Security News > 2015 > June > Drupal Fixes Critical OpenID Bug (Threatpost)

Drupal Fixes Critical OpenID Bug (Threatpost)
2015-06-18 13:22

Drupal has patched several vulnerabilities in versions 6 and 7 of the content-management system, including a critical bug that enables an attacker to hijack administrators’ accounts and take arbitrary actions on target sites. That vulnerability lies in the OpenID module in Drupal that enables users to authenticate themselves using the OpenID protocol. The protocol is based […]


News URL

http://threatpost.com/drupal-fixes-critical-openid-bug/113379

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Drupal 15 0 66 45 14 125