CVE-2017-10805
The CVE describes an OAuth token access-control flaw in Odoo: in Odoo 8.0, Odoo Community Edition 9.0 and 10.0, and Odoo Enterprise Edition 9.0 and 10.0, an incorrect access-control on OAuth tokens in the OAuth module allows remote authenticated users to hijack OAuth sessions of other users. Affe...