Описание
Authentication Bypass by Capture-replay vulnerability in Drupal One Time Password allows Remote Services with Stolen Credentials.This issue affects One Time Password: from 0.0.0 before 1.3.0.
Ссылки
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 8.x-1.0 (включая) до 8.x-1.3 (исключая)
cpe:2.3:a:one_time_password_project:one_time_password:*:*:*:*:*:drupal:*:*
EPSS
Процентиль: 9%
0.00034
Низкий
4.8 Medium
CVSS3
Дефекты
CWE-294
Связанные уязвимости
CVSS3: 4.8
github
9 месяцев назад
Authentication Bypass by Capture-replay vulnerability in Drupal One Time Password allows Remote Services with Stolen Credentials.This issue affects One Time Password: from 0.0.0 before 1.3.0.
EPSS
Процентиль: 9%
0.00034
Низкий
4.8 Medium
CVSS3
Дефекты
CWE-294