Authentication Bypass Fault in OAuth Single Sign On by miniOrange Security
CVE-2026-57807
9.8CRITICAL
Key Information:
- Vendor
WordPress
- Vendor
- CVE Published:
- 10 July 2026
What is CVE-2026-57807?
An authentication bypass vulnerability exists in the OAuth Single Sign On - SSO (OAuth Client) by miniOrange Security Software, allowing attackers to exploit password recovery mechanisms. This fault affects versions from n/a to 38.5.8, exposing users to potential unauthorized access through alternate pathways.
Affected Version(s)
OAuth Single Sign On - SSO (OAuth Client) <= 38.5.8