Description

The OpenID module in Drupal 6.x before 6.30 and 7.x before 7.26 allows remote OpenID users to authenticate as other users via unspecified vectors.

Remediation

References

CVE-2014-1475

Related Vulnerabilities

WordPress Plugin Calculated Fields Form Cross-Site Scripting (1.0.81)

WordPress Plugin Annonces 'abspath' Parameter Remote File Include (1.2.0.0)

MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-2242)

WordPress Plugin Acumbamail Information Disclosure (1.0.4)

WordPress 5.7.x Multiple Prototype Pollution Vulnerabilities (5.7 - 5.7.5)

Severity

High

Classification

CVE-2014-1475

Tags

Missing Update Known Vulnerabilities