CVE-2026-59713

Source
https://cve.org/CVERecord?id=CVE-2026-59713
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-59713.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-59713
Published
2026-07-06T20:36:24.795Z
Modified
2026-07-10T03:54:10.708778698Z
Severity
  • 8.6 (High) CVSS_V4 - CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N CVSS Calculator
Summary
Leantime - OIDC Login CSRF via Unconditional State Verification Stub
Details

Leantime contains an OIDC login CSRF vulnerability in the verifyState() method that unconditionally returns true without validating state parameters. Attackers can craft malicious callback URLs with attacker-controlled authorization codes to perform session fixation, logging victims in as the attacker.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/59xxx/CVE-2026-59713.json",
    "cna_assigner": "VulnCheck",
    "cwe_ids": [
        "CWE-352"
    ]
}
References

Affected packages

Git / github.com/leantime/leantime

Affected ranges

Type
GIT
Repo
https://github.com/leantime/leantime
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
Database specific
{
    "source": [
        "AFFECTED_FIELD",
        "REFERENCES"
    ],
    "extracted_events": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "3.4.4"
        }
    ]
}

Affected versions

Other
latest
v0.*
v0.9.5-alpha
v2.*
v2.0
v2.0.1
v2.0.10
v2.0.11
v2.0.12
v2.0.13
v2.0.14
v2.0.2
v2.0.3
v2.0.4
v2.0.5
v2.0.6
v2.0.7
v2.0.8
v2.0.9
v2.1
v2.1-beta
v2.1-beta2
v2.1-beta3
v2.1-beta4b
v2.1-beta5
v2.1-beta6
v2.1.1
v2.1.2
v2.1.3
v2.1.4
v2.1.5
v2.1.6
v2.1.7
v2.1.8
v2.1.9
v2.2.0
v2.2.1
v2.2.10
v2.2.11
v2.2.2
v2.2.3
v2.2.4
v2.2.5
v2.2.6
v2.2.7
v2.2.8
v2.2.9
v2.3-beta
v2.3.0-beta
v2.3.1-beta
v2.3.10
v2.3.11
v2.3.12
v2.3.13
v2.3.14
v2.3.15
v2.3.16
v2.3.17
v2.3.18
v2.3.19
v2.3.2
v2.3.20
v2.3.21
v2.3.22
v2.3.23
v2.3.24
v2.3.25
v2.3.26
v2.3.27
v2.3.3
v2.3.4
v2.3.5
v2.3.6
v2.3.7
v2.3.8
v2.3.9
v2.4
v2.4-beta
v2.4-beta-7
v2.4-beta-8
v2.4.1
v2.4.2
v2.4.3
v2.4.4
v2.4.5
v2.4.7
v2.4.8
v3.*
v3.0.0
v3.0.0-beta
v3.0.1
v3.0.2
v3.0.3
v3.0.4
v3.0.5
v3.0.6
v3.0.7
v3.1.0-beta
v3.1.1
v3.1.2
v3.1.3
v3.1.4
v3.2.0
v3.2.0-beta
v3.2.0-beta-2
v3.2.1
v3.3.0
v3.3.1
v3.3.3
v3.4.0
v3.4.1
v3.4.10
v3.4.11
v3.4.12
v3.4.2
v3.4.3
v3.4.4
v3.4.5
v3.4.6
v3.4.7
v3.4.9
v3.5.1
v3.5.10
v3.5.11
v3.5.12
v3.5.2
v3.5.3
v3.5.4
v3.5.5
v3.5.6
v3.5.7
v3.5.8
v3.6.0
v3.6.1
v3.6.2
v3.7.0
v3.7.1
v3.7.2
v3.7.3

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-59713.json"