92 matches found
Authentication Bypass
wger is vulnerable to authentication bypass. The vulnerability exists due to improper restrictions of unsuccessful password attempts which allows an attacker to use brute force attacks on the login page...
GHSA-GR58-76RP-MMG4 wger vulnerable to brute force attempts
Improper Restriction of Excessive Authentication Attempts in GitHub repository wger-project/wger prior to 2.2...
wger vulnerable to brute force attempts
Improper Restriction of Excessive Authentication Attempts in GitHub repository wger-project/wger prior to 2.2...
CVE-2022-2650
Improper Restriction of Excessive Authentication Attempts in GitHub repository wger-project/wger prior to 2.2...
Input validation
Improper Restriction of Excessive Authentication Attempts in GitHub repository wger-project/wger prior to 2.2...
PT-2022-17904
Name of the Vulnerable Software and Affected Versions wger versions prior to 2.2 Description The issue is related to improper restriction of excessive authentication attempts in the GitHub repository wger-project/wger. Recommendations For versions prior to 2.2, update to version 2.2 or later to...
CVE-2022-2650 Improper Restriction of Excessive Authentication Attempts in wger-project/wger
Improper Restriction of Excessive Authentication Attempts in GitHub repository wger-project/wger prior to 2.2...
wger 安全漏洞
wger is a self-hosted FLOSS fitness/exercise, nutrition and weight tracker written in Django. A security vulnerability exists in versions prior to wger 2.2 that stems from an improper limit on the number of attempts for authentication...
CVE-2022-2650
CVE-2022-2650 affects wger-project/wger prior to version 2.2, due to improper restriction of excessive authentication attempts. This vulnerability is documented with CVSS scores: NVD v3.1 base 9.8 (CRITICAL) and CNA v3.0 base 7.8 (HIGH). Remediation per sources is to update to version 2.2 or later.
CVE-2022-2650 Improper Restriction of Excessive Authentication Attempts in wger-project/wger
Improper Restriction of Excessive Authentication Attempts in GitHub repository wger-project/wger prior to 2.2...
CVE-2022-2650 Improper Restriction of Excessive Authentication Attempts in wger-project/wger
Improper Restriction of Excessive Authentication Attempts in GitHub repository wger-project/wger prior to 2.2...
Denial Of Service (DoS)
wger is vulnerable to denial-of-service DoS attacks. The vulnerability exists as there are no limit checks in the csv upload functionality and it is exploitable by importing large size csv...