We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.
Please see our statement on Data Privacy.
Insufficient Session Expiration vulnerability in Drupal Persistent Login allows Forceful Browsing.This issue affects Persistent Login: from 0.0.0 before 1.8.0, from 2.0.* before 2.2.2.
Reserved 2025-01-09 | Published 2025-01-09 | Updated 2025-01-10 | Assigner drupalCWE-613 Insufficient Session Expiration
Geoff Appleby
Geoff Appleby
Greg Knaddison
Juraj Nemec
Drew Webber
www.drupal.org/sa-contrib-2024-044
Support options