Account Lockout Bypass Vulnerability in OpenClinic GA Versions 5.09.02 and 5.89.05b

Account Lockout Bypass Vulnerability in OpenClinic GA Versions 5.09.02 and 5.89.05b

CVE-2020-14484 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

OpenClinic GA versions 5.09.02 and 5.89.05b may allow an attacker to bypass the system’s account lockout protection, which may allow brute force password attacks.

Learn more about our Web Application Penetration Testing UK.