Chad Phillips: >> Logintoboggan Security Vulnerabilities
Unspecified vulnerability in LoginToboggan 6.x-1.x before 6.x-1.5, a module for Drupal, when "Allow users to login using their e-mail address" is enabled, allows remote blocked users to bypass intended access restrictions via unspecified vectors.
CVSS Score
6.8
EPSS Score
0.005
Published
2009-07-01