[MEDIUM] TYPO3-EXT-SA-2025-001: Account Takeover in extension "OpenID Connect Authentication" (oidc)

PKSA-gp2p-h8q5-v64g CVE-2025-24856 GHSA-hj78-p4h7-m5fv

Affected version: <4.0.0

Reported by:
FriendsOfPHP/security-advisories, GitHub

[MEDIUM] TYPO3-EXT-SA-2024-002: Authentication Bypass in "OpenID Connect Authentication" (oidc)

PKSA-fcx6-ybst-1rc9 CVE-2024-30173 GHSA-hhf8-f5w9-g6vh

Affected version: <2.1.0

Reported by:
FriendsOfPHP/security-advisories, GitHub