Lucene search
+L

4 matches found

snyk
snyk
added 2026/04/09 6:10 p.m.3 views

Weak Authentication

Overview Affected versions of this package are vulnerable to Weak Authentication due to improper validation of oauthuserid in the TokenGuard::authenticateViaBearerToken function. An attacker can gain unauthorized access to unrelated user accounts by presenting a machine-to-machine token with a...

7.1CVSS5.8AI score0.00289EPSS
Exploits1References2
cvelist
cvelist
added 2026/04/09 4:50 p.m.25 views

CVE-2026-39976 Laravel Passport's TokenGuard Authenticates Unrelated User for Client Credentials Tokens

Laravel Passport provides OAuth2 server support to Laravel. From 13.0.0 to before 13.7.1, there is an Authentication Bypass for clientcredentials tokens. the league/oauth2-server library sets the JWT sub claim to the client identifier since there's no user. The token guard then passes this value ...

7.1CVSS0.00289EPSS
Exploits1References5
osv
osv
added 2026/04/09 4:50 p.m.3 views

CVE-2026-39976 Laravel Passport's TokenGuard Authenticates Unrelated User for Client Credentials Tokens

Laravel Passport provides OAuth2 server support to Laravel. From 13.0.0 to before 13.7.1, there is an Authentication Bypass for clientcredentials tokens. the league/oauth2-server library sets the JWT sub claim to the client identifier since there's no user. The token guard then passes this value ...

7.1CVSS7AI score0.00289EPSS
Exploits1References7
cve
cve
added 2026/04/09 4:50 p.m.42 views

CVE-2026-39976

CVE-2026-39976 affects Laravel Passport's TokenGuard in versions 13.0.0–13.7.0. The underlying league/oauth2-server sets the JWT sub claim to the client identifier (no user) and TokenGuard passes this value to retrieveById() without validating that it is a user, allowing a client_credentials toke...

7.1CVSS5.8AI score0.00289EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder