Vulnerabilities > Login Security Project

DATE CVE VULNERABILITY TITLE RISK
2020-01-30 CVE-2013-2198 Incorrect Authorization vulnerability in Login Security Project Login Security
The Login Security module 6.x-1.x before 6.x-1.3 and 7.x-1.x before 7.x-1.3 for Drupal allows attackers to bypass intended restrictions via a crafted username.
network
low complexity
login-security-project CWE-863
7.5
2013-08-28 CVE-2013-2197 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Login Security Project Login Security
The Login Security module 6.x-1.x before 6.x-1.3 and 7.x-1.x before 7.x-1.3 for Drupal, when using the login delay option, allows remote attackers to cause a denial of service (CPU consumption) via a large number of failed login attempts.
4.3