Lucene search
PRIOn knowledge basePRION:CVE-2007-1651HistoryMar 24, 2007 - 12:19 a.m.
Cross site request forgery (csrf)
2007-03-2400:19:00
PRIOn knowledge base
www.prio-n.com
1
Cross-site request forgery (CSRF) vulnerability in OpenID allows remote attackers to restore the login session of a user on an OpenID enabled site via unspecified vectors related to an arbitrary remote web site and cached tokens, after the user has signed into an OpenID server, logged into the OpenID enabled site, and then logged out of the OpenID enabled site.
References
janrain.com/blog/2007/03/22/myopenid-security-fix/
openid.net/pipermail/security/2007-March/000286.html
openid.net/pipermail/security/2007-March/000288.html
openid.net/pipermail/security/2007-March/000291.html
openid.net/pipermail/security/2007-March/000306.html
openid.net/pipermail/security/2007-March/000311.html
osvdb.org/43600
Related
cvelist
cvelist
CVE-2007-1651
2007-03-24 00:00:00
cve
cve
CVE-2007-1651
2007-03-24 00:19:00
nvd
nvd
CVE-2007-1651
2007-03-24 00:19:00
securityvulns
securityvulns