github.com/oauth2-proxy/oauth2-proxy/v7 Security Advisories - Go | Ecosyste.ms: Advisories

github.com/oauth2-proxy/oauth2-proxy/v7

View on github.com · View on proxy.golang.org

Security Advisories for github.com/oauth2-proxy/oauth2-proxy/v7 in go

Critical

2 months ago

OAuth2-Proxy has authentication bypass in oauth2-proxy skip_auth_routes due to Query Parameter inclusion GSA_kwCzR0hTQS03cmg3LWM3N3YtNjQzNM4ABKqh

go github.com/oauth2-proxy/oauth2-proxy/v7

Moderate

2 months ago

OAuth2-Proxy's `--gitlab-group` GitLab Group Authorization config flag stopped working in v7.0.0 GSA_kwCzR0hTQS02NTJ4LW0yZ3ItaHBwbc4ABKqL

go github.com/oauth2-proxy/oauth2-proxy/v7

Low

over 4 years ago

Subdomain checking of whitelisted domains could allow unintended redirects in oauth2-proxy MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRtZjItZjN3aC1ndmYy

go github.com/oauth2-proxy/oauth2-proxy, github.com/oauth2-proxy/oauth2-proxy/v7

Filter by Severity

Moderate 1 Low 1 Critical 1