Description

An issue was discovered in Joomla! 4.2.0 through 4.3.1. The lack of rate limiting allowed brute force attacks against MFA methods.

Remediation

References

CVE-2023-23755

Related Vulnerabilities

WordPress Plugin Contact Form 7 Style Cross-Site Request Forgery (3.1.9)

WordPress Plugin SEO Redirection-301 Redirect Manager SQL Injection (3.5)

Django Improper Authentication Vulnerability (CVE-2014-0482)

Django Incorrect Default Permissions Vulnerability (CVE-2019-19118)

MySQL CVE-2021-35647 Vulnerability (CVE-2021-35647)

Severity

High

Classification

CVE-2023-23755 CWE-307 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Tags

Missing Update Known Vulnerabilities