CVE-2025-60538

6.5MEDIUM

A lack of rate limiting in the login page of shiori v1.7.4 and below allows attackers to bypass authentication via a brute force attack.

Published: 1/9/2026Updated: 1/13/2026
View on NVDView on MITRE

Description

A lack of rate limiting in the login page of shiori v1.7.4 and below allows attackers to bypass authentication via a brute force attack.

AI AnalysisPowered by AI

References