Story

The article discusses a security vulnerability in Okta's implementation of the OAuth 2.0 protocol in NextJS applications, which could allow attackers to gain unauthorized access to user accounts. The vulnerability was discovered and responsibly disclosed by the author, leading to a fix by Okta.