PKSA-214w-kkvr-bpyq Security Advisory
-
[LOW] yii2-authclient vulnerable to possible timing attack on string comparison in OAuth1, OAuth2 and OpenID Connect implementation
PKSA-214w-kkvr-bpyq CVE-2023-50708 GHSA-w8vh-p74j-x9xp
Affected package: yiisoft/yii2-authclient
Affected version: <=2.2.14
Reported by:
GitHub