Name of the Vulnerable Software and Affected Versions No specific software or versions mentioned

Description The issue concerns a brute force protection mechanism in the backend login system. This mechanism pauses for 5 seconds when incorrect credentials are provided. However, it is possible to bypass this pause by forging a special request, which makes it more feasible to conduct brute force attacks on backend editor credentials.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.