Born05 Two-factor Authentication — known CVE vulnerabilities
Every CVE whose affected-product data names Born05 Two-factor Authentication, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2024-5658 — CVSS 4.8 (medium): The CraftCMS plugin Two-Factor Authentication through 3.3.3 allows reuse of TOTP tokens multiple times within the validity period.
CVE-2024-5657 — CVSS 3.7 (low): The CraftCMS plugin Two-Factor Authentication in versions 3.3.1, 3.3.2 and 3.3.3 discloses the password hash of the currently authenticated…