| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-3532 | OpenID Connect / OAuth client - Less critical - Access bypass - SA-CONTRIB-2026-027 | Drupal | OpenID Connect / OAuth client | - | - | 2026-03-26 20:04:03 | Deep Dive |
| CVE-2026-3531 | OpenID Connect / OAuth client - Moderately critical - Access bypass - SA-CONTRIB-2026-026 | Drupal | OpenID Connect / OAuth client | - | - | 2026-03-26 20:03:49 | Deep Dive |
| CVE-2026-3530 | OpenID Connect / OAuth client - Moderately critical - Server-side request forgery, Information disclosure - SA-CONTRIB-2026-025 | Drupal | OpenID Connect / OAuth client | - | - | 2026-03-26 20:03:40 | Deep Dive |
| CVE-2026-1824 | Infomaniak Connect for OpenID <= 1.0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode Attributes | leopoldinfomaniak | Infomaniak Connect for OpenID | Medium | 6.4 | 2026-03-07 07:22:07 | Deep Dive |
| CVE-2025-13730 | OpenID Connect Generic Client <= 3.10.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode | daggerhart | OpenID Connect Generic Client | Medium | 6.4 | 2025-12-18 09:21:30 | Deep Dive |
| CVE-2025-12466 | Simple OAuth (OAuth2) & OpenID Connect - Critical - Access bypass - SA-CONTRIB-2025-114 | Drupal | Simple OAuth (OAuth2) & OpenID Connect | - | - | 2025-10-29 23:14:51 | Deep Dive |
| CVE-2025-47884 | Jenkins plugin OpenID Connect Provider 安全漏洞 | Jenkins Project | Jenkins OpenID Connect Provider Plugin | - | - | 2025-05-14 20:35:55 | Deep Dive |
| CVE-2025-27370 | OpenID Connect Core 安全漏洞 | OpenID | OpenID Connect | Medium | 6.9 | 2025-03-03 00:00:00 | Deep Dive |
| CVE-2025-24399 | Jenkins plugin OpenId Connect Authentication 安全漏洞 | Jenkins Project | Jenkins OpenId Connect Authentication Plugin | 高危 | - | 2025-01-22 17:02:53 | Deep Dive |
| CVE-2024-13301 | OAuth & OpenID Connect Single Sign On – SSO (OAuth/OIDC Client) - Critical - Cross Site Scripting - SA-CONTRIB-2024-067 | Drupal | OAuth & OpenID Connect Single Sign On – SSO (OAuth/OIDC Client) | 中危 | - | 2025-01-09 20:23:31 | Deep Dive |
| CVE-2024-52553 | Jenkins plugin OpenId Connect Authentication 安全漏洞 | Jenkins Project | Jenkins OpenId Connect Authentication Plugin | - | - | 2024-11-13 20:53:03 | Deep Dive |
| CVE-2024-10318 | NGINX OpenID Connect Vulnerability | F5 | NGINX OpenID Connect | Medium | 5.4 | 2024-11-06 16:48:56 | Deep Dive |
| CVE-2024-47807 | Jenkins Plugin OpenId Connect Authentication 安全漏洞 | Jenkins Project | Jenkins OpenId Connect Authentication Plugin | 高危 | - | 2024-10-02 15:35:05 | Deep Dive |
| CVE-2024-47806 | Jenkins Plugin OpenId Connect Authentication 安全漏洞 | Jenkins Project | Jenkins OpenId Connect Authentication Plugin | 高危 | - | 2024-10-02 15:35:04 | Deep Dive |
| CVE-2023-50771 | Jenkins OpenId Connect Authentication Plugin 安全漏洞 | Jenkins Project | Jenkins OpenId Connect Authentication Plugin | - | - | 2023-12-13 17:30:18 | Deep Dive |
| CVE-2023-50770 | Jenkins OpenId Connect Authentication Plugin 安全漏洞 | Jenkins Project | Jenkins OpenId Connect Authentication Plugin | - | - | 2023-12-13 17:30:18 | Deep Dive |
| CVE-2023-24424 | Jenkins Plugin OpenId Connect Authentication 授权问题漏洞 | Jenkins Project | Jenkins OpenId Connect Authentication Plugin | 高危 | - | 2023-01-24 00:00:00 | Deep Dive |
| CVE-2022-24794 | Open Redirect in express-openid-connect | auth0 | express-openid-connect | High | 7.5 | 2022-03-31 22:45:14 | Deep Dive |
| CVE-2021-41246 | Session fixation in express-openid-connect | auth0 | express-openid-connect | Medium | 4.6 | 2021-12-09 15:55:10 | Deep Dive |
| CVE-2021-24214 | OpenID Connect Generic Client 3.8.0-3.8.1 - Reflected Cross Site Scripting (XSS) via Login Error | daggerhart | OpenID Connect Generic Client | 中危 | - | 2021-05-05 18:39:42 | Deep Dive |