Vulnerabilities (CVE)

Filtered by vendor Koel Subscribe
Filtered by product Koel
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-33563 1 Koel 1 Koel 2024-11-21 5.0 MEDIUM 7.5 HIGH
Koel before 5.1.4 lacks login throttling, lacks a password strength policy, and shows whether a failed login attempt had a valid username. This might make brute-force attacks easier.