CVE-2026-32246 | steveiliop56 tinyauth up to 5.0.2 OIDC Authorization Endpoint improper authentication (GHSA-3q28-qjrv-qr39)

Inserito da Angelo Barbosa | Mar 12, 2026 | CVE

A vulnerability classified as critical was found in steveiliop56 tinyauth up to 5.0.2. This affects an unknown part of the component OIDC Authorization Endpoint. Executing a manipulation can lead to improper authentication.

This vulnerability is registered as CVE-2026-32246. It is possible to launch the attack remotely. No exploit is available.

Upgrading the affected component is advised.

CVE-2026-32246 | steveiliop56 tinyauth up to 5.0.2 OIDC Authorization Endpoint improper authentication (GHSA-3q28-qjrv-qr39)

Post correlati

CVE-2025-27930 | Zoho ManageEngine Applications Manager up to 176600 File Monitor cross site scripting

CVE-2024-3500 | ElementsKit Pro Plugin up to 3.6.0 on WordPress Advanced Toggle Widget file inclusion

CVE-2024-38142 | Microsoft unknown vulnerability

CVE-2024-48862 | QNAP QuLog Center prior 1.7.0.831/1.8.0.888 link following (qsa-24-46)