tiki-login.php in Tiki before 21.2 sets the admin password to a blank value after 50 invalid login attempts.
{ "cpe": "cpe:2.3:a:tiki:tiki:*:*:*:*:*:*:*:*", "extracted_events": [ { "introduced": "16.3" }, { "fixed": "21.2" } ], "source": "CPE_RANGE" }
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-15906.json"