Lucene search
K

31 matches found

EUVD
EUVD
added 3 days ago5 views

EUVD-2026-43074

Improper Restriction of Excessive Authentication Attempts vulnerability in Drupal Login Disable allows Brute Force. This issue affects Login Disable versions: from 0.0.0 to 2.1.4...

6.1AI score0.00213EPSS
Exploits0References2
NVD
NVD
added 4 days ago4 views

CVE-2026-15079

Improper Restriction of Excessive Authentication Attempts vulnerability in Drupal Login Disable allows Brute Force. This issue affects Login Disable versions: from 0.0.0 to 2.1.4...

5.4CVSS0.00213EPSS
Exploits0References1
CVE
CVE
added 4 days ago6 views

CVE-2026-15079

The CVE-2026-15079 entry concerns the Drupal Login Disable module, affected on versions 0.0.0 through 2.1.4. The underlying issue is an improper restriction of excessive authentication attempts, which can enable brute-force login attempts to bypass protection. The attack surface is the Drupal log...

5.4CVSS6.1AI score0.00213EPSS
Exploits0References1
Cvelist
Cvelist
added 4 days ago31 views

CVE-2026-15079 Login Disable - Moderately critical - Access bypass - SA-CONTRIB-2026-070

Improper Restriction of Excessive Authentication Attempts vulnerability in Drupal Login Disable allows Brute Force. This issue affects Login Disable versions: from 0.0.0 to 2.1.4...

0.00213EPSS
Exploits0References1
OSV
OSV
added 4 days ago4 views

CVE-2026-15079 Login Disable - Moderately critical - Access bypass - SA-CONTRIB-2026-070

Improper Restriction of Excessive Authentication Attempts vulnerability in Drupal Login Disable allows Brute Force. This issue affects Login Disable versions: from 0.0.0 to 2.1.4...

5.4CVSS6.1AI score0.00213EPSS
Exploits0References5
EUVD
EUVD
added 2026/03/25 6:31 p.m.7 views

EUVD-2026-15423

Authentication Bypass Using an Alternate Path or Channel vulnerability in Drupal Login Disable allows Functionality Bypass.This issue affects Login Disable: from 0.0.0 before 2.1.3...

7.3CVSS5.8AI score0.00202EPSS
Exploits0References2
NVD
NVD
added 2026/03/25 4:16 p.m.10 views

CVE-2026-1917

Authentication Bypass Using an Alternate Path or Channel vulnerability in Drupal Login Disable allows Functionality Bypass.This issue affects Login Disable: from 0.0.0 before 2.1.3...

4.3CVSS0.00202EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/25 3:20 p.m.5 views

CVE-2026-1917 Login Disable - Less critical - Access bypass - SA-CONTRIB-2026-008

Authentication Bypass Using an Alternate Path or Channel vulnerability in Drupal Login Disable allows Functionality Bypass.This issue affects Login Disable: from 0.0.0 before 2.1.3...

5.8AI score0.00202EPSS
Exploits0References1
CVE
CVE
added 2026/03/25 3:20 p.m.18 views

CVE-2026-1917

The CVE concerns Drupal Login Disable allowing an authentication bypass via an alternate path/channel. Affected software is the Login Disable module for Drupal, with versions prior to 2.1.3 vulnerable. The underlying issue is a functionality bypass when using alternative paths or channels to auth...

4.3CVSS5.8AI score0.00202EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/03/25 3:20 p.m.24 views

CVE-2026-1917 Login Disable - Less critical - Access bypass - SA-CONTRIB-2026-008

Authentication Bypass Using an Alternate Path or Channel vulnerability in Drupal Login Disable allows Functionality Bypass.This issue affects Login Disable: from 0.0.0 before 2.1.3...

0.00202EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/03/25 12:0 a.m.10 views

Drupal Login Disable 安全漏洞

Drupal Login Disable is an extension module for the Drupal content management system designed to restrict or disable user login functionality. Versions of Drupal Login Disable prior to 2.1.3 contained a security vulnerability; this vulnerability stemmed from using alternative paths or channels to...

4.3CVSS5.8AI score0.00202EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/04 12:0 a.m.14 views

PT-2026-6544

The Login Disable module prevents users from logging in to your Drupal site unless they know the access key to add to the end of the login form page. default: If they provide the access key and have a specific role they can log in. The module does not check for the access key when using the HTTP...

5.4AI score0.00202EPSS
Exploits0References3
Drupal
Drupal
added 2026/02/04 12:0 a.m.13 views

Login Disable - Less critical - Access bypass - SA-CONTRIB-2026-008

The Login Disable module prevents users from logging in to your Drupal site unless they know the access key to add to the end of the login form page. default: http://example.com/user/login?admin If they provide the access key and have a specific role they can log in. The module does not check for...

4.3CVSS5.5AI score0.00202EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-51521

Malicious code in bioql PyPI...

5.4CVSS6.6AI score0.00251EPSS
Exploits0References1
NVD
NVD
added 2025/01/09 9:15 p.m.8 views

CVE-2024-13309

Improper Authentication vulnerability in Drupal Login Disable allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Login Disable: from 2.0.0 before 2.1.1...

5.4CVSS0.00251EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/09 8:27 p.m.18 views

CVE-2024-13309 Login Disable - Critical - Access bypass - SA-CONTRIB-2024-073

Improper Authentication vulnerability in Drupal Login Disable allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Login Disable: from 2.0.0 before 2.1.1...

0.00251EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/09 8:27 p.m.5 views

CVE-2024-13309 Login Disable - Critical - Access bypass - SA-CONTRIB-2024-073

Improper Authentication vulnerability in Drupal Login Disable allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Login Disable: from 2.0.0 before 2.1.1...

5.6AI score0.00251EPSS
Exploits0References1
OSV
OSV
added 2025/01/09 8:27 p.m.3 views

CVE-2024-13309 Login Disable - Critical - Access bypass - SA-CONTRIB-2024-073

Improper Authentication vulnerability in Drupal Login Disable allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Login Disable: from 2.0.0 before 2.1.1...

5.4CVSS7.1AI score0.00251EPSS
Exploits0References5
CVE
CVE
added 2025/01/09 8:27 p.m.56 views

CVE-2024-13309

CVE-2024-13309 affects the Drupal Login Disable module (versions 2.0.0–2.1.1). The root cause is improper authentication/incorrect access control, enabling a bypass of login protection intended by the module. The vulnerability could allow an attacker to log in or bypass restrictions for existing ...

5.4CVSS7.2AI score0.00251EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/01/09 12:0 a.m.3 views

Drupal 安全漏洞

Drupal is an open source content management system developed in the PHP language by the Drupal community. A security vulnerability exists in Drupal Login Disable versions 2.0.0 through 2.1.1 that stems from an incorrect authentication vulnerability...

5.4CVSS7AI score0.00251EPSS
Exploits0References2
Rows per page
Query Builder