Tobias Bähr

**Name of the Vulnerable Software and Affected Versions** Drupal OAuth2 Client versions 0.0.0 through 4.1.2 **Description** A Cross-Site Request Forgery (CSRF) issue affects the Drupal OAuth2 Client, allowing unauthorized actions to be performed on behalf of the user. This issue may be exploited by an attacker to perform actions without the user's knowledge or consent. **Recommendations** For Drupal OAuth2 Client versions 0.0.0 through 4.1.2, update to version 4.1.3 or later to resolve the issue.