VYPR

Packagist (Composer) package

drupal/simple_oauth

pkg:composer/drupal/simple_oauth

Vulnerabilities (1)

  • CVE-2025-12466Oct 29, 2025
    affected >= 6.0.0, < 6.0.7fixed 6.0.7

    Authentication Bypass Using an Alternate Path or Channel vulnerability in Drupal Simple OAuth (OAuth2) & OpenID Connect allows Authentication Bypass.This issue affects Simple OAuth (OAuth2) & OpenID Connect: from 6.0.0 before 6.0.7.