Description

The htdocs/index.php?mainmenu=home login page in Dolibarr 10.0.6 allows an unlimited rate of failed authentication attempts.

Remediation

References

CVE-2020-7995

Related Vulnerabilities

WordPress Plugin Advanced Custom Fields (ACF) 'acf_abspath' Parameter Remote File Include (3.5.1)

Craft CMS Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2021-27903)

WordPress Plugin Smart Forms-when you need more than just a contact form Cross-Site Scripting (2.6.15)

WordPress Other Vulnerability (CVE-2005-1102)

WordPress Plugin Xhanch-My Twitter Cross-Site Request Forgery (2.7.6)

Severity

Critical

Classification

CVE-2020-7995 CWE-287 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities