Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-41479 |
|
Open Redirect in authlib (CVE-2026-41479)
vulnerability in authlib (CVE-2026-41479). Risk of unauthorized operations or information disclosure. Exploitable via ``redirect_uri``. Mitigation: upgrade to `1.7.1` or later.
|
| CVE-2026-44681 |
|
Open Redirect in authlib (CVE-2026-44681)
vulnerability in authlib (CVE-2026-44681). Risk of unauthorized operations or information disclosure. Exploitable via `GET /oauth/authorize`. Mitigation: upgrade to `3be08468` or later.
|
| CVE-2026-27962 |
|
Vulnerability in deserialization (CVE-2026-27962)
vulnerability in deserialization (CVE-2026-27962). Confidential information can be exposed externally.
|
| CVE-2026-28498 |
|
Vulnerability in authlib (CVE-2026-28498)
vulnerability in authlib (CVE-2026-28498). Data can be tampered with by attackers.
|
| CVE-2026-28802 |
|
Vulnerability in authlib (CVE-2026-28802)
vulnerability in authlib (CVE-2026-28802). Successful exploitation can lead to full system takeover.
|