CVE-2026-9733: Perl Mojolicious OAuth2 Plugin Insecure Default State Parameter Enables Authorization Code Interception (CVSS 9.1)
CVE: CVE-2026-9733 | CVSS 3.1: 9.1 (CRITICAL) | CWE: CWE-340 (Generation of Predictable Numbers or Identifiers) | Vendor: Mojolicious | Product: Mojolicious::Plugin::Web::Auth::OAuth2 | Affected versions: … Read More