A couple more common OAuth 2.0 vulnerabilities
Posted by Dor1s on Monday, 18 September 2017TL;DR The couple of bugs described below are common across different OAuth 2.0 implementations. The bugs may allow a malicious application to maintain an access to victim's account even after access revocation performed by the victim.