Google Authenticator Login Project » Ga Login : Security Vulnerabilities, CVEs, CVSS score >= 6
The Google Authenticator login (ga_login) module 7.x before 7.x-1.3 for Drupal, when multi-factor authentication is enabled, allows remote attackers to bypass authentication for accounts without an associated Google Authenticator token by logging in with the username.
Max CVSS
6.8
EPSS Score
0.32%
Published
2013-03-27
Updated
2013-04-05
1 vulnerabilities found