2 matches found
CVE-2013-2198
The Login Security module 6.x-1.x before 6.x-1.3 and 7.x-1.x before 7.x-1.3 for Drupal allows attackers to bypass intended restrictions via a crafted username...
CVE-2013-2198
The CVE-2013-2198 entry concerns Drupal’s Login Security module (6.x-1.x prior to 6.x-1.3 and 7.x-1.x prior to 7.x-1.3) where attackers can bypass intended restrictions by supplying a crafted username. The underlying issue is an incorrect use of string filtering in the module which can cause it t...