OAuth Single Sign On < 6.26.13 – Authentication Bypass | CVE 2025-9485 | Plugin Vulnerabilities

Description

The plugin is vulnerable to Improper Verification of Cryptographic Signature due to the plugin performing unsafe JWT token processing without verification or validation in the `get_resource_owner_from_id_token` function. This makes it possible for unauthenticated attackers to bypass authentication and gain access to any existing user account - including administrators in certain configurations - or to create arbitrary subscriber-level accounts.

Affects Plugins

miniorange-login-with-eve-online-google-facebook

Fixed in 6.26.13

References

CVE

URL

https://www.wordfence.com/threat-intel/vulnerabilities/id/d2448afc-70d1-4dd5-b73b-62d182ee9a8a

Classification

Type

AUTHBYPASS

OWASP top 10

A2: Broken Authentication and Session Management

CWE

CVSS

Miscellaneous

Original Researcher

Jonas Benjamin Friedli

Verified

No

WPVDB ID

fa983bd7-f270-409a-8efc-3bb9bbb26eb8

Timeline

Publicly Published

2025-10-03 (about 8 months ago)

Added

2025-10-03 (about 8 months ago)

Last Updated

2025-10-03 (about 8 months ago)

Other

Published

Title

Published

2024-10-09

Title

WP Users Masquerade <= 2.0.0 - Authentication Bypass

Published

2024-11-04

Title

Loginizer Security and Loginizer < 1.9.3 - Authentication Bypass

Published

2024-11-04

Title

Social Login - WordPress / WooCommerce Plugin < 2.7.8 - Authentication Bypass

Published

2013-03-24

Title

Backupbuddy - importbuddy.php step Parameter Manipulation Authentication Bypass

Published

2024-11-05

Title

Heateor Social Login WordPress < 1.1.36 - Authentication Bypass