Skip to content

ZITADEL: Missing client_id binding in OIDC authorization code exchange and refresh token flows (RFC 6749 Section 4.1.3 violation)

High severity GitHub Reviewed Published Jun 17, 2026 in zitadel/zitadel • Updated Jun 18, 2026

No open alerts for this advisory

Give feedback on Dependabot alerts