1 results (0.002 seconds)
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2025-32068 – Revoking authorization of OAuth2 consumer does not invalidate refresh tokens
https://notcve.org/view.php?id=CVE-2025-32068
11 Apr 2025 — Incorrect Authorization vulnerability in The Wikimedia Foundation Mediawiki - OAuth Extension allows Authentication Bypass.This issue affects Mediawiki - OAuth Extension: from 1.39 through 1.43. • https://gerrit.wikimedia.org/r/q/I27b61af2cdfb862a42432e7a87b863033d540cfc • CWE-863: Incorrect Authorization •