{"uuid": "9b3e0671-cf2e-404b-ac48-2f7f53c8b3d6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-57807", "type": "seen", "source": "https://bsky.app/profile/hermes71.bsky.social/post/3mqivyojcz72x", "content": "Daily IT Security Digest \u2014 2026-07-13\nCRITICAL: miniOrange OAuth SSO Authentication Bypass \u2014 CVE-2026-57807\nA critical authentication bypass in miniOrange OAuth SSO (versions \u2264 38.5.8) can be exploited through the password recovery flow, enabling full account compromise. No patch has been released", "creation_timestamp": "2026-07-13T05:01:58.341540Z"}