The Janrain Capture module 6.x-1.0 and 7.x-1.0 for Drupal, when creating a local user account, allows attackers to obtain part of the initial input used to generate passwords, which makes it easier to conduct brute force password guessing attacks.
CPE | Name | Operator | Version |
---|---|---|---|
janrain_capture | eq | 6.120.10 | |
janrain_capture | eq | 7.120.10 |