dolibarr/dolibarr is vulnerable to brute-force attacks. Lack of account lockout mechanism allows a remote attacker to attempt a brute-force attack on the log-in module to discover user credentials.
CPE | Name | Operator | Version |
---|---|---|---|
dolibarr/dolibarr | le | 10.0.6 | |
dolibarr/dolibarr | le | 10.0.6 |