EPSS
Percentile
57.4%
firefly-iii has insecure authentication. The vulnerability exists due to Improper Restriction of Excessive Authentication Attempts allowing an attacker to be able to gain access through brute forcing the login with a correct password list.
github.com/firefly-iii/firefly-iii/commit/afc9f4b7ebc8a240c85864a6e1abda62bfeefae8
huntr.dev/bounties/497bdf6d-7dba-49c3-8011-1c64dfbb3380