Digitialpixies

digitialpixies

2 CVEs • 1 product

Products (1)

Click to collapse

Toggle

Oauth Client

oauth_client

2 CVEs

CVEs (2)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-3632 1Digitialpixies 1Oauth Client Jun 17, 2026 Nov 14, 2022 N/A· v4 6.5 MEDIUM· v3 N/A· v2 The OAuth Client by DigitialPixies WordPress plugin through 1.1.0 does not have CSRF checks in some places, which could allow attackers to make logged-in users perform unwanted actions.
CVE-2022-3631 1Digitialpixies 1Oauth Client Jun 17, 2026 Nov 14, 2022 N/A· v4 4.8 MEDIUM· v3 N/A· v2 The OAuth Client by DigitialPixies WordPress plugin through 1.1.0 does not sanitize and escapes some of its settings, which could allow high-privilege users such as admin to perform Stored Cross-Site Scripting attacks ev...Show more The OAuth Client by DigitialPixies WordPress plugin through 1.1.0 does not sanitize and escapes some of its settings, which could allow high-privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example, in multisite setup).Show less

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2022-3632

1Digitialpixies

1Oauth Client

Jun 17, 2026

Nov 14, 2022

N/A· v4

6.5 MEDIUM· v3

N/A· v2

The OAuth Client by DigitialPixies WordPress plugin through 1.1.0 does not have CSRF checks in some places, which could allow attackers to make logged-in users perform unwanted actions.

CVE-2022-3631