Go/github.com/pocket-id/pocket-id/backend

HIGH8.5CVE-2026-28513Pocket ID: OIDC authorization code validation uses AND instead of OR, allowing cross-client token exchange in github.com/pocket-id/pocket-id/backend

from 0, < 0.0.0-20260307173642-b59e35cb59ae

HIGH8.5CVE-2026-28513Pocket ID: OIDC authorization code validation uses AND instead of OR, allowing cross-client token exchange in github.com/pocket-id/pocket-id/backend

from 0, < 0.0.0-20260307173642-b59e35cb59ae

HIGH7.1CVE-2026-28512Pocket ID: OAuth redirect_uri validation bypass via userinfo/host confusion in github.com/pocket-id/pocket-id/backend

from 0, < 0.0.0-20260228130835-3a339e33191c

HIGH7.1Pocket ID: OAuth redirect_uri validation bypass via userinfo/host confusion in github.com/pocket-id/pocket-id/backend

from 0, < 0.0.0-20260228130835-3a339e33191c

pkg:Go/github.com/pocket-id/pocket-id/backend

✅ Check your installed version

All known vulnerabilities