CVE-2025-11441

Name of the Vulnerable Software and Affected Versions JhumanJ OpnForm versions up to 1.9.3

Description A security issue exists in JhumanJ OpnForm related to improper restriction of excessive authentication attempts. The issue is located within the HTTP Header Handler component and involves manipulation of the X-Forwarded-For argument. The attack can be carried out remotely and requires a high degree of complexity, though exploitability is described as difficult. The exploit is publicly available.

Recommendations Install patch 11e99960e14ca986b1a001a56e7533223d2cfa5b to address this issue.