Two-factor_authentication_project Two-factor_authentication
4 CVEs affecting Two-factor_authentication_project Two-factor_authentication. Latest disclosed: 2025-07-08. Critical: 2, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-13279 | Critical | 9.8 | 2025-01-09 | Session Fixation vulnerability in Drupal Two-factor Authentication (TFA) allows Session Fixation.This issue affects Two-factor Authentication (TFA): from 0.0.0… |
CVE-2024-13239 | Critical | 9.8 | 2025-01-09 | Weak Authentication vulnerability in Drupal Two-factor Authentication (TFA) allows Authentication Abuse.This issue affects Two-factor Authentication (TFA): fro… |
CVE-2025-31694 | High | 8.1 | 2025-03-31 | Incorrect Authorization vulnerability in Drupal Two-factor Authentication (TFA) allows Forceful Browsing.This issue affects Two-factor Authentication (TFA): fr… |
CVE-2025-7030 | Medium | 6.5 | 2025-07-08 | Privilege Defined With Unsafe Actions vulnerability in Drupal Two-factor Authentication (TFA) allows Exploiting Incorrectly Configured Access Control Security… |