CVE-2025-40905

WWW::OAuth 1.000 and earlier for Perl uses the rand function as the default source of entropy, which is not cryptographically secure, for cryptographic functions...

Drupal Simple OAuth (OAuth2) & OpenID Connect module 6.0.0-6.0.6 - Unauthenticated Broken Access Control vulnerability

Unauthenticated Broken Access Control vulnerability discovered by coffeemakr in WordPress Module Simple OAuth OAuth2 & OpenID Connect versions 6.0.0-6.0.6...

Drupal OAuth Module Access Bypass Vulnerability

Drupal is an open source content management framework CMF written in the PHP language, which consists of a content management system CMS and PHP development framework Framework together. An access bypass vulnerability exists in the Drupal OAuth module. Allows an attacker to bypass certain securit...

CVE-2017-10805

In Odoo 8.0, Odoo Community Edition 9.0 and 10.0, and Odoo Enterprise Edition 9.0 and 10.0, incorrect access control on OAuth tokens in the OAuth module allows remote authenticated users to hijack OAuth sessions of other users...

CVE-2017-10805

In Odoo 8.0, Odoo Community Edition 9.0 and 10.0, and Odoo Enterprise Edition 9.0 and 10.0, incorrect access control on OAuth tokens in the OAuth module allows remote authenticated users to hijack OAuth sessions of other users...

Drupal OAuth Module Access Bypass Vulnerability

Drupal is a free, open source content management system developed in PHP and maintained by the Drupal community.OAuth is one of the third-party modules that enables you to authenticate requests using the OAuth 1.a protocol. An access bypass vulnerability exists in the Drupal OAuth module. An...