Security Flaw in OAuth Credential Revoke Handler in geex-arts Product
CVE-2026-16215
6.9MEDIUM
What is CVE-2026-16215?
A security vulnerability has been identified in geex-arts django-jet up to version 1.0.8, specifically affecting the OAuth Credential Revoke Handler function. This flaw allows attackers to manipulate the authorization process, potentially leading to unauthorized access. The vulnerability can be exploited remotely, presenting significant risks if left unaddressed. Although the issue has been reported to the developers, no response has been documented at this time, leaving users of the affected versions exposed to possible attacks.
Affected Version(s)
django-jet 1.0.0
django-jet 1.0.1
django-jet 1.0.2
References
CVSS V4
Score:
6.9
Severity:
MEDIUM
Confidentiality:
None
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None
Timeline
- ๐ก
Public PoC available
- ๐พ
Exploit known to exist
Vulnerability published
Vulnerability Reserved
Credit
GalaxynX (VulDB User)
VulDB CNA Team
