Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
authenticator vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2012-6140
pam_google_authenticator.c in the PAM module in Google Authenticator prior to 1.0 requires user-readable permissions for the secret file, which allows local users to bypass intended access restrictions and discover a shared secret via standard filesystem operations, a different v...
Google Authenticator 0.86
Google Authenticator
Google Authenticator 0.87
4.3
CVSSv3
CVE-2022-3994
The Authenticator WordPress plugin prior to 1.3.1 does not prevent subscribers from updating a site's feed access token, which may deny other users access to the functionality in certain configurations.
Authenticator Project Authenticator
9.8
CVSSv3
CVE-2013-10013
A vulnerability was found in Bricco Authenticator Plugin. It has been declared as critical. This vulnerability affects the function authenticate/compare of the file src/java/talentum/escenic/plugins/authenticator/authenticators/DBAuthenticator.java. The manipulation leads to sql ...
Authenticator Plugin Project Authenticator Plugin
NA
CVE-2013-4177
The Google Authenticator login module 6.x-1.x prior to 6.x-1.2 and 7.x-1.x prior to 7.x-1.4 for Drupal does not properly identify user account names, which might allow remote malicious users to bypass the two-factor authentication requirement via unspecified vectors.
Google Authenticator Login Project Ga Login 6.x-1.0
Google Authenticator Login Project Ga Login 6.x-1.1
Google Authenticator Login Project Ga Login 6.x-1.x
Google Authenticator Login Project Ga Login 7.x-1.0
Google Authenticator Login Project Ga Login 7.x-1.1
Google Authenticator Login Project Ga Login 7.x-1.2
Google Authenticator Login Project Ga Login 7.x-1.3
NA
CVE-2013-4178
The Google Authenticator login module 6.x-1.x prior to 6.x-1.2 and 7.x-1.x prior to 7.x-1.4 for Drupal allows remote malicious users to obtain access by replaying the username, password, and one-time password (OTP).
Google Authenticator Login Project Ga Login 6.x-1.0
Google Authenticator Login Project Ga Login 6.x-1.1
Google Authenticator Login Project Ga Login 6.x-1.x
Google Authenticator Login Project Ga Login 7.x-1.0
Google Authenticator Login Project Ga Login 7.x-1.1
Google Authenticator Login Project Ga Login 7.x-1.2
Google Authenticator Login Project Ga Login 7.x-1.3
NA
CVE-2013-0258
The Google Authenticator login (ga_login) module 7.x prior to 7.x-1.3 for Drupal, when multi-factor authentication is enabled, allows remote malicious users to bypass authentication for accounts without an associated Google Authenticator token by logging in with the username.
Google Authenticator Login Project Ga Login 7.x-1.0
Google Authenticator Login Project Ga Login 7.x-1.1
Google Authenticator Login Project Ga Login 7.x-1.2
7.5
CVSSv3
CVE-2022-35290
Under certain conditions SAP Authenticator for Android allows an malicious user to access information which would otherwise be restricted.
Sap Authenticator
7.1
CVSSv3
CVE-2024-21390
Microsoft Authenticator Elevation of Privilege Vulnerability
Microsoft Authenticator
1 Article
8.1
CVSSv3
CVE-2022-0229
The miniOrange's Google Authenticator WordPress plugin prior to 5.5 does not have proper authorisation and CSRF checks when handling the reconfigureMethod, and does not validate the parameters passed to it properly. As a result, unauthenticated users could delete arbitrary o...
Miniorange Google Authenticator
4.8
CVSSv3
CVE-2022-1321
The miniOrange's Google Authenticator WordPress plugin prior to 5.5.6 does not sanitise and escape some of its settings, leading to malicious users with administrator privileges to store malicious Javascript code leading to Cross-Site Scripting attacks when unfiltered_html i...
Miniorange Google Authenticator
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
logic flaw
CVE-2024-23692
CVE-2024-26229
CVE-2024-35255
CVE-2024-5835
CVE-2024-5837
XML external entity
dos
CVE-2024-5813
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »