Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WordPress Plugin OAuth client Single Sign On for WordPress (OAuth 2.0 SSO) Security Bypass - CVE-2022-3119 - Vulnerability Database
WP Plugin Oauth Client For User Authentication

WordPress Plugin OAuth client Single Sign On for WordPress (OAuth 2.0 SSO) Security Bypass - CVE-2022-3119

Critical
Reference: CVE-2022-3119
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2022-3119
Title: WordPress Plugin OAuth client Single Sign On for WordPress (OAuth 2.0 SSO) Security Bypass
Overview:

WordPress Plugin OAuth client Single Sign On for WordPress (OAuth 2.0 SSO) is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently update pluginss settings. WordPress Plugin OAuth client Single Sign On for WordPress (OAuth 2.0 SSO) version 3.0.3 is vulnerable prior versions may also be affected.