DRUPAL-CONTRIB-2020-034

See a problem?
Import Source
https://github.com/DrupalSecurityTeam/drupal-advisory-database/blob/main/advisories/oauth_server_sso/DRUPAL-CONTRIB-2020-034.json
JSON Data
https://api.osv.dev/v1/vulns/DRUPAL-CONTRIB-2020-034
Published
2020-10-14T14:38:16Z
Modified
2025-12-10T23:30:14.052707Z
Summary
[none]
Details

This module enables you login into any OAuth 2.0 compliant application using Drupal credentials.

The 8.x branch of the module is vulnerable to SQL injection.

References
Credits

Affected packages

Packagist:https://packages.drupal.org/8 / drupal/oauth_server_sso

Package

Name
drupal/oauth_server_sso
Purl
pkg:composer/drupal/oauth_server_sso

Affected ranges

Type
ECOSYSTEM
Events
Introduced
1.0.0
Last affected
1.0.0
Database specific 
{
    "constraint": "1.0.0"
}

Database specific

affected_versions 
"1.0.0"
source 
"https://github.com/DrupalSecurityTeam/drupal-advisory-database/blob/main/advisories/oauth_server_sso/DRUPAL-CONTRIB-2020-034.json"