Edevilo

**Name of the Vulnerable Software and Affected Versions** SimpleGeo python-oauth2 (affected versions not specified) **Description** The issue is related to the Server.verify request function in SimpleGeo python-oauth2, which does not check the nonce. This omission allows remote attackers to perform replay attacks via a signed URL. There is no information about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.