All 3 CVE vulnerabilities found in oidc, with AI-generated Chinese analysis, references, and POCs.
Vendor: xwiki-contrib
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-49594 | XWiki OIDC Authenticator vulnerable to creation of token for any user with just `view` right CWE-285 | 8.8AI | HighAI | 2025-10-06 |
| CVE-2025-24856 | TYPO3 安全漏洞 CWE-348 | 4.2 | Medium | 2025-03-16 |
| CVE-2022-39387 | XWiki OIDC Authenticator vulnerable to OpenID login bypass due to improper authentication CWE-287 | 9.1 | Critical | 2022-11-04 |
All 3 known CVE vulnerabilities affecting oidc with full Chinese analysis, references, and POCs where available.