CVE-2025-60538 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A lack of rate limiting in the login page of shiori v1.7.4 and below allows attackers to bypass authentication via a brute force attack.
Medium CVSS: 6.5

CVE-2025-60538

A lack of rate limiting in the login page of shiori v1.7.4 and below allows attackers to bypass authentication via a brute force attack.
Vendor
Go-shiori
Product
Shiori
CWE
CWE-290
Yayın Tarihi
2026-01-09 21:16:13
Güncelleme
2026-01-22 21:39:49
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-290 Shiori MEDIUM Go-shiori 2026

Referanslar

https://github.com/go-shiori/shiori https://github.com/go-shiori/shiori/issues/1138