All 6 CVE vulnerabilities found in OAuth Single Sign On – SSO (OAuth Client), with AI-generated Chinese analysis, references, and POCs.
Vendor: Unknown
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-10753 | OAuth Single Sign On – SSO (OAuth Client) <= 6.26.14 - Missing Authorization CWE-862 | 5.3 | Medium | 2026-02-06 |
| CVE-2025-9485 | OAuth Single Sign On – SSO (OAuth Client) <= 6.26.12 - Authentication Bypass via get_resource_owner_from_id_token() CWE-347 | 9.8 | Critical | 2025-10-04 |
| CVE-2025-10752 | OAuth Single Sign On – SSO (OAuth Client) <= 6.26.12 - Cross-Site Request Forgery CWE-352 | 4.3 | Medium | 2025-09-26 |
| CVE-2024-10111 | OAuth Single Sign On – SSO (OAuth Client) <= 6.26.3 - Authentication Bypass CWE-287 | 8.1 | High | 2024-12-12 |
| CVE-2022-34155 | WordPress OAuth Single Sign On – SSO (OAuth Client) Plugin <= 6.23.3 is vulnerable to Broken Authentication CWE-287 | 8.8 | High | 2023-07-18 |
| CVE-2022-2133 | OAuth Single Sign On < 6.22.6 - Authentication Bypass CWE-287 | 5.3 | - | 2022-07-17 |
All 6 known CVE vulnerabilities affecting OAuth Single Sign On – SSO (OAuth Client) with full Chinese analysis, references, and POCs where available.