Security News ‘Covert Redirect’ vulnerability impacts OAuth 2.0, OpenID By Adam Greenberg Publish Date May 2, 2014 The Covert Redirect vulnerability could be used to, at the very least, steal credentials from users of big name websites, such as Facebook, Google and LinkedIn.