MidnightBSD

Advisories for lightopenid_project

CVE-2019-11066 HIGH

openid.php in LightOpenID through 1.3.1 allows SSRF via a crafted OpenID 2.0 assertion request using the HTTP GET method.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-918,

Products Affected

Vendor Product Version
lightopenid_project lightopenid *