CVE-2007-1651

Name of the Vulnerable Software and Affected Versions: OpenID (affected versions not specified)

Description: A cross-site request forgery (CSRF) issue in OpenID enables remote attackers to restore a user's login session on an OpenID-enabled site. This occurs after the user has signed into an OpenID server, logged into the OpenID-enabled site, and then logged out of the OpenID-enabled site. The attack is related to an arbitrary remote web site and cached tokens.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.