OAuth Private Program 2025-10-01
OAuth State Parameter Missing Enables CSRF Account Linking
Severity: High | Status: Resolved
Summary
The OAuth implementation lacked the state parameter, enabling a CSRF attack to link a victim’s account to an attacker-controlled social login.
Proof of Concept
<img src="https://target.com/oauth/callback?code=ATTACKER_CODE">Impact
Account takeover through forced OAuth account linking.
Responsible Disclosure
This vulnerability was reported responsibly and fixed by the vendor before public disclosure.