OAuth2 Proxy prior to 5.0 has an open redirect vulnerability. Authentication tokens could be silently harvested by an attacker. This has been patched in version 5.0.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
oauth2 proxy project oauth2 proxy |