Secunia Security Advisory – Some vulnerabilities have been reported in the OpenID module for Drupal, which can be exploited by malicious users to hijack accounts and by malicious people to conduct cross-site request forgery attacks.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/81407/sa36786.txt
Source: https://packetstormsecurity.com/files/81407/Secunia-Security-Advisory-36786.html