Security Flaw in OAuth Credential Revoke Handler in geex-arts Product
CVE-2026-16215

6.9MEDIUM

Key Information:

Vendor

Geex-arts

Vendor
CVE Published:
19 July 2026

Badges

๐Ÿ‘พ Exploit Exists

What is CVE-2026-16215?

A security vulnerability has been identified in geex-arts django-jet up to version 1.0.8, specifically affecting the OAuth Credential Revoke Handler function. This flaw allows attackers to manipulate the authorization process, potentially leading to unauthorized access. The vulnerability can be exploited remotely, presenting significant risks if left unaddressed. Although the issue has been reported to the developers, no response has been documented at this time, leaving users of the affected versions exposed to possible attacks.

Affected Version(s)

django-jet 1.0.0

django-jet 1.0.1

django-jet 1.0.2

References

CVSS V4

Score:
6.9
Severity:
MEDIUM
Confidentiality:
None
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • ๐ŸŸก

    Public PoC available

  • ๐Ÿ‘พ

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

Credit

GalaxynX (VulDB User)
VulDB CNA Team
.