📦 Tinyauth
by Tinyauth
🔍 What is Tinyauth?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
This vulnerability allows attackers who know a user's password but not their TOTP secret to bypass multi-factor authentication in Tinyauth. By exploiting the OIDC authorization endpoint, they can obta...
This vulnerability allows malicious OIDC client operators to exchange authorization codes issued to other clients, obtaining access tokens for users who never authorized their applications. This affec...