Vulnerabilities > Chad Phillips > Logintoboggan > 6.x.1.4
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-07-01 | CVE-2009-2291 | Permissions, Privileges, and Access Controls vulnerability in Chad Phillips Logintoboggan Unspecified vulnerability in LoginToboggan 6.x-1.x before 6.x-1.5, a module for Drupal, when "Allow users to login using their e-mail address" is enabled, allows remote blocked users to bypass intended access restrictions via unspecified vectors. | 6.8 |