CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Authentication Bypass Using an Alternate Path or Channel vulnerability in Drupal Enterprise MFA - TFA for Drupal allows Authentication Bypass.This issue affects Enterprise MFA - TFA for Drupal: from 0.0.0 before 4.8.0, from 5.2.0 before 5.2.1, from 0.0.0 before 5.0., from 0.0.0 before 5.1...

4.8CVSS7.3AI score0.00126EPSS

Exploits0References1

NVD•added 2025/06/26 2:15 p.m.•4 views

CVE-2025-6675

4.8CVSS0.00126EPSS

Exploits0References1

Cvelist•added 2025/06/26 1:33 p.m.•10 views

CVE-2025-6675 Enterprise MFA - TFA for Drupal - Critical - Access bypass - SA-CONTRIB-2025-082

0.00126EPSS

Exploits0References1

Vulnrichment•added 2025/06/26 1:33 p.m.•2 views

CVE-2025-6675 Enterprise MFA - TFA for Drupal - Critical - Access bypass - SA-CONTRIB-2025-082

7.3AI score0.00126EPSS

Exploits0References1

Positive Technologies•added 2025/06/26 12:0 a.m.•5 views

PT-2025-26964 · Drupal · Enterprise Mfa - Tfa For Drupal

Name of the Vulnerable Software and Affected Versions: Enterprise MFA - TFA for Drupal versions 0.0.0 through 4.8.0 Enterprise MFA - TFA for Drupal versions 5.2.0 through 5.2.0 Enterprise MFA - TFA for Drupal versions 0.0.0 through 5.0. Enterprise MFA - TFA for Drupal versions 0.0.0 through 5.1...

4.8CVSS7.6AI score0.00126EPSS

Exploits0References6

CNNVD•added 2025/06/26 12:0 a.m.•3 views

Drupal Enterprise MFA - TFA for Drupal 安全漏洞

Drupal Enterprise MFA - TFA for Drupal is a module plugin in the Drupal content management system from the Drupal community. A security vulnerability exists in Drupal Enterprise MFA - TFA for Drupal versions prior to 4.8.0, prior to 5.2.1, prior to 5.0., and prior to 5.1. that stems from an...

4.8CVSS6.8AI score0.00126EPSS

Exploits0References1

Patchstack•added 2025/06/25 12:0 a.m.•4 views

Drupal Enterprise MFA - TFA for Drupal module < 4.8.0,5.2.0,5.0,5.1 - Unauthenticated Broken Access Control vulnerability

Drupal Enterprise MFA - TFA for Drupal module 4.8.0,5.2.0,5.0,5.1 - Unauthenticated Broken Access Control vulnerability discovered by Conrad Lara cmlara in WordPress Module Enterprise MFA - TFA for Drupal versions 4.8.0,5.2.0,5.0,5.1...

4.8CVSS7AI score0.00126EPSS

Exploits0References1Affected Software1

RedhatCVE•added 2025/05/16 5:12 p.m.•15 views

CVE-2025-47706

Authentication Bypass by Capture-replay vulnerability in Drupal Enterprise MFA - TFA for Drupal allows Remote Services with Stolen Credentials.This issue affects Enterprise MFA - TFA for Drupal: from 0.0.0 before 4.7.0, from 5.0.0 before 5.2.0...

4.8CVSS7.2AI score0.00126EPSS

Exploits0References3

RedhatCVE•added 2025/05/16 5:11 p.m.•13 views

CVE-2025-47708

Cross-Site Request Forgery CSRF vulnerability in Drupal Enterprise MFA - TFA for Drupal allows Cross Site Request Forgery.This issue affects Enterprise MFA - TFA for Drupal: from 0.0.0 before 4.7.0, from 5.0.0 before 5.2.0...

8.8CVSS7.1AI score0.00102EPSS

Exploits0References3

RedhatCVE•added 2025/05/16 5:11 p.m.•12 views

CVE-2025-47707

7.5CVSS7AI score0.00197EPSS

Exploits0References3

RedhatCVE•added 2025/05/16 5:11 p.m.•14 views

CVE-2025-47710

7.4CVSS7.1AI score0.00148EPSS

Exploits0References3

OSV•added 2025/05/14 5:15 p.m.•3 views

CVE-2025-47710

7.4CVSS5.8AI score0.00148EPSS

Exploits0References1

NVD•added 2025/05/14 5:15 p.m.•9 views

CVE-2025-47708

8.8CVSS0.00102EPSS

Exploits0References1

OSV•added 2025/05/14 5:15 p.m.•2 views

CVE-2025-47709

Missing Authorization vulnerability in Drupal Enterprise MFA - TFA for Drupal allows Forceful Browsing.This issue affects Enterprise MFA - TFA for Drupal: from 0.0.0 before 4.7.0, from 5.0.0 before 5.2.0...

6.5CVSS5.8AI score

Exploits0References1

NVD•added 2025/05/14 5:15 p.m.•15 views

CVE-2025-47710

7.4CVSS0.00148EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by