Persistent Login

1 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest

CVE-2024-13280 PHP CRITICAL PATCH This Week

Insufficient Session Expiration vulnerability in Drupal Persistent Login allows Forceful Browsing.0.0 before 1.8.0, from 2.0.* before 2.2.2. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Persistent Login Drupal

NVD

CVSS 3.1

9.8

EPSS

0.2%

CVE-2024-13280 PHP

EPSS 0% CVSS 9.8

CRITICAL PATCH This Week

Insufficient Session Expiration vulnerability in Drupal Persistent Login allows Forceful Browsing.0.0 before 1.8.0, from 2.0.* before 2.2.2. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Persistent Login Drupal

NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy