Security Advisories - PKSA-214w-kkvr-bpyq - Packagist

PKSA-214w-kkvr-bpyq Security Advisory

[LOW] yii2-authclient vulnerable to possible timing attack on string comparison in OAuth1, OAuth2 and OpenID Connect implementation

PKSA-214w-kkvr-bpyq CVE-2023-50708 GHSA-w8vh-p74j-x9xp

Affected package: yiisoft/yii2-authclient

Affected version: <=2.2.14

Reported by:
GitHub