MiracleLinux 3 : drupal-6.30-1.AXS3 (AXSA:2014-234:01)

The remote MiracleLinux 3 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2014-234:01 advisory. Drupal is a free software package that allows an individual or a community of users to easily publish, manage and organize a wide variety of content ...

CVE-2008-6836

Cross-site request forgery CSRF vulnerability in OpenID 5.x before 5x.-1.2, a module for Drupal, allows remote attackers to hijack the authentication of unspecified victims to delete OpenID identities via unknown vectors...

EUVD-2007-1646

Malware in sbrugna...

EUVD-2010-0317

Malware in sbrugna...

EUVD-2019-10660

Malware in sbrugna...

EUVD-2008-6796

Malware in sbrugna...

EUVD-2007-1645

Malware in sbrugna...

EUVD-2009-5038

Malware in sbrugna...

EUVD-2008-0181

Malware in sbrugna...

CVE-2025-8908

CVE-2025-8908 affects Lingdang CRM up to version 8.6.5.4. A SQL injection vulnerability exists in the file crm/WeiXinApp/yunzhijia/event.php via manipulation of the openid parameter, allowing remote exploitation. Public exploits have been disclosed. Upgrading to 8.6.5 or later patches all SQL inj...

Linux Distros Unpatched Vulnerability : CVE-2015-3234

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The OpenID module in Drupal 6.x before 6.36 and 7.x before 7.38 allows remote attackers to log into other users' accounts by leveraging an OpenID identity from...

CVE-2025-27675

Vasion Print formerly PrinterLogic before Virtual Appliance Host 22.0.843 Application 20.0.1923 allows Vulnerable OpenID Implementation V-2023-004...

PT-2023-26556 · Unknown · Matrix-Appservice-Bridge

Name of the Vulnerable Software and Affected Versions: matrix-appservice-bridge versions 4.0.0 through 8.1.1 matrix-appservice-bridge versions 9.0.0 Description: A malicious Matrix server can use a foreign user's MXID in an OpenID exchange, allowing a bad actor to impersonate users when using the...

CVE-2014-2048

The useropenid app in ownCloud Server before 5.0.15 allows remote attackers to obtain access by leveraging an insecure OpenID implementation...

CVE-2016-5731

Cross-site scripting XSS vulnerability in examples/openid.php in phpMyAdmin 4.0.x before 4.0.10.16, 4.4.x before 4.4.15.7, and 4.6.x before 4.6.3 allows remote attackers to inject arbitrary web script or HTML via vectors involving an OpenID error message...