Search by 
scheb/two-factor-bundle Security Advisories for v3.8.0 (1)
-
Vulnerability to bypass two-factor authentication with remember-me option
Affected version: >=4.0.0,<4.11.0|>=3.0.0,<3.26.0|>=0.0.0,<3.0.0
Reported by:
FriendsOfPHP/security-advisories