OAuth SSO Bypass

The OAuth Single Sign On – SSO (OAuth Client) plugin for WordPress is a popular extension that allows users to access their accounts without entering credentials. However, this vulnerability allows attackers to bypass authentication and gain access to any existing user account - including administrators in certain configurations - or create arbitrary subscriber-level accounts.

Specific version info not stated in the advisory.

1. Upgrade to WordPress 6.27 or later.
2. For immediate mitigation:
3. Restrict network access to your WordPress instance (firewall it from the public internet)
4. Audit admin account activity for suspicious access patterns
5. Monitor for unauthorized token creation

• plugins.trac.wordpress.org
• plugins.trac.wordpress.org
• www.wordfence.com