-
-
Notifications
You must be signed in to change notification settings - Fork 364
Security: ory/fosite
Security Navigation
Security Advisories
View information about security vulnerabilities from this repository's maintainers.
-
Redirect URL matching ignores character casingGHSA-grfp-q2mm-hfp6 published
Oct 2, 2020 by aeneasrLow -
OAuth2 Redirect URL validity does not respect query parameters and host for loopback addressesGHSA-rfq3-w54c-f9q5 published
Oct 2, 2020 by aeneasrModerate -
Token revokation incorrectly ignores storage errorsGHSA-7mqr-2v3q-v2wm published
Sep 24, 2020 by aeneasrLow -
Disallow replay of `private_key_jwt` by blacklisting JTIsGHSA-v3q9-2p3m-7g43 published
Sep 24, 2020 by aeneasrModerate