The security policy that applies to all the XWiki Pro extensions is detailed on the following document: https://store.xwiki.com/xwiki/bin/view/Store/SecurityPolicy/ .
Security: xwikisas/identity-oauth
Security
SECURITY.md
-
Privilege escalation (PR)/remote code execution from login screen through unescaped URL parameterGHSA-h2rm-29ch-wfmh published
Oct 16, 2023 by oanalaviniaCritical
Learn more about advisories related to xwikisas/identity-oauth in the GitHub Advisory Database