Serious security flaw in OAuth, OpenID discovered | ICT Security-Sécurité PC et Internet | Scoop.it
From www.cnet.com - May 6, 2014 10:38 AM

Attackers can use the "Covert Redirect" vulnerability in both open-source log-in systems to steal your data and redirect you to unsafe sites.