Vulnerability to bypass two-factor authentication with remember-me option

PKSA-fzh9-hxqm-sgs7

Affected package: scheb/two-factor-bundle

Affected version: >=4.0.0,<4.11.0|>=3.0.0,<3.26.0|>=0.0.0,<3.0.0

Reported by:
FriendsOfPHP/security-advisories