CVE-2025-12760 | Email TFA up to 2.0.5 on Drupal authentication bypass (sa-contrib-2025-115)

A vulnerability was found in Email TFA up to 2.0.5 on Drupal. It has been rated as critical. This affects an unknown function. This manipulation causes authentication bypass using alternate channel.

This vulnerability is tracked as CVE-2025-12760. The attack is possible to be carried out remotely. No exploit exists.

Upgrading the affected component is advised.VulDB Recent EntriesRead More