The Login Security module 6.x-1.x prior to 6.x-1.3 and 7.x-1.x prior to 7.x-1.3 for Drupal, when using the login delay option, allows remote malicious users to cause a denial of service (CPU consumption) via a large number of failed login attempts.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
login_security_project login_security 7.x-1.0 |
||
login_security_project login_security 7.x-1.1 |
||
login_security_project login_security 7.x-1.2 |
||
login_security_project login_security 6.x-1.x |
||
login_security_project login_security 6.x-1.0 |
||
login_security_project login_security 6.x-1.1 |
||
login_security_project login_security 6.x-1.3 |
||
login_security_project login_security 6.x-1.2 |
||
login_security_project login_security 7.x-1.x |