Filtered by vendor Born05 Subscriptions
Filtered by product Two-factor Authentication Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2024-5658 1 Born05 1 Two-factor Authentication 2024-08-01 4.8 Medium
The CraftCMS plugin Two-Factor Authentication through 3.3.3 allows reuse of TOTP tokens multiple times within the validity period.
CVE-2024-5657 1 Born05 1 Two-factor Authentication 2024-08-01 3.7 Low
The CraftCMS plugin Two-Factor Authentication in versions 3.3.1, 3.3.2 and 3.3.3 discloses the password hash of the currently authenticated user after submitting a valid TOTP.