cleantalk
Vulnerabilities and Security Researches

OAuth Single Sign On – SSO (OAuth Client), CVE-2022-34155

CVE, Research URL

CVE-2022-34155

Home page URL

Security reports for OAuth Single Sign On – SSO (OAuth Client)

Application

OAuth Single Sign On – SSO (OAuth Client)

Published on
Jul 18, 2023
Research Description
Improper Authentication vulnerability in miniOrange OAuth Single Sign On – SSO (OAuth Client) plugin allows Authentication Bypass.This issue affects OAuth Single Sign On – SSO (OAuth Client): from n/a through 6.23.3.
Affected versions
max 6.20.3.
Status
vulnerable
Previous vulnerability researches
OAuth Single Sign On – SSO (OAuth Client) (CVE-2022-2133) , Jun 06, 2024
OAuth Single Sign On – SSO (OAuth Client) (CVE-2022-34155) , Jun 06, 2024
OAuth Single Sign On – SSO (OAuth Client) (CVE-2023-1092) , Jun 06, 2024
OAuth Single Sign On – SSO (OAuth Client) (CVE-2023-1093) , Jun 06, 2024
OAuth Single Sign On – SSO (OAuth Client) (CVE-2025-10752) , Nov 10, 2025
New vulnerability
TablePress – Tables in WordPress made easy (CVE-2025-12324) , Nov 11, 2025
WP User Manager – User Profile Builder & Membership (CVE-2025-60245) , Nov 11, 2025
Auto Featured Image (Auto Post Thumbnail) (CVE-2025-10145) , Nov 11, 2025
Digiseller (CVE-2025-10141) , Nov 11, 2025
SMS Alert Order Notifications – WooCommerce (CVE-2025-49915) , Nov 11, 2025