CVE-2020-18698: Lin-CMS-Flask vulnerable to Improper Authentication
(updated )
Improper Authentication in Lin-CMS-Flask v0.1.1 allows remote attackers to launch brute force login attempts without restriction via the ’login’ function in the component app/api/cms/user.py
.
References
Detect and mitigate CVE-2020-18698 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →