An issue in the user login box of LJCMS v1.11 allows malicious users to hijack user accounts via brute force attacks.
8cms ljcms 1.11