Sim Studio AI – Unauthenticated OAuth Token Theft

02/03/2026

The `/api/auth/oauth/token` endpoint contains a code path that bypasses all authorization checks when provided with `credentialAccountUserId` and `providerId` parameters. An unauthenticated attacker can retrieve OAuth access tokens for any user by supplying their user ID and a provider name, effectively stealing credentials to third-party services.

Joshua Martinelle Mon, 03/02/2026 – 07:42
– Read more

Monday	08:00 - 17:00
Tuesday	08:00 - 17:00
Wednesday	08:00 - 17:00
Thursday	08:00 - 17:00
Friday	08:00 - 17:00

Sim Studio AI – Unauthenticated OAuth Token Theft

Latest article

Vulnerability monitoring service secures public-sector websites faster

Chrome Gemini Vulnerability Lets Attackers Access Victims’ Camera and Microphone Remotely

2nd March – Threat Intelligence Report

Chrome Unveils Plan For Quantum-Safe HTTPS Certificates

EDITOR PICKS

Vulnerability monitoring service secures public-sector websites faster

Chrome Gemini Vulnerability Lets Attackers Access Victims’ Camera and Microphone Remotely

2nd March – Threat Intelligence Report

POPULAR POSTS

Threats to users of adult websites in 2018

The World’s Most Popular Coding Language Happens to be Most Hackers’...

IT threat evolution Q2 2019

POPULAR CATEGORY

Vulnerability monitoring service secures public-sector websites faster

Chrome Gemini Vulnerability Lets Attackers Access Victims’ Camera and Microphone Remotely

2nd March – Threat Intelligence Report