Éloi Rivard
3 exploits
Active since Jan 2026
Authlib OAuth 2.0 authorization endpoint open redirects to attacker-controlled redirect_uri on unsupported response_type
CVSS 5.4
Authlib 1.0.0-1.6.5 - Cross-Site Request Forgery via Cache-Backed State Storage
CVSS 5.7
Authlib 1.6.5-1.6.6 - Improper Verification of Cryptographic Signature
CVSS 9.8