VYPR

Packagist (Composer) package

openid/php-openid

pkg:composer/openid/php-openid

Vulnerabilities (1)

  • CVE-2013-4701Aug 21, 2013
    affected < 2.3.0fixed 2.3.0

    Auth/Yadis/XML.php in PHP OpenID Library 2.2.2 and earlier allows remote attackers to read arbitrary files, send HTTP requests to intranet servers, or cause a denial of service (CPU and memory consumption) via XRDS data containing an external entity declaration in conjunction wit