Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:GHSA-R37H-J483-CJJM
HistoryJun 01, 2021 - 9:38 p.m.

Improper rate limiting in Koel

2021-06-0121:38:20
Google
osv.dev
10
koel
rate limiting
login throttling
password strength
brute-force attacks

EPSS

0.003

Percentile

68.0%

JSON

Koel before 5.1.4 lacks login throttling, lacks a password strength policy, and shows whether a failed login attempt had a valid username. This might make brute-force attacks easier.

Related

cve 2
github 1
prion 1
nvd 2
veracode 1
osv 1
cvelist 1
cve
cve
CVE-2021-33563
2021-05-24 23:15:08
CVE-2021-34064
2023-02-24 16:15:11
github
github
Improper rate limiting in Koel
2021-06-01 21:38:20
prion
prion
Default credentials
2021-05-24 23:15:00
nvd
nvd
CVE-2021-33563
2021-05-24 23:15:08
CVE-2021-34064
2023-02-24 16:15:11
veracode
veracode
Brute Force Attack
2021-05-27 05:55:24
osv
osv
CVE-2021-33563
2021-05-24 23:15:08
cvelist
cvelist
CVE-2021-33563
2021-05-24 22:45:08

EPSS

0.003

Percentile

68.0%

JSON
Related for OSV:GHSA-R37H-J483-CJJM
cve2github1prion1nvd2veracode1osv1cvelist1