Description

An issue was discovered in Joomla! 4.2.0 through 4.3.1. The lack of rate limiting allowed brute force attacks against MFA methods.

Remediation

References

CVE-2023-23755

Related Vulnerabilities

WordPress Plugin Broken Link Checker Unspecified Vulnerability (1.10.7)

WordPress Plugin BuddyPress Cross-Site Request Forgery (2.9.0)

Apache HTTP Server Uncontrolled Resource Consumption Vulnerability (CVE-2009-1891)

Moodle Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2013-3630)

WordPress Plugin WordPress Page Contact SQL Injection (1.0)

Severity

High

Classification

CVE-2023-23755 CWE-307 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Tags

Missing Update Known Vulnerabilities