search

knpuniversity / oauth2-client-bundle

Easily talk to an OAuth2 server for social functionality in Symfony
https://symfonycasts.com
MIT License
787 stars 146 forks source link

Does anyone know if this is vulnerable to this hack, token switching #420

Open LTSCommerce opened 1 year ago

LTSCommerce commented 1 year ago

See article

https://salt.security/blog/oh-auth-abusing-oauth-to-take-over-millions-of-accounts