CVE-2025-13982

Severity CVSS v4.0:

Pending analysis

Type:

CWE-352 Cross-Site Request Forgery (CSRF)

Publication date:

28/01/2026

Last modified:

28/01/2026

Description

Cross-Site Request Forgery (CSRF) vulnerability in Drupal Login Time Restriction allows Cross Site Request Forgery.This issue affects Login Time Restriction: from 0.0.0 before 1.0.3.

Impact

References to Advisories, Solutions, and Tools

https://www.drupal.org/sa-contrib-2025-120