Brian Muller

1 exploit Active since Jul 2012
CVE-2012-2760 EXPLOITDB text WRITEUP
mod_auth_openid <0.7 - Info Disclosure
mod_auth_openid before 0.7 for Apache uses world-readable permissions for /tmp/mod_auth_openid.db, which allows local users to obtain session ids.