Drupal Login Disable Improper Authentication Vulnerability Allowing Access Control Bypass

Vulnerability

A vulnerability has been identified in the Drupal Login Disable module, versions 2.0.0 prior to 2.1.1, allowing for improper authentication. This issue arises from incorrectly configured access control security levels, which could be exploited to bypass intended restrictions.

Impact

Exploitation of this vulnerability could lead to unauthorized access or actions by allowing users to bypass authentication controls, potentially accessing restricted areas or functions of the site.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

1.0

impact

5.0

exploitability

7.6

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.0

impact

5.0

exploitability

7.6

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Drupal Login Disable Improper Authentication Vulnerability Allowing Access Control Bypass

Vulnerability

Impact

Affected Products

Drupal Login Disable

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating