Known Vulnerabilities for products from Openid
Listed below are 7 of the newest known vulnerabilities associated with the vendor "Openid".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-59096 json | Not Provided | 2026-07-02 | 2026-07-02 | |
| CVE-2026-53661 json | Not Provided | 2026-06-11 | 2026-06-11 | |
| CVE-2026-49757 json | Not Provided | 2026-06-15 | 2026-06-15 | |
| CVE-2026-44681 json | Not Provided | 2026-05-27 | 2026-06-02 | |
| CVE-2026-44394 json | Not Provided | 2026-05-28 | 2026-05-28 | |
| CVE-2026-44087 json | Not Provided | 2026-06-19 | 2026-06-22 | |
| CVE-2026-42604 json | Not Provided | 2026-06-12 | 2026-06-15 | |
| CVE-2026-42206 json | Not Provided | 2026-05-08 | 2026-05-08 | |
| CVE-2026-41479 json | Not Provided | 2026-06-22 | 2026-06-23 | |
| CVE-2026-41425 json | Not Provided | 2026-04-24 | 2026-04-27 | |
| CVE-2019-11027 json | Ruby OpenID (aka ruby-openid) through 2.8.0 has a remotely exploitable flaw. This library is used by Rails web applications t... | 9.8 - CRITICAL | 2019-06-10 | 2019-06-14 |
| CVE-2019-9837 json | Doorkeeper::OpenidConnect (aka the OpenID Connect extension for Doorkeeper) 1.4.x and 1.5.x before 1.5.4 has an open redirect... | 6.1 - MEDIUM | 2019-03-21 | 2019-03-27 |
| CVE-2011-4314 json | message/ax/AxMessage.java in OpenID4Java before 0.9.6 final, as used in JBoss Enterprise Application Platform 5.1 before 5.1.... | Not Provided | 2012-01-27 | 2026-04-29 |
| CVE-2008-3280 json | It was found that various OpenID Providers (OPs) had TLS Server Certificates that used weak keys, as a result of the Debian P... | 5.9 - MEDIUM | 2021-05-21 | 2021-05-27 |
| CVE-2007-5173 json | PHP remote file inclusion vulnerability in includes/openid/Auth/OpenID/BBStore.php in phpBB Openid 0.2.0 allows remote attack... | Not Provided | 2007-10-03 | 2026-04-23 |
| CVE-2007-1652 json | OpenID allows remote attackers to forcibly log a user into an OpenID enabled site, divulge the user's personal information to... | Not Provided | 2007-03-24 | 2026-04-23 |
| CVE-2007-1651 json | Cross-site request forgery (CSRF) vulnerability in OpenID allows remote attackers to restore the login session of a user on a... | Not Provided | 2007-03-24 | 2026-04-23 |
Known software with vulnerabilities from Openid
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Openid | Openid4java | 0.9.2 |
| Application | Openid | Openid Connect | 1.0.0 |
| Application | Openid | Ruby-openid | 2.2.0 |