CVE-2013-4552
The CVE affects the drupalauth module for simpleSAMLphp, specifically lib/Auth/Source/External.php in versions before 1.2.2. The underlying issue enables remote attackers to authenticate as an arbitrary user by manipulating the uid value in a cookie, effectively bypassing authentication. This con...