CVE-2015-3234

Currently unrated 🤨

Key Information

Vendor
Drupal
Status
Drupal
Vendor
CVE Published:
22 June 2015

Summary

The OpenID module in Drupal 6.x before 6.36 and 7.x before 7.38 allows remote attackers to log into other users' accounts by leveraging an OpenID identity from certain providers, as demonstrated by the Verisign, LiveJournal, and StackExchange providers.

Timeline

  • Vulnerability published.

  • Vulnerability Reserved.

Collectors

NVD DatabaseMitre Database
.