Support Forums - All Posts - XOOPS Web Application System

xoops forums

Forum Index

Board index » All Posts (pbssubhash)

Bottom

pbssubhash

Just popping in

Posted on: 2015/1/11 17:11

: pbssubhash (Show more); Just popping in; Posts: 1; Since: 2015/1/11

[Security-Bug]Missing ratelimiting at login panel can result in a brute force

2015/1/11 17:11 Hey,
I found that there is missing rate-limiting protection at login panel of the Xoops CMS by using which an attacker can guess the passwords using brute force attacks.
I'd be more than happy to provide PoC's for this particular bug.

Thanks.

Topic | Forum

Top

Username

Passwort

Remember me

Recent Posts

Topic	Author
how to install NewBB forums on xoops 2.5.10 installed via softaculous and php 5.4.45?	newbie555
Re: xLanguage 3.1 RC-2 released (works on PHP 8)	alain01
Re: CERCASI SVILUPPATORE MODULI XOOPS / WANTED XOOPS MODULES DEVELOPER	luciorota
Re: CERCASI SVILUPPATORE MODULI XOOPS / WANTED XOOPS MODULES DEVELOPER	Mamba
Re: PHP 8.0.0 Beta 4 available for testing	Mamba
CERCASI SVILUPPATORE MODULI XOOPS / WANTED XOOPS MODULES DEVELOPER	luciorota
Re: Publisher 1.08 Alpha 2 released for Testing and Contributions	Mamba
Re: xLanguage 3.1 RC-2 released (works on PHP 8)	Mamba
Re: xLanguage 3.1 RC-2 released (works on PHP 8)	goffy
Re: Publisher 1.08 Alpha 2 released for Testing and Contributions	oswaldo

Posts | Forums


Stats
Goal:	$100.00
Due Date:	Sep 30
Gross Amount:	$0.00
Net Balance:	$0.00
Left to go:	$100.00