An issue in the user login box of CSCMS v4.0 allows malicious users to hijack user accounts via brute force attacks.
chshcms cscms 4.0