VYPR
Medium severity5.8NVD Advisory· Published May 11, 2026· Updated May 15, 2026

CVE-2026-44695

CVE-2026-44695

Description

Outline is a service that allows for collaborative documentation. Prior to 1.7.1, the Slack integration callback for GET /auth/slack.post accepts an unsigned, session-independent OAuth state value. A third party who can obtain a Slack OAuth code for the same Outline Slack client can make a logged-in Outline user complete the callback and link that user's Outline account to the attacker's Slack team_id and user_id. The linked Slack identity can then use the Slack /outline search command as the victim Outline user. This vulnerability is fixed in 1.7.1.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Outline/Outline2 versions
    cpe:2.3:a:getoutline:outline:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:getoutline:outline:*:*:*:*:*:*:*:*range: <1.7.1
    • (no CPE)range: <1.7.1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.