Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Drupal Improper Input Validation Vulnerability - CVE-2015-3234 - Vulnerability Database
Drupal

Drupal Improper Input Validation Vulnerability - CVE-2015-3234

Medium
Reference: CVE-2015-3234
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2015-3234
Title: Drupal Improper Input Validation Vulnerability
Overview:

The OpenID module in Drupal 6.x before 6.36 and 7.x before 7.38 allows remote attackers to log into other users39 accounts by leveraging an OpenID identity from certain providers as demonstrated by the Verisign LiveJournal and StackExchange providers.