[MEDIUM] TYPO3-EXT-SA-2025-001: Account Takeover in extension "OpenID Connect Authentication" (oidc)

PKSA-gp2p-h8q5-v64g CVE-2025-24856 GHSA-hj78-p4h7-m5fv

Affected package: causal/oidc

Affected version: <4.0.0

Reported by:
FriendsOfPHP/security-advisories, GitHub