{"id":"DRUPAL-CONTRIB-2020-034","details":"This module enables you login into any OAuth 2.0 compliant application using Drupal credentials.\n\nThe 8.x branch of the module is vulnerable to SQL injection.","modified":"2025-12-10T23:30:14.052707Z","published":"2020-10-14T14:38:16Z","references":[{"type":"WEB","url":"https://www.drupal.org/sa-contrib-2020-034"}],"affected":[{"package":{"name":"drupal/oauth_server_sso","ecosystem":"Packagist:https://packages.drupal.org/8","purl":"pkg:composer/drupal/oauth_server_sso"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"1.0.0"},{"last_affected":"1.0.0"}],"database_specific":{"constraint":"1.0.0"}}],"database_specific":{"source":"https://github.com/DrupalSecurityTeam/drupal-advisory-database/blob/main/advisories/oauth_server_sso/DRUPAL-CONTRIB-2020-034.json","affected_versions":"1.0.0"}}],"schema_version":"1.7.3","credits":[{"name":"Jakub Piasecki","contact":["https://www.drupal.org/user/1532844"]}]}