PT-2025-40621 · WordPress · Oauth Single Sign On – Sso

Jonas Benjamin Friedli

Published

2025-10-04

Updated

2025-10-06

CVE-2025-9485

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions OAuth Single Sign On – SSO (OAuth Client) plugin for WordPress versions up to and including 6.26.12

Description The OAuth Single Sign On – SSO (OAuth Client) plugin for WordPress is susceptible to improper verification of cryptographic signatures. This occurs due to unsafe JWT token processing without verification or validation within the get resource owner from id token function. This allows unauthenticated attackers to bypass authentication, potentially gaining access to existing user accounts, including administrator accounts in certain configurations, or creating arbitrary subscriber-level accounts.

Recommendations Update the OAuth Single Sign On – SSO (OAuth Client) plugin to version 6.26.13 or later.

Fix

Improper Verification of Cryptographic Signature

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-347

Related Identifiers

CVE-2025-9485

Affected Products

Oauth Single Sign On – Sso

PT-2025-40621 · WordPress · Oauth Single Sign On – Sso

CVE-2025-9485

Weakness Enumeration

Related Identifiers

Affected Products

References · 11