VYPR

AES encryption module

by Drupal

CVEs (1)

  • CVE-2011-0899Feb 7, 2011
    risk 0.00cvss epss 0.01

    The AES encryption module 7.x-1.4 for Drupal leaves certain debugging code enabled in release, which records the plaintext password of the last logged-in user and allows remote attackers to gain privileges as that user.