cleantalk
Vulnerabilities and Security Researches

OAuth Single Sign On – SSO (OAuth Client), CVE-2025-10752

CVE, Research URL

CVE-2025-10752

Home page URL

Security reports for OAuth Single Sign On – SSO (OAuth Client)

Application

OAuth Single Sign On – SSO (OAuth Client)

Published on
Sep 26, 2025
Research Description
The OAuth Single Sign On – SSO (OAuth Client) plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 6.26.12. This is due to using a predictable state parameter (base64 encoded app name) without any randomness in the OAuth flow. This makes it possible for unauthenticated attackers to forge OAuth authorization requests and potentially hijack the OAuth flow via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.
Affected versions
max 6.26.13.
Status
vulnerable
Previous vulnerability researches
Testimonial Carousel For Elementor (CVE-2024-35713) , Jun 10, 2024
Testimonial Carousel For Elementor (CVE-2025-8666) , Nov 10, 2025
Testimonial Carousel For Elementor (CVE-2024-4698) , Jun 06, 2024
Testimonial Carousel For Elementor (CVE-2024-4858) , Jun 06, 2024
Testimonial Carousel For Elementor (CVE-2024-2253) , Jun 06, 2024
New vulnerability
SmartCrawl WordPress SEO checker, SEO analyzer, SEO optimizer (CVE-2025-62048) , Nov 11, 2025
Team Member Showcase Staff List Plugin – Employee Spotlight (CVE-2025-12090) , Nov 11, 2025
WPeMatico RSS Feed Fetcher (CVE-2025-49922) , Nov 11, 2025
Cost Calculator Builder (CVE-2025-9243) , Nov 11, 2025
Off-Canvas Sidebars & Menus (Slidebars) (CVE-2025-62891) , Nov 11, 2025