In this paper, they authors present an implementation vulnerability found in some popular social login identity providers (including LinkedIn, Amazon and Mydigipass.com) and show how this vulnerability allowed them to impersonate users of third-party websites.
You can download it from the following link: https://packetstormsecurity.com/files/download/129389/spoofedmesocialloginattack.pdf
Source: https://packetstormsecurity.com/files/129389/SpoofedMe-Intruding-Accounts-Using-Social-Login-Providers.html