CVE-2018-19548

Posted on 2018년 11월 26일2018년 11월 26일 by admin

CVE-2018-19548

index.php?r=site%2Flogin in EduSec through 4.2.6 does not restrict sending a series of LoginForm[username] and LoginForm[password] parameters, which might make it easier for remote attackers to obtain access via a brute-force approach.

Source: CVE-2018-19548

답글 남기기 응답 취소