cleantalk
Vulnerabilities and Security Researches

WP OAuth Server (OAuth Authentication), CVE-2015-9435

CVE, Research URL

CVE-2015-9435

Home page URL

Security reports for WP OAuth Server (OAuth Authentication)

Application

WP OAuth Server (OAuth Authentication)

Published on
Sep 26, 2019
Research Description
The oauth2-provider plugin before 3.1.5 for WordPress has incorrect generation of random numbers.
Affected versions
Min -, max 3.1.5.
Status
vulnerable
Previous vulnerability researches
WP OAuth Server (OAuth Authentication) (CVE-2022-3892) , Jun 06, 2024
WP OAuth Server (OAuth Authentication) (CVE-2022-4148) , Jun 06, 2024
WP OAuth Server (OAuth Authentication) (CVE-2024-31253) , Jun 06, 2024
WP OAuth Server (OAuth Authentication) (CVE-2022-3894) , Jun 06, 2024
WP OAuth Server (OAuth Authentication) (CVE-2015-9435) , Jun 06, 2024
New vulnerability
The E-Commerce ERP: Purchasing, Inventory, Fulfillment, Manufacturing, BOM, Accounting, Sales Analysis (CVE-2025-52836) , Jul 15, 2025
Strong Testimonials (CVE-2025-7367) , Jul 15, 2025
Companion Auto Update (CVE-2025-4369) , Jul 15, 2025
Restrict File Access (CVE-2025-7667) , Jul 15, 2025
Product XML Feed Manager for WooCommerce – Google Shopping, Social Sites, Skroutz & More (CVE-2025-30959) , Jul 15, 2025