auth0-PHP — Vulnerabilities & Security Advisories 4

All 4 CVE vulnerabilities found in auth0-PHP, with AI-generated Chinese analysis, references, and POCs.

Vendor: auth0

CVE ID	Title	CVSS	Severity	Published
CVE-2026-34236	Auth0 PHP SDK Insufficient Entropy in Cookie Encryption CWE-331	8.2	High	2026-04-01
CVE-2025-68129	Auth0-PHP SDK has Improper Audience Validation CWE-863	6.8	Medium	2025-12-17
CVE-2025-48951	Auth0-PHP SDK Deserialization of Untrusted Data vulnerability CWE-502	9.1^AI	Critical^AI	2025-06-03
CVE-2025-47275	Brute Force Authentication Tags of CookieStore Sessions in Auth0-PHP SDK CWE-287	9.1	Critical	2025-05-15

All 4 known CVE vulnerabilities affecting auth0-PHP with full Chinese analysis, references, and POCs where available.