added 2026/03/10 6:31 p.m.5 views

EUVD-2026-10517

An improper restriction of excessive authentication attempts vulnerability in Fortinet FortiAnalyzer 7.6.0 through 7.6.4, FortiAnalyzer 7.4 all versions, FortiAnalyzer 7.2 all versions, FortiAnalyzer 7.0 all versions, FortiAnalyzer 6.4 all versions, FortiAnalyzer Cloud 7.6.2, FortiAnalyzer Cloud...

3.7CVSS5.7AI score0.00369EPSS
Exploits0References2
NVD
NVD
added 2026/01/22 5:16 p.m.5 views

CVE-2026-22278

Dell PowerScale OneFS versions prior to 9.13.0.0 contains an improper restriction of excessive authentication attempts vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Unauthorized access...

9.8CVSS0.00367EPSS
Exploits0References1
CVE
CVE
added 2025/10/31 6:32 p.m.15 views

CVE-2025-12547

CVE-2025-12547 affects LogicalDOC Community Edition up to 9.2.1, targeting the Admin Login Page via the file /login.jsp . The root cause is an improper restriction of excessive authentication attempts, enabling remote brute‑force style access. The issue is described as high complexity with a publ...

8.1CVSS4.9AI score0.00821EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2025/10/31 6:32 p.m.3 views

CVE-2025-12547 LogicalDOC Community Edition Admin Login login.jsp excessive authentication

A vulnerability was identified in LogicalDOC Community Edition up to 9.2.1. This vulnerability affects unknown code of the file /login.jsp of the component Admin Login Page. Such manipulation leads to improper restriction of excessive authentication attempts. The attack can be executed remotely...

6.3CVSS6.5AI score0.00821EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2020-7755

Malware in sbrugna...

5.5CVSS5.6AI score0.00266EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.20 views

EUVD-2024-48236

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.00317EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/04 8:34 a.m.5 views

CVE-2025-2411 OTP Bypass in Akinsoft's TaskPano

Improper Restriction of Excessive Authentication Attempts vulnerability in Akinsoft TaskPano allows Authentication Bypass. This issue affects TaskPano: from s1.06.04 before v1.06.06...

8.6CVSS5.4AI score0.00411EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/09/03 1:25 p.m.9 views

CVE-2025-2416 OTP Bypass in Akinsoft's LimonDesk

Improper Restriction of Excessive Authentication Attempts vulnerability in Akinsoft LimonDesk allows Authentication Bypass. This issue affects LimonDesk: from s1.02.14 before v1.02.17...

8.6CVSS0.00325EPSS
Exploits0References2
NVD
NVD
added 2025/09/02 2:15 p.m.2 views

CVE-2025-2413

Improper Restriction of Excessive Authentication Attempts vulnerability in Akinsoft ProKuafor allows Authentication Bypass. This issue affects ProKuafor: from s1.02.08 before v1.02.08...

8.6CVSS0.00325EPSS
Exploits0References2
OSV
OSV
added 2025/08/15 3:15 a.m.5 views

CVE-2025-9004

A vulnerability was found in mtons mblog up to 3.5.0. This issue affects some unknown processing of the file /settings/password. The manipulation leads to improper restriction of excessive authentication attempts. The attack may be initiated remotely. The complexity of an attack is rather high. T...

9.1CVSS4.7AI score0.00895EPSS
Exploits1References4
NVD
NVD
added 2025/08/08 10:16 p.m.11 views

CVE-2025-8742

A vulnerability was found in macrozheng mall 1.0.3. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Admin Login. The manipulation leads to improper restriction of excessive authentication attempts. The attack may be launched remotely. The...

6.3CVSS0.00567EPSS
Exploits1References4
OSV
OSV
added 2025/08/08 10:2 p.m.4 views

CVE-2025-8742 macrozheng mall Admin Login excessive authentication

A vulnerability was found in macrozheng mall 1.0.3. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Admin Login. The manipulation leads to improper restriction of excessive authentication attempts. The attack may be launched remotely. The...

6.3CVSS4.5AI score0.00567EPSS
Exploits1References6
OSV
OSV
added 2025/04/14 7:15 a.m.4 views

CVE-2025-3555

A vulnerability classified as problematic has been found in ScriptAndTools eCommerce-website-in-PHP 3.0. Affected is an unknown function of the file /login.php. The manipulation leads to improper restriction of excessive authentication attempts. It is possible to launch the attack remotely. The...

8.1CVSS4.4AI score
Exploits0References5
Snyk
Snyk
added 2025/02/06 6:42 p.m.3 views

Improper Restriction of Excessive Authentication Attempts

Overview sylius/sylius is a platform for PHP, based on Symfony framework. Affected versions of this package are vulnerable to Improper Restriction of Excessive Authentication Attempts due to improper rate limiting mechanism. An attacker can perform repeated login attempts without being restricted...

8.2CVSS6.7AI score0.01175EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/11/12 12:0 a.m.4 views

Digistar AG-30 Plus 安全漏洞

Digistar AG-30 Plus is an access gateway from Digistar that integrates a specialized router to allow communication between IP and digital technologies in a simple and secure manner. A security vulnerability exists in Digistar AG-30 Plus version 2.6b that stems from an improper restriction of...

3.1CVSS4.5AI score0.00284EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/11/01 12:0 a.m.9 views

Progress Telerik Report Server <= 10.2.24.709 Multiple Vulnerabilities (September 2024)

The version of Progress Telerik Report Server installed on the remote host is affected by multiple vulnerabilities: - A credential stuffing attack is possible through improper restriction of excessive login attempts. CVE-2024-7292 - A password brute forcing attack is possible through weak passwor...

8.8CVSS5.5AI score0.00317EPSS
Exploits0References6
NVD
NVD
added 2024/10/09 3:15 p.m.41 views

CVE-2024-7292

In Progress® Telerik® Report Server versions prior to 2024 Q3 10.2.24.806, a credential stuffing attack is possible through improper restriction of excessive login attempts...

8.8CVSS0.00317EPSS
Exploits0References1
Rows per page
Query Builder