CVE-2019-17240

bl-kernel/security.class.php in Bludit 3.9.2 allows attackers to bypass a brute-force protection mechanism by using many different forged X-Forwarded-For or Client-IP HTTP headers.
Configurations

Configuration 1

cpe:2.3:a:bludit:bludit:3.9.2:*:*:*:*:*:*:*

Information

Published : 2019-10-06 07:15

Updated : 2020-10-21 06:15


NVD link : CVE-2019-17240

Mitre link : CVE-2019-17240

Products Affected
No products.
CWE
CWE-307

Improper Restriction of Excessive Authentication Attempts