Packagist (Composer) package
drupal/tfa
pkg:composer/drupal/tfa
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2025-31694 | — | < 1.10.0 | 1.10.0 | Mar 31, 2025 | Incorrect Authorization vulnerability in Drupal Two-factor Authentication (TFA) allows Forceful Browsing.This issue affects Two-factor Authentication (TFA): from 0.0.0 before 1.10.0. |
- CVE-2025-31694Mar 31, 2025affected < 1.10.0fixed 1.10.0
Incorrect Authorization vulnerability in Drupal Two-factor Authentication (TFA) allows Forceful Browsing.This issue affects Two-factor Authentication (TFA): from 0.0.0 before 1.10.0.