October 2014

You are browsing the site archives for October 2014.

Covert Redirect Vulnerability Related to OAuth 2.0 and OpenID   A serious Covert Redirect vulnerability related to OAuth 2.0 and OpenID has been found. Almost all major providers of OAuth 2.0 and OpenID are affected, such as Facebook, Google, Yahoo, LinkedIn, Microsoft, Paypal, GitHub, QQ, Taobao, Weibo, VK, Mail.Ru, Sohu, etc.     It could …

Continue reading Covert Redirect Vulnerability Related to OAuth 2.0 and OpenID