Vulnerabilities > ORY > Fosite > 0.32.1

DATE CVE VULNERABILITY TITLE RISK
2020-10-02 CVE-2020-15233 Open Redirect vulnerability in ORY Fosite
ORY Fosite is a security first OAuth2 & OpenID Connect framework for Go.
network
ory CWE-601
4.9
4.9
2020-10-02 CVE-2020-15234 Improper Handling of Case Sensitivity vulnerability in ORY Fosite
ORY Fosite is a security first OAuth2 & OpenID Connect framework for Go.
network
ory CWE-178
4.9
4.9
2020-09-24 CVE-2020-15223 Improper Check for Unusual or Exceptional Conditions vulnerability in ORY Fosite
In ORY Fosite (the security first OAuth2 & OpenID Connect framework for Go) before version 0.34.0, the `TokenRevocationHandler` ignores errors coming from the storage.
network
high complexity
ory CWE-754
8.0
8.0