High severity7.5NVD Advisory· Published Jan 19, 2018· Updated Jun 17, 2026
CVE-2015-6926
CVE-2015-6926
Description
The OpenID Single Sign-On authentication functionality in OXID eShop before 4.5.0 allows remote attackers to impersonate users via the email address in a crafted authentication token.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
oxid-esales/oxideshop-cePackagist | < 4.5.0 | 4.5.0 |
Affected products
1Patches
Vulnerability mechanics
References
4- bugs.oxid-esales.com/view.phpnvdIssue TrackingVendor AdvisoryWEB
- github.com/advisories/GHSA-4c39-hj99-5h2rghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2015-6926ghsaADVISORY
- oxidforge.org/en/oxid-security-bulletin-2015-001.htmlnvdMitigationVendor AdvisoryWEB
News mentions
0No linked articles in our index yet.