Browse all 3 CVE security advisories affecting steveiliop56. AI-powered Chinese analysis, POCs, and references for each vulnerability.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-33544 | Tinyauth has OAuth account confusion via shared mutable state on singleton service instances — tinyauthCWE-362 | 7.7 | High | 2026-04-02 |
| CVE-2026-32246 | Tinyauth vulnerable to TOTP/2FA bypass via OIDC authorize endpoint — tinyauthCWE-287 | 8.5 | High | 2026-03-12 |
| CVE-2026-32245 | Tinyauth's OIDC authorization codes are not bound to client on token exchange — tinyauthCWE-863 | 6.5 | Medium | 2026-03-12 |
This page lists every published CVE security advisory associated with steveiliop56. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.