Miniorange: >> Miniorange 2fa >> 5.2.0 Security Vulnerabilities
Authentication Bypass Using an Alternate Path or Channel vulnerability in Drupal Enterprise MFA - TFA for Drupal allows Authentication Bypass.This issue affects Enterprise MFA - TFA for Drupal: from 0.0.0 before 4.8.0, from 5.2.0 before 5.2.1, from 0.0.0 before 5.0.*, from 0.0.0 before 5.1.*.
CVSS Score
4.8
EPSS Score
0.001
Published
2025-06-26