Stay up to Date with Our News and Releases

OAuth 2.0 in general relies heavily on the crypt nature of TLS. Since tokens are sometimes exchanged via a request, a secure connection is required. TLS 1.0 and TLS 1.1 use the SHA-1 algorithm and weaker cipher suites for authenticating identities. However, it has become dangerously weak due to several vulnerabilities identified in its suite. […]

WP OAuth Server 3.2.4 has been released. This update is available to all valid license holders. Simply update WP OAuth Server in the plugin area as normal. Security Issues Patched wo_create_client It is possible that a hacker could hijack the action wo_create_client and run malicious code. This was because the action was ran before the capabilities checks […]