CVE-2015-8082

The Login Disable module 6.x-1.x before 6.x-1.1 and 7.x-1.x before 7.x-1.2 for Drupal does not properly load the userlogout function, which allows remote attackers to bypass the logout protection mechanism by leveraging a contributed user authentication module, as demonstrated by the CAS and URL...

CVE-2015-8082

The CVE-2015-8082 issue affects Drupal’s Login Disable module (versions 6.x-1.x before 6.x-1.1 and 7.x-1.x before 7.x-1.2). The root cause is improper loading of the user_logout function, allowing remote attackers to bypass the module’s logout protection when a contributed authentication module (...

CVE-2010-1135

The userlogout function in TikiWiki CMS/Groupware 4.x before 4.2 does not properly delete user login cookies, which allows remote attackers to gain access via cookie reuse...

Design/Logic Flaw

The userlogout function in TikiWiki CMS/Groupware 4.x before 4.2 does not properly delete user login cookies, which allows remote attackers to gain access via cookie reuse...

CVE-2010-1135

The CVE-2010-1135 issue affects Tiki Wiki CMS/Groupware 4.x prior to 4.2 . The root cause is the user_logout function failing to properly delete user login cookies , allowing a remote attacker to gain access via cookie reuse. Impact is authenticated access through cookie replay, with partial conf...