CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

RedhatCVE•added 2025/11/28 5:11 p.m.•4 views

CVE-2025-12760

Authentication Bypass Using an Alternate Path or Channel vulnerability in Drupal Email TFA allows Functionality Bypass.This issue affects Email TFA: from 0.0.0 before 2.0.6...

5.4CVSS7AI score0.00046EPSS

Exploits0References1

Vulnrichment•added 2025/11/18 4:55 p.m.•1 views

CVE-2025-12760 Email TFA - Moderately critical - Access bypass - SA-CONTRIB-2025-115

Authentication Bypass Using an Alternate Path or Channel vulnerability in Drupal Email TFA allows Functionality Bypass.This issue affects Email TFA: from 0.0.0 before 2.0.6...

6.6AI score0.00046EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•5 views

EUVD-2025-9048

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.00226EPSS

Exploits0References2

NVD•added 2025/03/31 10:15 p.m.•10 views

CVE-2025-31676

Weak Authentication vulnerability in Drupal Email TFA allows Brute Force.This issue affects Email TFA: from 0.0.0 before 2.0.3...

8.8CVSS0.00226EPSS

Exploits0References1

Cvelist•added 2025/03/31 9:36 p.m.•13 views

CVE-2025-31676 Email TFA - Moderately critical - Access bypass - SA-CONTRIB-2025-001

Weak Authentication vulnerability in Drupal Email TFA allows Brute Force.This issue affects Email TFA: from 0.0.0 before 2.0.3...

0.00226EPSS

Exploits0References1

Vulnrichment•added 2025/03/31 9:36 p.m.•8 views

CVE-2025-31676 Email TFA - Moderately critical - Access bypass - SA-CONTRIB-2025-001

Weak Authentication vulnerability in Drupal Email TFA allows Brute Force.This issue affects Email TFA: from 0.0.0 before 2.0.3...

8.8AI score0.00226EPSS

Exploits0References1

CVE•added 2025/03/31 9:36 p.m.•48 views

CVE-2025-31676

Drupal Email TFA (Drupal Email TFA module) is affected by a weak authentication vulnerability that enables brute-force attempts against the email-based second factor. The issue affects versions 0.0.0 through 2.0.2 and can allow bypass of the second factor, with exploitation described as a brute-f...

8.8CVSS6.6AI score0.00226EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2025/03/31 12:0 a.m.•3 views

PT-2025-13840 · Drupal · Drupal Email Tfa

Name of the Vulnerable Software and Affected Versions: Drupal Email TFA versions 0.0.0 through 2.0.2 Description: The issue is related to weak authentication in Drupal Email TFA, allowing brute force attacks. Recommendations: For versions 0.0.0 through 2.0.2, update to version 2.0.3 or later to...

8.8CVSS6.6AI score0.00226EPSS

Exploits0References5

CNNVD•added 2025/03/31 12:0 a.m.•2 views

Drupal Email TFA 安全漏洞

Drupal Email TFA is a Drupal community module that provides email-based two-factor authentication functionality for Drupal. A security vulnerability exists in Drupal Email TFA versions prior to 2.0.3, which stems from weak authentication and could lead to brute force exploits...

8.8CVSS6.8AI score0.00226EPSS

Exploits0References1