Critical severity9.8OSV Advisory· Published Jun 5, 2018· Updated Jun 17, 2026
CVE-2018-11678
CVE-2018-11678
Description
plugins/box/users/users.plugin.php in Monstra CMS 3.0.4 allows Login Rate Limiting Bypass via manipulation of the login_attempts cookie.
Affected products
2Patches
Vulnerability mechanics
References
1- abdilahrf.github.io/login-rate-limiting-bypassnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.