Security Advisory

CVE-2019-15929

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-10-24 15:53:00

Last updated 2024-08-05 01:03:32

Assigner mitre

State PUBLISHED

Description

In Craft CMS through 3.1.7, the elevated session password prompt was not being rate limited like normal login forms, leading to the possibility of a brute force attempt on them.

← Browse all CVEs View on cve.org ↗