Cordea Oauth

2 CVEs affecting Cordea Oauth. Latest disclosed: 2024-08-15. Critical: 0, High: 0.

Top CVEs affecting Cordea Oauth
CVESeverityScorePublishedSummary
CVE-2024-42476Medium6.52024-08-15In the OAuth library for nim prior to version 0.11, the Authorization Code grant and Implicit grant both rely on the `state` parameter to prevent cross-site re…
CVE-2024-42475Medium6.52024-08-15In the OAuth library for nim prior to version 0.11, the `state` values generated by the `generateState` function do not have sufficient entropy. These can be s…