This page (revision-1) was last changed on 29-Nov-2024 16:16 by UnknownAuthor

Only authorized users are allowed to rename pages.

Only authorized users are allowed to delete pages.

Page revision history

Version Date Modified Size Author Changes ... Change note

Page References

Incoming links Outgoing links
OAuth 2.0 Mix-Up Attack
OAuth 2.0 Mix-Up Attack

Version management

Difference between version and

At line 1 added 11 lines
!!! Overview
[{$pagename}] is an [attack] may occur when a [OAuth Client] interacts with multiple OAuth [Authorization Servers].
[{$pagename}] is when a [malicious] [Authorization Servers] may confuse the [OAuth Client] into thinking that the malicious [Authorization Servers] is, in fact, the real [Authorization Servers]. This can lead to sensitive information like [OAuth Client] secrets, codes, and tokens getting leaked to the [malicious] [Authorization Server].
[{$pagename}] is a concern when your deployment has one [OAuth Client] interacting with multiple [Identity Provider (IDP)] or [Authorization Servers]
!! More Information
There might be more information for this subject on one of the following:
[{ReferringPagesPlugin before='*' after='\n' }]
This page (revision-1) was last changed on 29-Nov-2024 16:16 by UnknownAuthorTop