{"uuid": "5bddc20c-c549-4d7e-b86a-4ca3be450ed0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28131", "type": "seen", "source": "https://t.me/KomunitiSiber/270", "content": "Critical OAuth Vulnerability in Expo Framework Allows Account Hijacking\nhttps://thehackernews.com/2023/05/critical-oauth-vulnerability-in-expo.html\n\nA critical security vulnerability has been disclosed in the Open Authorization (OAuth) implementation of the application development framework Expo.io.\nThe shortcoming, assigned the CVE identifier\u00a0CVE-2023-28131, has a severity rating of 9.6 on the CVSS scoring system. API security firm Salt Labs\u00a0said\u00a0the issue rendered services using the framework susceptible to credential leakage, which could", "creation_timestamp": "2023-05-27T12:04:21.000000Z"}