CVE-2019-16180 (limesurvey)

Limesurvey before 3.17.14 allows remote attackers to bruteforce the login form and enumerate usernames when the LDAP authentication method is used.
Source: NIST
CVE-2019-16180 (limesurvey)