Lucene search
+L

92 matches found

Veracode
Veracode
added 2022/11/29 4:2 a.m.18 views

Authentication Bypass

wger is vulnerable to authentication bypass. The vulnerability exists due to improper restrictions of unsuccessful password attempts which allows an attacker to use brute force attacks on the login page...

9.8CVSS9.1AI score0.00661EPSS
Exploits1References5Affected Software1
OSV
OSV
added 2022/11/24 6:30 p.m.46 views

GHSA-GR58-76RP-MMG4 wger vulnerable to brute force attempts

Improper Restriction of Excessive Authentication Attempts in GitHub repository wger-project/wger prior to 2.2...

9.8CVSS8.7AI score0.00661EPSS
Exploits1References4
Github Security Blog
Github Security Blog
added 2022/11/24 6:30 p.m.26 views

wger vulnerable to brute force attempts

Improper Restriction of Excessive Authentication Attempts in GitHub repository wger-project/wger prior to 2.2...

9.8CVSS3.1AI score0.00661EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2022/11/24 5:15 p.m.29 views

CVE-2022-2650

Improper Restriction of Excessive Authentication Attempts in GitHub repository wger-project/wger prior to 2.2...

9.8CVSS0.00661EPSS
Exploits1References2
Prion
Prion
added 2022/11/24 5:15 p.m.22 views

Input validation

Improper Restriction of Excessive Authentication Attempts in GitHub repository wger-project/wger prior to 2.2...

7.5CVSS9.6AI score0.00661EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2022/11/24 12:0 a.m.1 views

PT-2022-17904

Name of the Vulnerable Software and Affected Versions wger versions prior to 2.2 Description The issue is related to improper restriction of excessive authentication attempts in the GitHub repository wger-project/wger. Recommendations For versions prior to 2.2, update to version 2.2 or later to...

9.8CVSS7.1AI score0.00661EPSS
Exploits1References13
Vulnrichment
Vulnrichment
added 2022/11/24 12:0 a.m.7 views

CVE-2022-2650 Improper Restriction of Excessive Authentication Attempts in wger-project/wger

Improper Restriction of Excessive Authentication Attempts in GitHub repository wger-project/wger prior to 2.2...

7.8CVSS6.8AI score0.00661EPSS
Exploits1References2
CNNVD
CNNVD
added 2022/11/24 12:0 a.m.6 views

wger 安全漏洞

wger is a self-hosted FLOSS fitness/exercise, nutrition and weight tracker written in Django. A security vulnerability exists in versions prior to wger 2.2 that stems from an improper limit on the number of attempts for authentication...

9.8CVSS7.5AI score0.00661EPSS
Exploits1References3
CVE
CVE
added 2022/11/24 12:0 a.m.142 views

CVE-2022-2650

CVE-2022-2650 affects wger-project/wger prior to version 2.2, due to improper restriction of excessive authentication attempts. This vulnerability is documented with CVSS scores: NVD v3.1 base 9.8 (CRITICAL) and CNA v3.0 base 7.8 (HIGH). Remediation per sources is to update to version 2.2 or later.

9.8CVSS8.8AI score0.00661EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2022/11/24 12:0 a.m.27 views

CVE-2022-2650 Improper Restriction of Excessive Authentication Attempts in wger-project/wger

Improper Restriction of Excessive Authentication Attempts in GitHub repository wger-project/wger prior to 2.2...

7.8CVSS9.8AI score0.00661EPSS
Exploits1References2
OSV
OSV
added 2022/11/24 12:0 a.m.22 views

CVE-2022-2650 Improper Restriction of Excessive Authentication Attempts in wger-project/wger

Improper Restriction of Excessive Authentication Attempts in GitHub repository wger-project/wger prior to 2.2...

7.8CVSS7.9AI score0.00661EPSS
Exploits1References4
Veracode
Veracode
added 2016/12/30 8:37 a.m.10 views

Denial Of Service (DoS)

wger is vulnerable to denial-of-service DoS attacks. The vulnerability exists as there are no limit checks in the csv upload functionality and it is exploitable by importing large size csv...

6.7AI score
Exploits0
Rows per page
Query Builder