Oauth Client Single Sign On Project

oauth_client_single_sign_on_project

1 CVE • 1 product

Products (1)

Click to collapse

Toggle

Oauth Client Single Sign On

oauth_client_single_sign_on

1 CVE

CVEs (1)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-3119 1Oauth Client Single Sign On Project 1Oauth Client Single Sign On Jun 17, 2026 Sep 26, 2022 N/A· v4 7.5 HIGH· v3 N/A· v2 The OAuth client Single Sign On WordPress plugin before 3.0.4 does not have authorisation and CSRF when updating its settings, which could allow unauthenticated attackers to update them and change the OAuth endpoints to...Show more The OAuth client Single Sign On WordPress plugin before 3.0.4 does not have authorisation and CSRF when updating its settings, which could allow unauthenticated attackers to update them and change the OAuth endpoints to ones they controls, allowing them to then be authenticated as admin if they know the correct email addressShow less

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2022-3119

1Oauth Client Single Sign On Project

1Oauth Client Single Sign On

Jun 17, 2026

Sep 26, 2022

N/A· v4

7.5 HIGH· v3

N/A· v2

The OAuth client Single Sign On WordPress plugin before 3.0.4 does not have authorisation and CSRF when updating its settings, which could allow unauthenticated attackers to update them and change the OAuth endpoints to ones they controls, allowing them to then be authenticated as admin if they know the correct email addressShow less