Critical

DATE	CVE	VULNERABILITY TITLE	RISK
2017-05-08	CVE-2017-8827	Improper Authentication vulnerability in Genixcms 1.0.2 forgotpassword.php in GeniXCMS 1.0.2 lacks a rate limit, which might allow remote attackers to cause a denial of service (login inability) or possibly conduct Arbitrary User Password Reset attacks via a series of requests. network low complexity genixcms CWE-287 critical	9.1

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.