CVE-2020-18698: Lin-CMS-Flask vulnerable to Improper Authentication

Severity: Critical

CVSS Score: 9.8

Improper Authentication in Lin-CMS-Flask v0.1.1 allows remote attackers to launch brute force login attempts without restriction via the 'login' function in the component 'app/api/cms/user.py'.