VulnerableCode Package Details - pkg:pypi/oauth2@1.9.0

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:pypi/oauth2@1.9.0

Essentials
History (4)

purl	pkg:pypi/oauth2@1.9.0

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-tbug-mv5x-uucb	The Server.verify_request function in SimpleGeo python-oauth2 does not check the nonce, which allows remote attackers to perform replay attacks via a signed URL.	CVE-2013-4346 GHSA-4433-4cxq-vv73 PYSEC-2014-85

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T21:53:02.567154+00:00	GitLab Importer	Fixing	VCID-tbug-mv5x-uucb	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/oauth2/CVE-2013-4346.yml	38.4.0
2026-04-11T23:08:36.979934+00:00	GitLab Importer	Fixing	VCID-tbug-mv5x-uucb	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/oauth2/CVE-2013-4346.yml	38.3.0
2026-04-02T23:17:13.167287+00:00	GitLab Importer	Fixing	VCID-tbug-mv5x-uucb	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/oauth2/CVE-2013-4346.yml	38.1.0
2026-04-01T17:37:23.186378+00:00	GitLab Importer	Fixing	VCID-tbug-mv5x-uucb	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/oauth2/CVE-2013-4346.yml	38.0.0