Open Redirect Affecting oauth package, versions >=0.5.5, <1.1.6
Threat Intelligence
Snyk has a proof-of-concept or detailed explanation of how to exploit this vulnerability.
Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applications- Snyk IDSNYK-RUBY-OAUTH-17277254
- published10 Jun 2026
- disclosed9 Jun 2026
- creditPeter H. Boling
Introduced: 9 Jun 2026
New CVE NOT AVAILABLE CWE-601 (opens in a new tab)How to fix?
Upgrade oauth to version 1.1.6 or higher.
Overview
oauth is a ruby gem that implements both OAuth clients and servers in Ruby applications.
Affected versions of this package are vulnerable to Open Redirect via the token_request() function in the token endpoint redirect handling. An attacker can obtain sensitive OAuth request metadata, such as signatures, nonces, timestamps, and consumer keys, by influencing the redirect target of the OAuth server's token endpoint, causing the client to re-sign and send these details to an attacker-controlled host. This can also allow the attacker to leverage the application server's network position for server-side request forgery or confused-deputy attacks.