Weaknesses of type CWE-307
411 resultsCVE-2023-32251LOWKernel: ksmbd brute force delay bypass via asynchronous requestsEPSS 0.4%CVE-2026-24436CRITICALTenda W30E V2 Lacks Rate Limiting on AuthenticationEPSS 0.4%CVE-2025-67853HIGHMoodle: moodle: brute-force facilitation due to missing rate limiting in confirmation email serviceEPSS 0.4%CVE-2025-64310CRITICALEPSON WebConfig and Epson Web Control for SEIKO EPSON Projector Products do not restrict excessive authentication attempts. An administrativEPSS 0.4%CVE-2024-39874HIGHA vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). The affected application does not properly imEPSS 0.4%CVE-2025-2411HIGHOTP Bypass in Akinsoft's TaskPanoEPSS 0.4%CVE-2026-31903HIGHIGL-Technologies eParking.fi Improper Restriction of Excessive Authentication AttemptsEPSS 0.4%CVE-2026-10216MEDIUMunitedbyai droidclaw claim Endpoint pairing.ts excessive authenticationEPSS 0.4%CVE-2022-43947MEDIUMAn improper restriction of excessive authentication attempts vulnerability [CWE-307] in Fortinet FortiOS version 7.2.0 through 7.2.3 and befEPSS 0.4%CVE-2023-45009MEDIUMWordPress Captcha for Contact Form 7 plugin <= 1.11.3 - Capcha Bypass vulnerabilityEPSS 0.4%CVE-2024-9342MEDIUMIn Eclipse GlassFish versions before 8.0.3 it is possible to perform Login Brute Force attacks as there is no limitation in the number of faEPSS 0.4%CVE-2025-66204MEDIUMWBCE CMS allows brute-force protection bypass using X-Forwarded-For headerEPSS 0.4%CVE-2024-51476HIGHIBM Concert Software information disclosureEPSS 0.4%CVE-2023-34001MEDIUMWordPress Hide My WP Ghost – Security Plugin plugin <= 5.0.25 - Captcha Bypass vulnerabilityEPSS 0.4%CVE-2025-43863LOWvantage6 lacks brute-force protection on change password functionalityEPSS 0.4%CVE-2026-33419CRITICALMinIO: LDAP login brute-force via user enumeration and missing rate limitEPSS 0.4%CVE-2024-28833MEDIUMMissing brute-force protection for two factor authenticationEPSS 0.4%CVE-2026-50176HIGHEVoke Systems EVoke CSMS Improper Restriction of Excessive Authentication AttemptsEPSS 0.4%CVE-2025-62399HIGHMoodle: password brute force risk when mobile/web services enabledEPSS 0.4%CVE-2024-9928MEDIUMA vulnerability exists in NSD570 login panel that does not restrict excessive authentication attempts. If exploited, this could
cause accounEPSS 0.4%