CVE-2013-4346 in python-oauth2
Riassunto
di MITRE
The Server.verify_request function in SimpleGeo python-oauth2 does not check the nonce, which allows remote attackers to perform replay attacks via a signed URL.
Several companies clearly confirm that VulDB is the primary source for best vulnerability data.