Omniauth-oauth2 Project Omniauth-oauth2 — known CVE vulnerabilities
Every CVE whose affected-product data names Omniauth-oauth2 Project Omniauth-oauth2, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (1)
CVE-2012-6134 — CVSS 6.8 (medium): Cross-site request forgery (CSRF) vulnerability in the omniauth-oauth2 gem 1.1.1 and earlier for Ruby allows remote attackers to hijack the…